last executing test programs:

28.186209644s ago: executing program 1 (id=258):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000400)=@generic={&(0x7f0000000080)='./file0\x00', 0x0, 0x8}, 0x18)

28.103721785s ago: executing program 1 (id=261):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010008000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x800}, 0x18)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180040008003950323030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

28.056744785s ago: executing program 1 (id=263):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, 0x0, &(0x7f00000003c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x800}, 0x18)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])

27.972901626s ago: executing program 1 (id=265):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
setsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000000)=0x2, 0x4)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0xfe, 0x4, 0x0, 0x0, 0x5, 0x2000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x800000000003}, 0x8e5, 0x5dd7, 0x8, 0x3, 0x32, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040), 0x0, 0x0, 0x0)

27.891426615s ago: executing program 1 (id=267):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = epoll_create1(0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0xe822, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000400)='gadgetfs\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r2, 0x3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000580)={0x1, &(0x7f0000000140)=[{0x6, 0x8, 0x0, 0x7fff0000}]})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0x2)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000400)=[@in6={0xa, 0x4e23, 0x402, @loopback, 0x1}], 0x1c)
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket(0x22, 0x2, 0x8000003)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000), 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3030040, &(0x7f00000001c0)={[{@debug}, {@noload}]}, 0x1, 0x513, &(0x7f0000000c40)="$eJzs3W9rJHcdAPDvTLJp7i41WxU5C7bFVu6K3m7S2DaKtBVEHxXU+jzGZBNCNtmQ3dRLKJrDFyCIqOAL8IngCxDkXoIIB/pcVBTRO32oNzK7E82f3WRJ9rLn5vOByf5+8+/7/Q3Z2fnzYyaAK+uliHgnIsYi4tWImC7Gp8WwkFf2O/M9evjBUj4kkWXv/S2JpBh3sK68Ph4RNzqLxGREfP0rEd9KTsZt7u6tL9brte2iXm1tbFWbu3t31jYWV2urtc25udk35t+cf31+JitcqJ3liHjrS3/60fd/9uW3fvWZb/9+4S+3v5On9YWPdfKOiKV2gwess+5Se1scyLfR9uBDDU3entLYsLMAAKAf+SHvhyPik+3j/+kYax/NAQAAAKMke3sq/pVEZAAAAMDISiNiKpK0UvQFmIo0rVQ6fXg/GtfTeqPZ+vRKY2dzOZ8WUY5SurJWr80UfYXLUUry+mzRx/ag/tqx+lxEPBcRP5y+1q5Xlhr15WFf/AAAAIAr4saLR8///zmdtssAAADAiCn3rAAAAACjwik/AAAAjD7n/wAAADDSvvruu/mQHbzHe/n93Z31xvt3lmvN9crGzlJlqbG9VVltNFbbz+zbOGt99UZj67OxuXO32qo1W9Xm7t7CRmNns7WwduQV2AAAAMAleu7F+79LImL/89faQxTPAQQ44o/DTgAYpLFhJwAMzfiwEwCGpnTmHPYQMOqSM6af7LzTuVYYv34y+QAAAIN36+Mn7/9PFNPOvjYA/D/T1wcArh539+DqKp23B+DNQWcCDMuHOh/P9Jre8+Edfdz/71xjyLJzJQYAAAzMVHtI0kpxnD4VaVqpRDzbfi1AKVlZq9dmivOD306Xnsnrs+0lkzP7DAMAAAAAAAAAAAAAAAAAAAAAAAAAHVmWRAYAAACMtIj0z0n7af4Rt6ZfmTp6deDYW79++t6P7y62WtuzERPJ36fzURMR0fpJMf61zCsBAAAA4CnQOU8vPmeHnQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAo+bRww+WDobLjPvXL0ZEuVv88Zhsf05GKSKu/yOJ8UPLJRExNoD4+/ci4ma3+Ek8zrKsXGTRLf61Jxy/3N403eOnEXFjAPHhKruf73/e6fb9S+Ol9mf37994MVxU7/1f+t/931iP/c+zx+q9PP/gF9We8e9FPD/eff9zED/pxD8SIq+83Gcbv/mNvb2uEw6tslv8w7GqrY2tanN3787axuJqbbW2OTc3+8b8m/Ovz89UV9bqteJv1zA/+MQvH5/W/us94pePtv/E9n+lr9Zn8e8Hdx9+pFMpdYt/++Xuv783e8RPi9++TxXlfPqtg/J+p3zYCz//zQuntX+5R/snz2j/7b7aH5979Wvf+0PXKSe2BgBwGZq7e+uL9Xpt+5TCZB/zXHLh7acjjQEW4ulIY1iF7Lud/8eLreeCi58oZBdZfDwGkMbEie/pWJx3hUnEfr6uPv8hAQCAEfO/g/7T7iABAAAAAAAAAAAAAAAAAAAAT9I5H0s2GRF9z3w85v5wmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcKr/BAAA///7mdFb")
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c00028005000100000000004700028005000100010000000600064000000000060005"], 0xe4}}, 0x0)
write$binfmt_script(r7, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r7, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

27.750183776s ago: executing program 1 (id=272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000000000000000000000c677a89b65230483201c924744877765c3d9848bf013b1a54fbeee80066e38083fd49d534b8ffb199f93475bae4b26c04a28e5bff9e9c1b902595bb110388a4d2b9a6389190c43bdf89e67626c1ca868dec54102264f63fe505de667dc443974843e53709d03089329c10f44acd7537423be0a0c25f37a36526702", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_clone(0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
poll(0x0, 0x0, 0xfff)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
close(r2)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x3, 0x80000000}}, './file0/file0\x00'})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010700000000000000002000"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r6, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r8, 0x4, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20048014}, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000400)=@ethtool_ringparam={0x7, 0x0, 0x20040001, 0x0, 0xfffffffe}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000380)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffc00}, @ldst={0x2, 0x2, 0x3, 0x0, 0xa, 0xc, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa7840000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r10}, 0x55)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r11, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r11, &(0x7f0000000040), 0x0, 0x0, 0x0)

12.735794718s ago: executing program 32 (id=272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000000000000000000000c677a89b65230483201c924744877765c3d9848bf013b1a54fbeee80066e38083fd49d534b8ffb199f93475bae4b26c04a28e5bff9e9c1b902595bb110388a4d2b9a6389190c43bdf89e67626c1ca868dec54102264f63fe505de667dc443974843e53709d03089329c10f44acd7537423be0a0c25f37a36526702", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_clone(0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
poll(0x0, 0x0, 0xfff)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
close(r2)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x3, 0x80000000}}, './file0/file0\x00'})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010700000000000000002000"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r6, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r8, 0x4, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20048014}, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000400)=@ethtool_ringparam={0x7, 0x0, 0x20040001, 0x0, 0xfffffffe}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000380)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffc00}, @ldst={0x2, 0x2, 0x3, 0x0, 0xa, 0xc, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa7840000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r10}, 0x55)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r11, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r11, &(0x7f0000000040), 0x0, 0x0, 0x0)

11.963572051s ago: executing program 2 (id=497):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
modify_ldt$write(0x1, 0x0, 0x0)

11.914878521s ago: executing program 2 (id=499):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0xd20d, 0x2, 0x2, 0xfffffffe})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
socket$kcm(0x21, 0x2, 0x2)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYBLOB="010100000000006900"/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = timerfd_create(0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x102, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_clone(0x9804100, 0x0, 0x0, 0x0, 0x0, 0x0)
timerfd_settime(r3, 0x3, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r7}, &(0x7f00000002c0), &(0x7f00000004c0)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1e000000000000000400000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT=r6, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f90011ffb703000000000000b70400000000000085007b10162341d45692981f0000c300"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

11.649277452s ago: executing program 2 (id=504):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002b00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cf84ded40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c86e00f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec231fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce9474998356de0a22a2a10ac55e76c236070275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895012f1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c3405000000000000003871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f410196453c6a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d37261774cc5a3bf6b466cb72812da518ff602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d50a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851578d013e95dd931f4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a31b16ac5fb73fe0e5239c000be2733c49546f6e8a9175ec6a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953f88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a5fe1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ac06ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9d66ebbc8bab4ea81232fbef665f6212f875b2a00000000000000aceb111b66a500ca52fd8f848088c67ee65dfdcc4c580e9bc18c1699dca07d019bf1bf9dd3da480d6c155d7e60674ce88ab5ae07a9d16e22792d99986b531ab4e592ab5925da779e700cf20309a2137877690dc5c07956fc82d7b3c446d3138041af18508938c9be4e5d0a98073463a5cff6c146d020743da474cb81677a6f389f0e00c33b70b7f8bab95435c27167f365a29fb09cbf35bf192f6a65616fa2ad9a6c7ca3a3ecd96aaecd993e8badb40e7eb8a22b0015e70c885cd519e28448168c6d914265998bff74ea1b0e651a6cae9419096248a0e41573827ad60faece6e6540734c1f23f75337d836c31497e8112969a039d65aa297e2b046b5f4d11116a89f9f65693d4dc3e70fbfe0b2044fdb3f87e887d1daae8e38a0c19f668f776e19a02bb2449ee4384f6536879c85d7e41bc0276ee2b125d41ff358323311703ec01d64a573bdeb75bdcc87d01de38365ab9222713d2d1640a742d62fefb5403b2ed9969c32a0841e8c36b0107bb888eb14ac62e6d4bdfaeb9ee7436b97bf3825a19d6c8997ce285edf1d277ed703f560460417bfe702af833e83c5b987befb6d1fcf765ab7ea537d9dafb622a1ba8686cb9b1c63b84470364942e90d1cf856cead864f5e38c83b9ed86cc5725a20299ce512b1655b0265ff7ba2a17a152a8d7600537d50973bfa9a7b3e7d8ffec39950a3d1f863adafb6d9faeb065eb13540a721967e921692c0d28d85e24bb400"/4151], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r2}})

11.287140493s ago: executing program 2 (id=506):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f00000001c0)="84", 0x1)
getsockopt$inet6_tcp_buf(r0, 0x6, 0x1f, 0x0, &(0x7f00000003c0))
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000000c0)={[{@discard}, {@bsdgroups}, {@resuid}, {@noblock_validity}, {@minixdf}, {@errors_remount}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000600)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000200), &(0x7f0000000400)={0x0, 0xfb, 0x6c, 0x3, 0x1, "8ccaa77c0871db57e43377513f0445ee", "fa3046e066eeb7c652e601b37dcabfc29bd1bdc4ae10c53577a17bcac87bea12da0500fa11fca2afdd2ca1457272b2fb4d252915d0d67688b24b47a34859a16033f7afeda7263595a96f42aa543cfbe7465f00c2b87392"}, 0x6c, 0x1)
llistxattr(&(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRES64=0x0], 0x40}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
symlink(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
getpid()
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffffe, 0x4002011, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x81000f4)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, &(0x7f0000000240)=0x5, 0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
gettid()
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000000080)="a1", 0x20000081}], 0x2, 0x0)
vmsplice(r2, &(0x7f0000000040)=[{&(0x7f00000000c0)='c', 0x1}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000680)=ANY=[], &(0x7f0000000640)='syzkaller\x00', 0x8, 0xde, &(0x7f0000003e40)=""/222, 0x0, 0x4d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

11.028876264s ago: executing program 2 (id=510):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f00000007c0)={0x1f, 0x0, @any, 0x4}, 0xe)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)

7.20337412s ago: executing program 2 (id=569):
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000000))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x810)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000180)={0xb, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0xe0, 0xfbff, 0xf3, 0x8, 0x41b, 0x21e2a01b, "f82e7bbb9289cd444bedcdce7bf3ac6b5a54e325db3494def86f7574d2e60f2a5235e88d83273590b74440edc6d03c87c5c4b4db8ff32d58a651b271f2531c995e72c636f620e1ad4b3553a75898d7d26463908ddc00d16c0f07c1b25ac75e78aceb13833836c09d6d98edbfb78c6ee0bf2e8996e5f5de7141d00a76d60b8b96960e55b62fdf1840b90193aee7476f641133778cb29ac13b86d4f96f4a14e74806ab0b0aaf64658930784f85a7652bbf5d6c361132d0fdca150143f522e30f95531e1a6e0fc22ae0f29a8c6a0aa75a48be08f1663d273943c93e9e085cf5d4b8"}}, 0x1f8)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000440)={0xffffffffffffffff, &(0x7f0000000380)="3ed83a641125eceac85eab635a74905126b8580544e07f60bfa77a1ccd599dffae4ead2fe843db334bb58d2ad725324726773c5aa5e6a5d6cc1ccbc370156dd181b30611fc4bdb3836a6b8243551c8dbaa49f632d022001792e43d381276afe9a1520744f3a908bc1a0f319b51178a984116b2f9c1f061456aeb04a74a6878be089988b92e3b1afba1484adde015024077ca32a2ce6f1dc8dd4a9c50dbe7c10828f316b7a09560f65d0a5830fda6634d2692"}, 0x20)
syz_genetlink_get_family_id$team(&(0x7f0000000480), r0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x28, 0x0, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x20040001)
sendmsg$nl_generic(r0, &(0x7f00000008c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)={0x254, 0x18, 0x8, 0x70bd2d, 0x25dfdbfd, {0x18}, [@generic="aefc326834cc376f3b5620c9bede0cd1fb23f4682c3baf94ea202a7c534f429aa600d7ae890a1bc1b7c5ca9a8182ff8632d60166fcfe69cd0b37049c6a951e9c25f623635a791c1c4f87e85bce7046b1624f8b598d8bcaa6e53ec83c8fe67d5e624a20849b4fc1ce3bdda28665dded96b642a4a83fabd7553e3a208bf5a69eb2969e642b0b1bc747040d9ddc62d4686e0330d33bdda55ba474df6866a4de64e18ddcb4002541930ad75acdae3417a1524fa2b0747b2ec076f1ef4935b4f586e4d738cd629cb47cbfb2235504e5bfa9606219270374fc", @nested={0x168, 0x76, 0x0, 0x1, [@typed={0x8, 0xbe, 0x0, 0x0, @u32=0x80000000}, @typed={0x14, 0xb6, 0x0, 0x0, @ipv6=@private2}, @generic="90d117154bfa0a7b9d0b02393122792e5b2ed004f8bbc4819fcc86b03fe510d983829730c1fb65a851ca5664b8c1661478c969c6dbb97e8b8e91d4249c1531ae40f6107cc472f212ef26cb8f89edd03aef6ccabc21e998f6447dc3dc93829088be6f60097e75f52f5ebcaec571b7dd2fa9cb5986f653d151d64491c3", @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@private1}, @generic="8369a4791e19bdba5de4ebaa9a0973", @generic="6a27515001285413004de466d4ad0249adad09a478d423c418825f478a8b53ddf33c287889f02be4e29a16ea1b8b1a96315ddf9f61e45261d7860b30bcb158374a4d4d95dc7d86fc041c5476f51f249555ba4c6bbf77585c1de470fc6c9ff58e851dc3fdcec242b3f120302f8215cae9cd0528f93ecd1e2828cd11a3f08bff441e6aef61708f963c1cc46eae996e469262fbeabf37a86c610498848f87eae2a0e09a118cdad1365fe5"]}]}, 0x254}, 0x1, 0x0, 0x0, 0x40841}, 0x20000840)
r2 = creat(&(0x7f0000000900)='./file0\x00', 0x1)
r3 = getpid()
r4 = syz_open_procfs(r3, &(0x7f0000000940)='attr\x00')
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, &(0x7f0000000980))
bind$can_raw(r4, &(0x7f00000009c0), 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000a80)={'syztnl0\x00', &(0x7f0000000a00)={'ip6_vti0\x00', <r5=>0x0, 0x4, 0xcd, 0x0, 0xffffffff, 0x30, @private0, @empty, 0x1, 0x10, 0x8, 0xff}})
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000ac0)={0x1, 0x1, 0x4, r5, 0x81}, 0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r6=>r4, {0x7}}, './file0\x00'})
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000000b40)={0x824, 0x1, "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"})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = ioctl$TUNGETDEVNETNS(r6, 0x54e3, 0x0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r7, &(0x7f0000000d40)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0xe71e67a587bbc18f}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x34, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r4}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r6}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4800)
r9 = open(&(0x7f0000000d80)='./file0\x00', 0x0, 0x10)
ioctl$AUTOFS_IOC_EXPIRE(r9, 0x810c9365, &(0x7f0000000dc0)={{0xe}, 0x100, './file0\x00'})
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001000)={&(0x7f0000000f40)={0xa0, 0x0, 0x60a, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x400}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff9561}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7f}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffc}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x825}, 0x1)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000010c0), r7)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r7, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x34, r10, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040001}, 0x4000000)
syz_clone(0x102100, &(0x7f00000011c0)="1d1a04b6ad70195ec1679bf160534beec4c43a5b8c657773dd4ac508ef90944738e9f980cceb255eb8cf0db83ae97499a733fe9c20c059923c484bda3c2afae66018be0a41903d9c5db0625b1a8b96d5576d8b9374aa7c680b4380c9e916b2ce2dcf8f85e3c01b4f73a86ec06319cdb2beb8c2b4a0f6533ac2e363bd905b7a9b074943d88fc230560aff0cd965d8fac33eab7404d5a8ec1759b1173521f7fc38aedb", 0xa2, &(0x7f0000001280), &(0x7f00000012c0), &(0x7f0000001300)="9c7401835ddf57b7040bd74d167a4f44ad564ad894cec87425edd514219d4adcb8d0621cdadc54bdc543e9a5cbb815f20743e8baa4a7575d2c66b1c714db9f5970b28a6fcd9f06d293b46117549026eff74c455b071ff66f088180a29118bbb325b1e53a07f081a2bc50fd3f47c22dd12c")
syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000001380)={0x7, 0x9, 0x0, 0x0, 0x9})
pidfd_send_signal(r4, 0x3a, &(0x7f00000013c0)={0x23, 0x0, 0x1}, 0x0)

7.20312485s ago: executing program 33 (id=569):
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000000))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x810)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000180)={0xb, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0xe0, 0xfbff, 0xf3, 0x8, 0x41b, 0x21e2a01b, "f82e7bbb9289cd444bedcdce7bf3ac6b5a54e325db3494def86f7574d2e60f2a5235e88d83273590b74440edc6d03c87c5c4b4db8ff32d58a651b271f2531c995e72c636f620e1ad4b3553a75898d7d26463908ddc00d16c0f07c1b25ac75e78aceb13833836c09d6d98edbfb78c6ee0bf2e8996e5f5de7141d00a76d60b8b96960e55b62fdf1840b90193aee7476f641133778cb29ac13b86d4f96f4a14e74806ab0b0aaf64658930784f85a7652bbf5d6c361132d0fdca150143f522e30f95531e1a6e0fc22ae0f29a8c6a0aa75a48be08f1663d273943c93e9e085cf5d4b8"}}, 0x1f8)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000440)={0xffffffffffffffff, &(0x7f0000000380)="3ed83a641125eceac85eab635a74905126b8580544e07f60bfa77a1ccd599dffae4ead2fe843db334bb58d2ad725324726773c5aa5e6a5d6cc1ccbc370156dd181b30611fc4bdb3836a6b8243551c8dbaa49f632d022001792e43d381276afe9a1520744f3a908bc1a0f319b51178a984116b2f9c1f061456aeb04a74a6878be089988b92e3b1afba1484adde015024077ca32a2ce6f1dc8dd4a9c50dbe7c10828f316b7a09560f65d0a5830fda6634d2692"}, 0x20)
syz_genetlink_get_family_id$team(&(0x7f0000000480), r0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x28, 0x0, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x20040001)
sendmsg$nl_generic(r0, &(0x7f00000008c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)={0x254, 0x18, 0x8, 0x70bd2d, 0x25dfdbfd, {0x18}, [@generic="aefc326834cc376f3b5620c9bede0cd1fb23f4682c3baf94ea202a7c534f429aa600d7ae890a1bc1b7c5ca9a8182ff8632d60166fcfe69cd0b37049c6a951e9c25f623635a791c1c4f87e85bce7046b1624f8b598d8bcaa6e53ec83c8fe67d5e624a20849b4fc1ce3bdda28665dded96b642a4a83fabd7553e3a208bf5a69eb2969e642b0b1bc747040d9ddc62d4686e0330d33bdda55ba474df6866a4de64e18ddcb4002541930ad75acdae3417a1524fa2b0747b2ec076f1ef4935b4f586e4d738cd629cb47cbfb2235504e5bfa9606219270374fc", @nested={0x168, 0x76, 0x0, 0x1, [@typed={0x8, 0xbe, 0x0, 0x0, @u32=0x80000000}, @typed={0x14, 0xb6, 0x0, 0x0, @ipv6=@private2}, @generic="90d117154bfa0a7b9d0b02393122792e5b2ed004f8bbc4819fcc86b03fe510d983829730c1fb65a851ca5664b8c1661478c969c6dbb97e8b8e91d4249c1531ae40f6107cc472f212ef26cb8f89edd03aef6ccabc21e998f6447dc3dc93829088be6f60097e75f52f5ebcaec571b7dd2fa9cb5986f653d151d64491c3", @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@private1}, @generic="8369a4791e19bdba5de4ebaa9a0973", @generic="6a27515001285413004de466d4ad0249adad09a478d423c418825f478a8b53ddf33c287889f02be4e29a16ea1b8b1a96315ddf9f61e45261d7860b30bcb158374a4d4d95dc7d86fc041c5476f51f249555ba4c6bbf77585c1de470fc6c9ff58e851dc3fdcec242b3f120302f8215cae9cd0528f93ecd1e2828cd11a3f08bff441e6aef61708f963c1cc46eae996e469262fbeabf37a86c610498848f87eae2a0e09a118cdad1365fe5"]}]}, 0x254}, 0x1, 0x0, 0x0, 0x40841}, 0x20000840)
r2 = creat(&(0x7f0000000900)='./file0\x00', 0x1)
r3 = getpid()
r4 = syz_open_procfs(r3, &(0x7f0000000940)='attr\x00')
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, &(0x7f0000000980))
bind$can_raw(r4, &(0x7f00000009c0), 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000a80)={'syztnl0\x00', &(0x7f0000000a00)={'ip6_vti0\x00', <r5=>0x0, 0x4, 0xcd, 0x0, 0xffffffff, 0x30, @private0, @empty, 0x1, 0x10, 0x8, 0xff}})
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000ac0)={0x1, 0x1, 0x4, r5, 0x81}, 0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r6=>r4, {0x7}}, './file0\x00'})
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000000b40)={0x824, 0x1, "c41ddc75fd11d51ee1353c42664af48e5d430e69c8cad271577cc67ccea9306c3cd88d2f8f723e73f616279e6d0ece9031e34cfa411af3a6983858e2c922f94a7400483212cce567c5af080a8ab071785fa402ddd44052fe2a0ac93a7cca8576e630236b98998b0446a5fb29ac71658487416160520d484abe3496c49a7e78dfbc93b0b8272e9ee635227baaf09dc87fd601e0a8558dfad6f433c48886f83f57e945dc64469e381748a95c3c9b74b67cfa542ead1926191a911b73506eae4f4ffa81cb059a23f0d62e6a6984604468a57257001fe0227bf37aa941f06fdb0a2e7ad4b6eabb4bdb551b6144a82cef1da0327faa241e8c3e6c545e409027ec30f0"})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = ioctl$TUNGETDEVNETNS(r6, 0x54e3, 0x0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r7, &(0x7f0000000d40)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0xe71e67a587bbc18f}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x34, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r4}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r6}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4800)
r9 = open(&(0x7f0000000d80)='./file0\x00', 0x0, 0x10)
ioctl$AUTOFS_IOC_EXPIRE(r9, 0x810c9365, &(0x7f0000000dc0)={{0xe}, 0x100, './file0\x00'})
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001000)={&(0x7f0000000f40)={0xa0, 0x0, 0x60a, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x400}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff9561}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7f}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffc}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x825}, 0x1)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000010c0), r7)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r7, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x34, r10, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040001}, 0x4000000)
syz_clone(0x102100, &(0x7f00000011c0)="1d1a04b6ad70195ec1679bf160534beec4c43a5b8c657773dd4ac508ef90944738e9f980cceb255eb8cf0db83ae97499a733fe9c20c059923c484bda3c2afae66018be0a41903d9c5db0625b1a8b96d5576d8b9374aa7c680b4380c9e916b2ce2dcf8f85e3c01b4f73a86ec06319cdb2beb8c2b4a0f6533ac2e363bd905b7a9b074943d88fc230560aff0cd965d8fac33eab7404d5a8ec1759b1173521f7fc38aedb", 0xa2, &(0x7f0000001280), &(0x7f00000012c0), &(0x7f0000001300)="9c7401835ddf57b7040bd74d167a4f44ad564ad894cec87425edd514219d4adcb8d0621cdadc54bdc543e9a5cbb815f20743e8baa4a7575d2c66b1c714db9f5970b28a6fcd9f06d293b46117549026eff74c455b071ff66f088180a29118bbb325b1e53a07f081a2bc50fd3f47c22dd12c")
syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000001380)={0x7, 0x9, 0x0, 0x0, 0x9})
pidfd_send_signal(r4, 0x3a, &(0x7f00000013c0)={0x23, 0x0, 0x1}, 0x0)

1.584585963s ago: executing program 4 (id=664):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000440)='rpcgss_seqno\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
unshare(0x60400)
fsopen(&(0x7f0000000000)='devtmpfs\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000b48800008f556b8ffabb1e8a831ee0d684456da03eb6b33d15eb386e2cffae6ec678e5ad52798a5423f014f5ea4394b25538b65f941dcd6ee27ff0a4f2f53fe4e7a5f0b1f616f42dcbc546f209fedbe8a68fd49346df28db60d107164801c079", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002004007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x62181)
socket$netlink(0x10, 0x3, 0x4)
r4 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r4, 0x107, 0x9, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x2e}], 0x1}, 0x800)

1.541882403s ago: executing program 6 (id=665):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/14], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_SCRNMAP(r1, 0x5608, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) (async)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xbe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000000, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t') (async)
r3 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101, 0x81}, 0x0, 0xf5, 0x4, 0x9, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
ptrace(0x10, r4)
ptrace$setsig(0x4203, r4, 0x1000, &(0x7f00000002c0)={0x2d, 0xd5, 0x80})
socket(0x1, 0x2, 0x0) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="1d0000e6ff0000000000000000000000000000007425df441d37332a426d84b2201c3d9409a46a88b799fd0bfac3d32e758b66832f0a8bfd81e3210149e91ebbe483da54ccd824bdfeb0a40fc72a44c24cbdf7", @ANYRESDEC=r3, @ANYRES32], 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f00000005c0)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000004c0)={@map=r5, 0xffffffffffffffff, 0x11, 0x0, 0x0, @void, @value=r6}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000ef7430e3c7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000003ad8bbe031e3948600"/28], 0x48) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read(r7, 0x0, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1.351193774s ago: executing program 4 (id=671):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x100201, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), 0x0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000380)={r1, &(0x7f0000000600)="55026a4639d697acf3ae7221a92a18d1507e503efca1898e7b8cbd3960be53bed379fcca8954e52e9839692ae7c65c175e878f69653b770e0429d56d41f6561384e71bff3b8090303f654e9568a6e500fc891591a07d", &(0x7f00000004c0)=""/109}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x4008090)

1.248695564s ago: executing program 4 (id=674):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000220702500000000202020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000440)=@o_path={&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0}, 0x18)

1.106847505s ago: executing program 4 (id=676):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
setreuid(0xee00, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2810000, &(0x7f0000000380)={[{@user_xattr}, {@noquota}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsv1}, {@block_validity}, {@dioread_nolock}, {@noquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@delalloc}, {@user_xattr}, {@quota}]}, 0x1, 0x54f, &(0x7f0000000b00)="$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")
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20010004, 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

791.224117ms ago: executing program 6 (id=681):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="180100001700000000000000a54b0000850000007500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0xfffffffc)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000003c0)={0x4, 0x2, 0x0, 'queue0\x00', 0x9})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000640)='./file2\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000000500)=""/45, 0x2d)
getdents64(r3, 0x0, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r1}, 0x10)
socket$inet6(0xa, 0x6, 0x5)
epoll_create(0x7ffa)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x4000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180900"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f00000000c0)='./file2\x00', 0x280880f, &(0x7f0000000040), 0x32, 0x4f6, &(0x7f0000000100)="$eJzs3VFrHFsdAPD/TLL3Nm2um6s+1AteL95KUrSbpLFt8KEqiD4V1PpeY7INIZtsSTZtE4pN8QMIIioIoi/6IvgBCtKPIEJB30VFEW31wYfqyO7OxnS7m6S3m0xJfj84mTNnZ/f/P1nm7JyZYTeAE+u9iJiIiCzNsvMRUc7b07zEdrs0t3v65N58sySRZdf/PhJJ3tZ5rTfz5Zn8aaci4utfifhW8mLc9c2t5blarbqWr082VpJnWbZ1YWllbrG6WF2dmZm+PHtl9tLs1ED6ORYRV7/05x989xdfvvrrz9z5w42/Tny73cG23f0YpCRGXmgbjoi1wwhWkGZ/Snn90n4bPzj8fAAA6K95vP/hiPhkRJyPcgy1juYAAACA4yT7/Gg8SyIyAAAA4NhKI2I0krSS3+87GmlaqbTv4f1onE5r9fXGp7PyzvmCsSilN5dq1an83oGxKCXN9en8HtvO+sWu9ZmIeDsivl8eaa1X5uu1hULPfAAAAMDJcaZr/v+vcnv+DwAAABwzY0UnAAAAABw6838AAAA4/sz/AQAA4Fj76rVrzZJ1fv964fbmxnL99oWF6vpyZWVjvjJfX7tVWazXF1vf2bey3+vV6vVbn43VjbuTjep6Y3J9c+vGSn1jtXFjqfVz4AAAAEAB3v7Eo98nEbH9uZG00/ZGvixFZEN5/eHPf3K2mAyBw5K+zMZ/Orw8gKM3VHQCQGGGi04AKEyp6ASAwr04Djx/ZND35p3f7P/aybMs+4BpAQAAAzT+sZ3r/60Su67/J/cLTQ04ZPn1/yQpOhHgyLn+DyeX639wcpX2OgIwKYBjLz3Arv4q1//b3AMAAABFG22VJK3k84DRSNNKJeKt1s8ClJKbS7XqVER8KCJ+Vy692Vyfbj0zcXoAAAAAAAAAAAAAAAAAAAAAAAAAAA4oy5LIAAAAgGMtIv1L0joPMBTj5XOj3ecH3kj+XW4tI+LOj6//8O5co7E23Wz/x05740d5+8UizmAAAAAA3Trz9M48HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG6emTe/OdcpRx//bFiBjrFX84TrWWp6IUEaf/mcTwruclETE0gPjbDyLibK/4STOtGMuz6I6fRsRIwfHPDCA+nGSPmuPPF3rtf2m811r23v+G8/Kq+o9/6c74N9Rn/HvrgDHeefyryb7xH0S8M9x7/OnET/rEf/+A8b/5ja2tfo9lP4sY7/n5kzwXa7KxcmtyfXPrwtLK3GJ1sbo6MzN9efbK7KXZqcmbS7Vq/rdnjO99/OF/9+r/6T7xx/bp/7kD9v8/j+8++Ui7Wup6qBQ/zbKJ93u//2dby3LWHb/z2fep/HOguT7eqW+367u9+8vfvrtX/xf69H+/93/igP0//7Xv/PGAmwIAR2B9c2t5rlarrqmcmMrIkQcdiSPs4Fy8Jv/n+/k+9rq87y9XKXhgAgAABu7/B/1FZwIAAAAAAAAAAAAAAAAAAAAn135fAxYD+Dqx7pjbxXQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBP/wsAAP//urHeIQ==")
socket(0x200000000000011, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r6, 0x0, 0x20000000}, 0x20)

724.275997ms ago: executing program 0 (id=687):
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, 0x0)
symlink(&(0x7f0000001780)='./file0/../file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
sigaltstack(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = memfd_create(&(0x7f0000000380)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\xb6\xe2\v', 0x0)
write$binfmt_script(r3, &(0x7f0000000600)={'#! ', './file0/../file0'}, 0x14)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

658.167127ms ago: executing program 3 (id=690):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x40241, 0x0) (async)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c) (async)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xffd0}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) (async)
socket(0x26, 0x5, 0x0) (async)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040))

547.522077ms ago: executing program 3 (id=691):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0xb4, &(0x7f0000000b00)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd60008704007e3a00fe8000030000000000000000000000bbff020000000000000000000000000001"], 0x0)

547.316797ms ago: executing program 3 (id=692):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x3d, &(0x7f0000000000)=0x8, 0x11)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=@getnetconf={0x14, 0x52, 0x200, 0x70bd2a, 0x25dfdbff, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x1)

514.816628ms ago: executing program 0 (id=693):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
recvmmsg(r0, &(0x7f00000050c0)=[{{0x0, 0x0, &(0x7f0000001540)=[{0x0}, {&(0x7f00000002c0)=""/59, 0x3b}], 0x2}}], 0x1, 0x2, 0x0) (async)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000800)={0x1, 0x58, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x14, 0x206d, &(0x7f0000000540)=ANY=[@ANYRES16, @ANYBLOB="364b58efe7bd9a1ca1f62aca417e1749fac8deae4253650553256096613c66fed191ec329bdd2079c416fecf3f1a5b9c10eab2ecc8c75971e1cb77a7851c957909851090ca2c8fe97d67268786c5fd7078a582b32ea6176c891c99705111434bdd833c0f355c79b19bb8e58986c53aeab1aea011dcec23727ad33da4cd2b8afe15e8757cf671dede7d4a95e183e89dde49d3007f59425c2c927fd8e2e8ac654bed7d281081d96753530386941619e01826c8105e4dcbf0048a84c79b5e9f27f0585d6ee4047b79d42bc1a31c60d7faf055bd0dc686a8"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', r1, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x228a00, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TIOCGDEV(r4, 0x80045432, &(0x7f0000000200))
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) (async)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x8, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) (async)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES16=r0], 0xb4}}, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f00000000c0)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x23a, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
unshare(0x62040200)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, 0x0)
write$tun(r7, 0x0, 0x2a)

457.010768ms ago: executing program 6 (id=695):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010008000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x800}, 0x18)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)

455.515117ms ago: executing program 5 (id=696):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x8000004, 0x4)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680))
getgid()
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, 0x0, &(0x7f0000000340)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
geteuid()

413.078808ms ago: executing program 3 (id=697):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={0x0, 0x60, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x1, 0x8, 0x101}, 0x14}}, 0x0)

412.651888ms ago: executing program 5 (id=698):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000220702500000000202020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000440)=@o_path={&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0}, 0x18)

381.587028ms ago: executing program 6 (id=699):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x100201, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000380)={r1, &(0x7f0000000600)="55026a4639d697acf3ae7221a92a18d1507e503efca1898e7b8cbd3960be53bed379fcca8954e52e9839692ae7c65c175e878f69653b770e0429d56d41f6561384e71bff3b8090303f654e9568a6e500fc891591a07d", &(0x7f00000004c0)=""/109}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x4008090)

326.771908ms ago: executing program 5 (id=700):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000008385000000710000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
modify_ldt$write(0x1, 0x0, 0x0)

326.600568ms ago: executing program 0 (id=701):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r2, 0x2285, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
write$sndseq(r3, &(0x7f0000000800)=[{0x20, 0x0, 0x0, 0x0, @time={0x10b, 0x3}, {}, {0x0, 0x3}, @connect={{0x0, 0x9}}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time={0x2}}, {0x0, 0x0, 0x0, 0x0, @time, {0x0, 0xfc}, {}, @raw8={"b134b141793d8609365bda4d"}}], 0x54)

326.231268ms ago: executing program 3 (id=702):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff0056a81acc95e7ca000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2804018, &(0x7f0000000a40), 0x6, 0x763, &(0x7f0000000280)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140))
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.swap.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
ftruncate(r6, 0x8001)
ioctl$KDSKBSENT(r5, 0x4b49, &(0x7f0000001240)={0x0, "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"})
sendmsg$NL80211_CMD_SET_BEACON(r4, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000c80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="2b0300034000fcdbdf250500000008000300", @ANYRES32=0x0, @ANYBLOB="d486d3b03a7fd526a2b53a61abd9b75e8c6118a65c29a75506fe2d32715dacec367a404179be3b4dd9d0eb7d254fd4f53f81724827f873a839c0bdc13f1228e8c85af02ff0ecaac0f4b6"], 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000001600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000040002850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b4000000000000007117130000000000a6070000008300f29500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
fcntl$addseals(r8, 0x409, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb7, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x99}, [@ldst={0x7}]}, &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2a)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r12=>0x0})
sendmsg$FOU_CMD_ADD(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x2c, r11, 0x1, 0x70bd2d, 0x0, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_IFINDEX={0x8, 0xb, r12}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048091}, 0x0)
sendmsg$FOU_CMD_ADD(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r11, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000080)={[{@resgid}, {@lazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@block_validity}, {@block_validity}, {@quota}]}, 0x1, 0x451, &(0x7f0000000780)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)

326.032198ms ago: executing program 5 (id=703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1c8}}, 0x800)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0)
accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000500))
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCGPGRP(r2, 0x8904, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x54, r6, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x0, @rand_addr=0x64010101}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
lstat(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r1, {0xee00, 0xee01}}, './file0\x00'})
sendmsg$unix(0xffffffffffffffff, 0x0, 0x4)

305.585329ms ago: executing program 6 (id=704):
syz_read_part_table(0x60d, &(0x7f0000002240)="$eJzs3D9olHcYB/DvJbmcUTAdnFxqHDoJRXE0Q5XkqlgIp1IIDvYfIs0UIXDSw5Q4tBkUM0jHLlK4DhonYwYnRaFzEQeLkMGlYBepHXLl7l6SOyjF0oRS/HyGe353PDzf94F3/V34XxtIuTi1Kp3y/qd/298a3TzP50xzYvJ4q9VqnU5KOZtyxsq7l5MMpX9q9icZ7plz8/udq9/+9mG5+fTUq/fOPVgc2JhZyTtJdvU2Z+SvHqXyzzZlO9wafzi6cGW2erX9pdpYW/84uf1yorZycnFp+UT52Oft3y8nj4r+7osxkoup51K+zCdDbxz19eax1Jc/386vj194Um2sfdd8fnB9b3Xw7vkjr/etXrt/KJlrR0yl87JvGv6Xi/fkL/Tkz41dn15qHD1wZ8+Nw/V7j2svBn9vdRWR5a3JBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABge9xqf1yZrV6tj194Um2sffPzTx/dfjlRWzm5uLR8YvjYs6LvUVGHinox9VxKOclMZvJFZt88crrUmz/+cHRhI/+Pncnzg+t7q82754+8nly9dv9Qp6uUqXYZ2IqN+/XnN9bmxq5PLzWOHriz58bh+r3HtReD3b6ZSj7rrJuksvWPAQAAAAAAAAAAAAAAAAAAwFtuYvL4vqkPaqeTUs7uSPLrV51b9q3KyI/p3Lzv2l/UZ5Vkd5KbO7r/BdB8eurV8LkHi78Ul+LnU8l8kl0/rJxJ3t3IudwfW96czH/pzwAAAP//gTiR5w==")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, 0x0)
symlink(&(0x7f0000001780)='./file0/../file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
sigaltstack(&(0x7f0000000200)={0x0, 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = memfd_create(&(0x7f0000000380)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\xb6\xe2\v', 0x0)
write$binfmt_script(r3, &(0x7f0000000600)={'#! ', './file0/../file0'}, 0x14)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

234.740768ms ago: executing program 0 (id=705):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000240)='./file1\x00', 0x3200010, &(0x7f0000000c00)=ANY=[], 0x3, 0x7b9, &(0x7f0000001d80)="$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") (async)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x0, 0x51)
sendfile(0xffffffffffffffff, r2, 0x0, 0xe065) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) (async)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000001c0), r1) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0}) (async)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1) (async)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10) (async)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000004c0)='./file0\x00') (async)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x200000}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000280)={'wg2\x00'}) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f00000002c0)={@multicast2, @remote, <r11=>0x0}, &(0x7f0000000340)=0xc)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000440)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000480)=[0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0], 0x0, 0xb3, &(0x7f0000000300)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000680), &(0x7f00000006c0), 0x8, 0x7c, 0x8, 0x8, &(0x7f0000000700)}}, 0x10) (async)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000a00)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000bc0)={0x110, r4, 0x100, 0x70bd26, 0x25dfdbf7, {}, [{{0x8, 0x1, r5}, {0xac, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xd}}}]}}, {{0x8, 0x1, r11}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}]}}]}, 0x110}, 0x1, 0x0, 0x0, 0x4050}, 0x4000001) (async)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r12, 0x0, 0x5}, 0x18) (async)
getgroups(0x0, 0x0)
socket(0x10, 0x803, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)

139.424389ms ago: executing program 5 (id=706):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d000000180100000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000280)={<r2=>0x0, @in6={{0xa, 0x4e23, 0x4246, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xb}}, 0x20000, 0x9, 0x18, 0x4, 0x1000}, &(0x7f0000000340)=0x98)
getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000380)=@assoc_value={<r3=>r2, 0xc}, &(0x7f00000003c0)=0x8)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
inotify_add_watch(r4, 0x0, 0x4000404)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000980)=@nat={'nat\x00', 0x1b, 0x5, 0x638, 0x340, 0x250, 0xffffffff, 0x160, 0x250, 0x568, 0x568, 0xffffffff, 0x568, 0x568, 0x5, &(0x7f00000001c0), {[{{@uncond, 0x0, 0x118, 0x160, 0x0, {}, [@common=@dst={{0x48}, {0xfffffff9, 0x1, 0x0, [0x90d, 0x9, 0xc3, 0x100, 0x8, 0xfff, 0x0, 0x8, 0x100, 0x1000, 0x9, 0x4, 0x6, 0x800, 0x6, 0x7], 0x2}}, @common=@ipv6header={{0x28}, {0x42, 0x9}}]}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0xa, @ipv6=@private0, @ipv4=@multicast2, @port=0x4e21, @icmp_id=0x64}}}, {{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0xffffffff, 0xff000000, 0xffffffff], [0x0, 0xff, 0xff, 0xff], 'syz_tun\x00', 'macvlan1\x00', {}, {}, 0x6c, 0x1, 0x1}, 0x0, 0xa8, 0xf0}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv4=@broadcast, @ipv4=@local, @gre_key=0x401, @gre_key}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x2, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv6=@loopback, @gre_key=0x2, @gre_key}}}, {{@uncond, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138}, {0xff, [0x2736, 0x6], 0x8001, 0x30, 0x1, [@mcast2, @mcast2, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x1a}, @loopback, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x2e}, @empty, @private0, @local, @local], 0x7}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x10, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv6=@private1, @port=0x4e22, @icmp_id=0x4}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x698)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
setsockopt$inet_sctp_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000400)=@assoc_value={r3, 0x8}, 0x8)

139.138039ms ago: executing program 4 (id=707):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ce93bb5745948f163b810100a50010006d000000850000005000d2164a1009d9000095f5c78653418bc2b7760b03027a1ac81977abc09c77b195f8f097a73cf6ca1e349ec1c291ae4f7e66cb05862422de3f2c50e5344da29dae23fd9d5d6790834bbd2164990c5550adfcf028"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
llistxattr(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000a40)=""/4096, 0x1000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x6e, 0x20000, 0x0, 0x0, 0x10, 0x0, 0xfffffffd, 0x0, 0x0, 0x81})
close(r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'wlan0\x00', 0x8000})
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./control\x00', &(0x7f0000000080), 0x80, &(0x7f00000003c0)=ANY=[@ANYBLOB='mpol=prefer:0', @ANYRESOCT])
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x36, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x800}, {}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @alu={0x7, 0x0, 0x81eda7cfc6e7dd2b, 0x6, 0x5, 0x100, 0x1}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x4}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xff}}, @map_fd={0x18, 0x3}, @exit, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x100}}, @map_idx={0x18, 0x9, 0x5, 0x0, 0x9}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffd}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001140)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
ptrace$cont(0x21, r5, 0x7ff, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r8, 0x5453, 0x0)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCMBIC(r9, 0x5415, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

139.014809ms ago: executing program 0 (id=708):
syz_read_part_table(0x1053, &(0x7f0000003100)="$eJzsz7GRwjAUBNC1zzceZ9fEZcTENOF6gE6IKY6UjM/I9lACELyXaPRXK43CR+0yJONv8pO/TMlxmZ639F5VQ5Iu6fp1dNiiGte1xdUk/dZ5Xb4cue3n1h+qa7vLlJzyqP9qT87Xt30UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL7YMwAA///L3RVj")
r0 = socket$kcm(0x10, 0x2, 0x0)
dup3(r0, r0, 0x80000)
r1 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ftruncate(r2, 0x5)
read(r1, &(0x7f0000000080)=""/42, 0xffffff9b)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef42b000000e3bd6efb010511000b0002000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

74.953769ms ago: executing program 5 (id=709):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010008000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x800}, 0x18)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)

68.104589ms ago: executing program 6 (id=710):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)

15.54565ms ago: executing program 3 (id=711):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x8000004, 0x4)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000680))
getgid()
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, 0x0, &(0x7f0000000340)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
geteuid()

15.342679ms ago: executing program 0 (id=712):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)

0s ago: executing program 4 (id=713):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r3}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10468002}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x2c, 0x6, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x8080)
rt_sigqueueinfo(0x0, 0x9, 0x0)

kernel console output (not intermixed with test programs):

25f956080 RCX: 00007fc25f790849
[   45.976606][ T4119] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[   45.984714][ T4119] RBP: 00007fc25ddcd0a0 R08: 0000000000000000 R09: 0000000000000000
[   45.992688][ T4119] R10: 00000000200029c0 R11: 0000000000000246 R12: 0000000000000001
[   46.000689][ T4119] R13: 0000000000000001 R14: 00007fc25f956080 R15: 00007ffcd9eee2e8
[   46.008784][ T4119]  </TASK>
[   46.011990][ T4119] socket: no more sockets
[   46.314058][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.370206][ T4181] netlink: 'syz.0.208': attribute type 10 has an invalid length.
[   46.409442][ T4181] lo: entered promiscuous mode
[   46.415838][ T4181] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   46.473598][ T4193] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   46.473598][ T4193]    program syz.0.217 not setting count and/or reply_len properly
[   46.490880][ T4195] FAULT_INJECTION: forcing a failure.
[   46.490880][ T4195] name failslab, interval 1, probability 0, space 0, times 0
[   46.503653][ T4195] CPU: 1 UID: 0 PID: 4195 Comm: syz.4.218 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   46.513924][ T4195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.524137][ T4195] Call Trace:
[   46.527433][ T4195]  <TASK>
[   46.530438][ T4195]  dump_stack_lvl+0xf2/0x150
[   46.535109][ T4195]  dump_stack+0x15/0x1a
[   46.539395][ T4195]  should_fail_ex+0x223/0x230
[   46.544104][ T4195]  should_failslab+0x8f/0xb0
[   46.548910][ T4195]  kmem_cache_alloc_node_noprof+0x59/0x320
[   46.554752][ T4195]  ? __alloc_skb+0x10b/0x310
[   46.559387][ T4195]  __alloc_skb+0x10b/0x310
[   46.563923][ T4195]  ? audit_log_start+0x34c/0x6b0
[   46.568899][ T4195]  audit_log_start+0x368/0x6b0
[   46.573717][ T4195]  ? kmem_cache_free+0xdc/0x2d0
[   46.578601][ T4195]  audit_seccomp+0x4b/0x130
[   46.583132][ T4195]  ? cgroup_rstat_updated+0x9f/0x570
[   46.588440][ T4195]  __seccomp_filter+0x6fa/0x1180
[   46.593517][ T4195]  ? __perf_event_task_sched_out+0x138/0x1010
[   46.599698][ T4195]  ? __dequeue_entity+0x22/0x310
[   46.604738][ T4195]  __secure_computing+0x9f/0x1c0
[   46.609744][ T4195]  syscall_trace_enter+0xd1/0x1f0
[   46.614860][ T4195]  do_syscall_64+0xaa/0x1c0
[   46.619396][ T4195]  ? clear_bhb_loop+0x55/0xb0
[   46.624126][ T4195]  ? clear_bhb_loop+0x55/0xb0
[   46.628883][ T4195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.634811][ T4195] RIP: 0033:0x7f98c7c6f25c
[   46.639249][ T4195] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   46.658954][ T4195] RSP: 002b:00007f98c62e7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.667399][ T4195] RAX: ffffffffffffffda RBX: 00007f98c7e35fa0 RCX: 00007f98c7c6f25c
[   46.675404][ T4195] RDX: 000000000000000f RSI: 00007f98c62e70b0 RDI: 0000000000000006
[   46.683406][ T4195] RBP: 00007f98c62e70a0 R08: 0000000000000000 R09: 0000000000000000
[   46.691564][ T4195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.699682][ T4195] R13: 0000000000000000 R14: 00007f98c7e35fa0 R15: 00007ffd19093258
[   46.707735][ T4195]  </TASK>
[   46.777884][ T4202] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   46.800334][   T29] kauditd_printk_skb: 503 callbacks suppressed
[   46.800351][   T29] audit: type=1400 audit(1733063001.240:2167): avc:  denied  { getopt } for  pid=4198 comm="syz.2.220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   46.827569][   T29] audit: type=1326 audit(1733063001.240:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4196 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   46.851119][   T29] audit: type=1326 audit(1733063001.240:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4196 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   46.874522][   T29] audit: type=1326 audit(1733063001.260:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   46.898007][   T29] audit: type=1326 audit(1733063001.260:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   46.921452][   T29] audit: type=1326 audit(1733063001.260:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   46.945019][   T29] audit: type=1326 audit(1733063001.260:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   46.951740][ T4209] Cannot find del_set index 0 as target
[   46.968457][   T29] audit: type=1326 audit(1733063001.260:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   46.995303][ T4210] netlink: 8 bytes leftover after parsing attributes in process `syz.0.219'.
[   46.997172][   T29] audit: type=1326 audit(1733063001.260:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   47.030421][   T29] audit: type=1326 audit(1733063001.260:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4198 comm="syz.2.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   47.154770][ T4223] netlink: 4 bytes leftover after parsing attributes in process `syz.1.227'.
[   47.166010][ T4223] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.173570][ T4223] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.182996][ T4223] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.190729][ T4223] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.220967][ T4228] FAULT_INJECTION: forcing a failure.
[   47.220967][ T4228] name failslab, interval 1, probability 0, space 0, times 0
[   47.233673][ T4228] CPU: 0 UID: 0 PID: 4228 Comm: syz.3.230 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   47.234258][ T4225] netlink: 12 bytes leftover after parsing attributes in process `syz.2.229'.
[   47.243925][ T4228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   47.243943][ T4228] Call Trace:
[   47.243952][ T4228]  <TASK>
[   47.243961][ T4228]  dump_stack_lvl+0xf2/0x150
[   47.273734][ T4228]  dump_stack+0x15/0x1a
[   47.277970][ T4228]  should_fail_ex+0x223/0x230
[   47.281606][ T4230] FAULT_INJECTION: forcing a failure.
[   47.281606][ T4230] name failslab, interval 1, probability 0, space 0, times 0
[   47.282661][ T4228]  ? audit_log_d_path+0x96/0x250
[   47.300187][ T4228]  should_failslab+0x8f/0xb0
[   47.304840][ T4228]  __kmalloc_cache_noprof+0x4e/0x320
[   47.310141][ T4228]  audit_log_d_path+0x96/0x250
[   47.315005][ T4228]  ? __rcu_read_unlock+0x4e/0x70
[   47.320023][ T4228]  audit_log_d_path_exe+0x42/0x70
[   47.325062][ T4228]  audit_log_task+0x192/0x1c0
[   47.329755][ T4228]  audit_seccomp+0x68/0x130
[   47.334328][ T4228]  __seccomp_filter+0x6fa/0x1180
[   47.339291][ T4228]  __secure_computing+0x9f/0x1c0
[   47.344281][ T4228]  syscall_trace_enter+0xd1/0x1f0
[   47.349335][ T4228]  ? fpregs_assert_state_consistent+0x83/0xa0
[   47.355429][ T4228]  do_syscall_64+0xaa/0x1c0
[   47.359995][ T4228]  ? clear_bhb_loop+0x55/0xb0
[   47.364688][ T4228]  ? clear_bhb_loop+0x55/0xb0
[   47.369459][ T4228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.375366][ T4228] RIP: 0033:0x7fa7fa6cf25c
[   47.379845][ T4228] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   47.399496][ T4228] RSP: 002b:00007fa7f8d47050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   47.407974][ T4228] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6cf25c
[   47.416015][ T4228] RDX: 000000000000000f RSI: 00007fa7f8d470b0 RDI: 0000000000000006
[   47.424048][ T4228] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   47.432022][ T4228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   47.440010][ T4228] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   47.448006][ T4228]  </TASK>
[   47.451028][ T4230] CPU: 1 UID: 0 PID: 4230 Comm: syz.4.231 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   47.461298][ T4230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   47.471368][ T4230] Call Trace:
[   47.474652][ T4230]  <TASK>
[   47.477618][ T4230]  dump_stack_lvl+0xf2/0x150
[   47.482246][ T4230]  dump_stack+0x15/0x1a
[   47.486476][ T4230]  should_fail_ex+0x223/0x230
[   47.491389][ T4230]  should_failslab+0x8f/0xb0
[   47.496011][ T4230]  kmem_cache_alloc_noprof+0x52/0x320
[   47.501394][ T4230]  ? __proc_create+0x254/0x4a0
[   47.506233][ T4230]  __proc_create+0x254/0x4a0
[   47.510848][ T4230]  _proc_mkdir+0x5f/0x100
[   47.515198][ T4230]  proc_net_ns_init+0x190/0x1f0
[   47.520080][ T4230]  ops_init+0x1c9/0x260
[   47.524266][ T4230]  setup_net+0x14d/0x600
[   47.528576][ T4230]  copy_net_ns+0x290/0x430
[   47.533053][ T4230]  create_new_namespaces+0x228/0x430
[   47.538391][ T4230]  unshare_nsproxy_namespaces+0xe6/0x120
[   47.544061][ T4230]  ksys_unshare+0x3c9/0x6e0
[   47.548670][ T4230]  __x64_sys_unshare+0x1f/0x30
[   47.553503][ T4230]  x64_sys_call+0x1a3e/0x2dc0
[   47.558309][ T4230]  do_syscall_64+0xc9/0x1c0
[   47.562846][ T4230]  ? clear_bhb_loop+0x55/0xb0
[   47.567579][ T4230]  ? clear_bhb_loop+0x55/0xb0
[   47.572373][ T4230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.578295][ T4230] RIP: 0033:0x7f98c7c70849
[   47.582729][ T4230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.602434][ T4230] RSP: 002b:00007f98c62e7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   47.610875][ T4230] RAX: ffffffffffffffda RBX: 00007f98c7e35fa0 RCX: 00007f98c7c70849
[   47.618855][ T4230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042000200
[   47.626912][ T4230] RBP: 00007f98c62e70a0 R08: 0000000000000000 R09: 0000000000000000
[   47.634981][ T4230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.643040][ T4230] R13: 0000000000000000 R14: 00007f98c7e35fa0 R15: 00007ffd19093258
[   47.651115][ T4230]  </TASK>
[   47.716026][ T4234] netlink: 4 bytes leftover after parsing attributes in process `syz.3.232'.
[   47.799892][ T4239] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   47.853109][ T4256] xt_hashlimit: max too large, truncated to 1048576
[   47.870250][ T4256] FAULT_INJECTION: forcing a failure.
[   47.870250][ T4256] name failslab, interval 1, probability 0, space 0, times 0
[   47.880144][ T4257] loop1: detected capacity change from 0 to 1024
[   47.883014][ T4256] CPU: 1 UID: 0 PID: 4256 Comm: syz.3.238 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   47.899498][ T4256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   47.899513][ T4256] Call Trace:
[   47.899520][ T4256]  <TASK>
[   47.899528][ T4256]  dump_stack_lvl+0xf2/0x150
[   47.899587][ T4256]  dump_stack+0x15/0x1a
[   47.899618][ T4256]  should_fail_ex+0x223/0x230
[   47.899678][ T4256]  should_failslab+0x8f/0xb0
[   47.899742][ T4256]  __kmalloc_cache_node_noprof+0x56/0x320
[   47.899814][ T4256]  ? __get_vm_area_node+0xfb/0x1c0
[   47.899844][ T4256]  __get_vm_area_node+0xfb/0x1c0
[   47.899933][ T4256]  __vmalloc_node_range_noprof+0x280/0xe80
[   47.899964][ T4256]  ? htable_create+0xee/0x430
[   47.900015][ T4256]  ? __rcu_read_unlock+0x4e/0x70
[   47.900048][ T4256]  ? save_fpregs_to_fpstate+0x102/0x160
[   47.900077][ T4256]  ? _raw_spin_unlock+0x26/0x50
[   47.900118][ T4256]  ? finish_task_switch+0xb5/0x2b0
[   47.900138][ T4256]  ? htable_create+0xee/0x430
[   47.900167][ T4256]  vmalloc_noprof+0x5e/0x70
[   47.900234][ T4256]  ? htable_create+0xee/0x430
[   47.900258][ T4256]  htable_create+0xee/0x430
[   47.900284][ T4256]  hashlimit_mt_check_common+0x597/0x6a0
[   47.900312][ T4256]  hashlimit_mt_check_v1+0x116/0x140
[   47.900339][ T4256]  xt_check_match+0x259/0x4b0
[   47.900465][ T4256]  ? strnlen+0x28/0x50
[   47.900495][ T4256]  ? strcmp+0x21/0x50
[   47.900522][ T4256]  ? xt_find_match+0x1c1/0x1e0
[   47.900545][ T4256]  translate_table+0xa99/0xf70
[   47.900650][ T4256]  ? _copy_from_user+0x8d/0xb0
[   47.900695][ T4256]  do_ipt_set_ctl+0x7bd/0x8b0
[   47.900720][ T4256]  nf_setsockopt+0x195/0x1b0
[   47.900753][ T4256]  ip_setsockopt+0xea/0x100
[   47.900820][ T4256]  udp_setsockopt+0x95/0xb0
[   47.900913][ T4256]  sock_common_setsockopt+0x64/0x80
[   47.900942][ T4256]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   47.901009][ T4256]  __sys_setsockopt+0x187/0x200
[   47.901113][ T4256]  __x64_sys_setsockopt+0x66/0x80
[   47.901146][ T4256]  x64_sys_call+0x282e/0x2dc0
[   47.901188][ T4256]  do_syscall_64+0xc9/0x1c0
[   47.901216][ T4256]  ? clear_bhb_loop+0x55/0xb0
[   47.901245][ T4256]  ? clear_bhb_loop+0x55/0xb0
[   47.901275][ T4256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.901322][ T4256] RIP: 0033:0x7fa7fa6d0849
[   47.901338][ T4256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.901356][ T4256] RSP: 002b:00007fa7f8d47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   47.901376][ T4256] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6d0849
[   47.901390][ T4256] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000006
[   47.901402][ T4256] RBP: 00007fa7f8d470a0 R08: 0000000000000538 R09: 0000000000000000
[   47.901415][ T4256] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000001
[   47.901460][ T4256] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   47.901479][ T4256]  </TASK>
[   47.901541][ T4256] syz.3.238: vmalloc error: size 65736, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[   48.078094][ T4257] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.081281][ T4256] ,cpuset=/,mems_allowed=0
[   48.210988][ T4256] CPU: 1 UID: 0 PID: 4256 Comm: syz.3.238 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   48.221293][ T4256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   48.231451][ T4256] Call Trace:
[   48.234752][ T4256]  <TASK>
[   48.237716][ T4256]  dump_stack_lvl+0xf2/0x150
[   48.242362][ T4256]  dump_stack+0x15/0x1a
[   48.246621][ T4256]  warn_alloc+0x145/0x1b0
[   48.251167][ T4256]  __vmalloc_node_range_noprof+0x2a5/0xe80
[   48.257066][ T4256]  ? __rcu_read_unlock+0x4e/0x70
[   48.262114][ T4256]  ? save_fpregs_to_fpstate+0x102/0x160
[   48.267731][ T4256]  ? _raw_spin_unlock+0x26/0x50
[   48.272617][ T4256]  ? finish_task_switch+0xb5/0x2b0
[   48.277789][ T4256]  ? htable_create+0xee/0x430
[   48.282497][ T4256]  vmalloc_noprof+0x5e/0x70
[   48.287126][ T4256]  ? htable_create+0xee/0x430
[   48.291873][ T4256]  htable_create+0xee/0x430
[   48.296456][ T4256]  hashlimit_mt_check_common+0x597/0x6a0
[   48.302093][ T4256]  hashlimit_mt_check_v1+0x116/0x140
[   48.307416][ T4256]  xt_check_match+0x259/0x4b0
[   48.312120][ T4256]  ? strnlen+0x28/0x50
[   48.316198][ T4256]  ? strcmp+0x21/0x50
[   48.320189][ T4256]  ? xt_find_match+0x1c1/0x1e0
[   48.325008][ T4256]  translate_table+0xa99/0xf70
[   48.329859][ T4256]  ? _copy_from_user+0x8d/0xb0
[   48.334765][ T4256]  do_ipt_set_ctl+0x7bd/0x8b0
[   48.339487][ T4256]  nf_setsockopt+0x195/0x1b0
[   48.344143][ T4256]  ip_setsockopt+0xea/0x100
[   48.348653][ T4256]  udp_setsockopt+0x95/0xb0
[   48.353165][ T4256]  sock_common_setsockopt+0x64/0x80
[   48.358443][ T4256]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   48.364348][ T4256]  __sys_setsockopt+0x187/0x200
[   48.369306][ T4256]  __x64_sys_setsockopt+0x66/0x80
[   48.374776][ T4256]  x64_sys_call+0x282e/0x2dc0
[   48.379453][ T4256]  do_syscall_64+0xc9/0x1c0
[   48.384142][ T4256]  ? clear_bhb_loop+0x55/0xb0
[   48.388826][ T4256]  ? clear_bhb_loop+0x55/0xb0
[   48.393575][ T4256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.399485][ T4256] RIP: 0033:0x7fa7fa6d0849
[   48.403948][ T4256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.423635][ T4256] RSP: 002b:00007fa7f8d47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   48.432062][ T4256] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6d0849
[   48.440055][ T4256] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000006
[   48.448045][ T4256] RBP: 00007fa7f8d470a0 R08: 0000000000000538 R09: 0000000000000000
[   48.456025][ T4256] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000001
[   48.463995][ T4256] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   48.471994][ T4256]  </TASK>
[   48.475140][ T4256] Mem-Info:
[   48.478379][ T4256] active_anon:4016 inactive_anon:0 isolated_anon:0
[   48.478379][ T4256]  active_file:4912 inactive_file:1923 isolated_file:0
[   48.478379][ T4256]  unevictable:0 dirty:494 writeback:0
[   48.478379][ T4256]  slab_reclaimable:2724 slab_unreclaimable:13553
[   48.478379][ T4256]  mapped:28701 shmem:376 pagetables:770
[   48.478379][ T4256]  sec_pagetables:0 bounce:0
[   48.478379][ T4256]  kernel_misc_reclaimable:0
[   48.478379][ T4256]  free:1897941 free_pcp:11721 free_cma:0
[   48.523487][ T4256] Node 0 active_anon:16004kB inactive_anon:0kB active_file:19648kB inactive_file:7748kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:114712kB dirty:1996kB writeback:0kB shmem:1508kB writeback_tmp:0kB kernel_stack:2864kB pagetables:3060kB sec_pagetables:0kB all_unreclaimable? no
[   48.551377][ T4256] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   48.578408][ T4256] lowmem_reserve[]: 0 2866 7844 0
[   48.583589][ T4256] Node 0 DMA32 free:2950376kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953908kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[   48.612094][ T4256] lowmem_reserve[]: 0 0 4978 0
[   48.617011][ T4256] Node 0 Normal free:4626028kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:16004kB inactive_anon:0kB active_file:19648kB inactive_file:7748kB unevictable:0kB writepending:1996kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:43348kB local_pcp:23912kB free_cma:0kB
[   48.647362][ T4256] lowmem_reserve[]: 0 0 0 0
[   48.652157][ T4256] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   48.664917][ T4256] Node 0 DMA32: 4*4kB (M) 1*8kB (M) 1*16kB (M) 4*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950376kB
[   48.681662][ T4256] Node 0 Normal: 202*4kB (U) 63*8kB (UE) 67*16kB (UE) 70*32kB (U) 42*64kB (UME) 58*128kB (U) 51*256kB (U) 47*512kB (UE) 45*1024kB (U) 41*2048kB (UM) 1085*4096kB (UM) = 4626064kB
[   48.699674][ T4256] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   48.708998][ T4256] 7225 total pagecache pages
[   48.713600][ T4256] 0 pages in swap cache
[   48.717781][ T4256] Free swap  = 124476kB
[   48.721975][ T4256] Total swap = 124996kB
[   48.726136][ T4256] 2097051 pages RAM
[   48.729956][ T4256] 0 pages HighMem/MovableOnly
[   48.734648][ T4256] 80182 pages reserved
[   48.768844][ T4259] team0: Port device macvlan1 added
[   48.774667][ T4259] A link change request failed with some changes committed already. Interface macvlan1 may have been left with an inconsistent configuration, please check.
[   48.859939][ T4294] loop3: detected capacity change from 0 to 2048
[   48.882988][ T4293] bridge_slave_0: left allmulticast mode
[   48.886279][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.888705][ T4293] bridge_slave_0: left promiscuous mode
[   48.888843][ T4293] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.899794][ T4294]  loop3: p1 < > p4
[   48.915656][ T4294] loop3: p4 size 8388608 extends beyond EOD, truncated
[   48.933724][ T4293] bridge_slave_1: left allmulticast mode
[   48.939619][ T4293] bridge_slave_1: left promiscuous mode
[   48.945429][ T4293] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.955820][ T4303] netlink: 48 bytes leftover after parsing attributes in process `syz.0.243'.
[   48.978068][ T4293] bond0: (slave bond_slave_0): Releasing backup interface
[   48.983162][ T4302] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   48.996536][ T4293] bond0: (slave bond_slave_1): Releasing backup interface
[   49.019518][ T4293] team0: Port device team_slave_0 removed
[   49.049138][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   49.060576][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   49.072128][ T4293] team0: Port device team_slave_1 removed
[   49.117186][ T4293] bond0: (slave geneve1): Releasing backup interface
[   49.331642][ T4333] block device autoloading is deprecated and will be removed.
[   49.347541][ T4333] syz.2.260: attempt to access beyond end of device
[   49.347541][ T4333] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   49.376489][ T4340] netlink: 16 bytes leftover after parsing attributes in process `syz.4.251'.
[   49.403018][ T4339] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   49.433248][ T4342] loop2: detected capacity change from 0 to 2048
[   49.568302][ T4350] loop1: detected capacity change from 0 to 512
[   49.582413][ T4350] netlink: 44 bytes leftover after parsing attributes in process `syz.1.267'.
[   49.591408][ T4350] netlink: 43 bytes leftover after parsing attributes in process `syz.1.267'.
[   49.600362][ T4350] netlink: 'syz.1.267': attribute type 6 has an invalid length.
[   49.601157][ T4355] syzkaller1: entered promiscuous mode
[   49.608057][ T4350] netlink: 'syz.1.267': attribute type 5 has an invalid length.
[   49.608074][ T4350] netlink: 43 bytes leftover after parsing attributes in process `syz.1.267'.
[   49.613750][ T4355] syzkaller1: entered allmulticast mode
[   49.830894][ T4370] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   49.911900][ T4384] netlink: 12 bytes leftover after parsing attributes in process `syz.4.277'.
[   50.088882][ T4391] netlink: 4 bytes leftover after parsing attributes in process `syz.3.279'.
[   50.109865][ T4398] netlink: 3 bytes leftover after parsing attributes in process `syz.2.280'.
[   50.196947][ T4398] 0ªX¹¦À: renamed from caif0
[   50.294032][ T4401] SELinux: failed to load policy
[   50.338341][ T4398] 0ªX¹¦À: entered allmulticast mode
[   50.343593][ T4398] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   50.399124][ T4406] loop3: detected capacity change from 0 to 128
[   50.418042][ T4401] capability: warning: `syz.4.281' uses 32-bit capabilities (legacy support in use)
[   50.449225][ T4406] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   50.473523][ T4406] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   50.496896][ T4414] netem: incorrect gi model size
[   50.501976][ T4414] netem: change failed
[   50.661388][ T3300] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   50.723618][ T4433] tipc: Started in network mode
[   50.728642][ T4433] tipc: Node identity ffffffff, cluster identity 4711
[   50.735442][ T4433] tipc: Node number set to 4294967295
[   50.760370][ T4431] siw: device registration error -23
[   50.828857][ T4435] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   50.874076][ T4431] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.881556][ T4431] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.891977][ T4443] loop3: detected capacity change from 0 to 256
[   50.906352][ T4431] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.913885][ T4431] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.975705][ T4443] netlink: 40 bytes leftover after parsing attributes in process `syz.3.290'.
[   51.035450][ T4448] sctp: [Deprecated]: syz.4.293 (pid 4448) Use of int in max_burst socket option deprecated.
[   51.035450][ T4448] Use struct sctp_assoc_value instead
[   51.071418][ T4452] loop2: detected capacity change from 0 to 512
[   51.073658][ T4450] IPv6: NLM_F_CREATE should be specified when creating new route
[   51.097506][ T4443] netlink: 'syz.3.290': attribute type 4 has an invalid length.
[   51.105185][ T4443] netlink: 17 bytes leftover after parsing attributes in process `syz.3.290'.
[   51.115395][ T4452] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   51.124423][ T4452] System zones: 0-2, 18-18, 34-34
[   51.134556][ T4452] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.294: bg 0: block 248: padding at end of block bitmap is not set
[   51.167703][ T4452] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.294: Failed to acquire dquot type 1
[   51.181776][ T4452] EXT4-fs (loop2): 1 truncate cleaned up
[   51.198534][ T4452] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.211677][ T4454] netlink: 'syz.4.295': attribute type 4 has an invalid length.
[   51.236874][ T4452] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.291651][ T4452] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.294: deleted inode referenced: 12
[   51.308218][ T4466] smc: net device bond0 applied user defined pnetid SYZ0
[   51.345095][ T4466] smc: net device bond0 erased user defined pnetid SYZ0
[   51.353249][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.399024][ T4472] loop2: detected capacity change from 0 to 256
[   51.419232][ T4468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=4468 comm=syz.3.301
[   51.504052][ T4472] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[   51.512748][ T4472] FAT-fs (loop2): Filesystem has been set read-only
[   51.661244][ T4490] loop3: detected capacity change from 0 to 256
[   51.703871][ T4497] loop0: detected capacity change from 0 to 512
[   51.731147][ T4497] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   51.758440][ T4497] System zones: 0-2, 18-18, 34-34
[   51.765879][ T4490] netlink: 'syz.3.310': attribute type 4 has an invalid length.
[   51.774408][ T4497] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.313: bg 0: block 248: padding at end of block bitmap is not set
[   51.789002][ T4497] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.313: Failed to acquire dquot type 1
[   51.802333][ T4497] EXT4-fs (loop0): 1 truncate cleaned up
[   51.808413][ T4497] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.821268][ T4497] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.842060][   T29] kauditd_printk_skb: 465 callbacks suppressed
[   51.842076][   T29] audit: type=1326 audit(1733063006.280:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   51.873505][   T29] audit: type=1326 audit(1733063006.280:2639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   51.878760][ T4497] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.313: deleted inode referenced: 12
[   51.896896][   T29] audit: type=1326 audit(1733063006.310:2640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   51.931593][   T29] audit: type=1326 audit(1733063006.310:2641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   51.955179][   T29] audit: type=1326 audit(1733063006.310:2642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   51.978761][   T29] audit: type=1326 audit(1733063006.310:2643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   52.002263][   T29] audit: type=1326 audit(1733063006.310:2644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   52.025668][   T29] audit: type=1326 audit(1733063006.310:2645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   52.049153][   T29] audit: type=1326 audit(1733063006.310:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   52.072589][   T29] audit: type=1326 audit(1733063006.310:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4496 comm="syz.0.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   52.126445][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.257913][ T4515] siw: device registration error -23
[   52.387117][ T4523] Invalid ELF header magic: != ELF
[   52.433629][ T4525] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   52.478135][ T4532] loop0: detected capacity change from 0 to 512
[   52.492418][ T4532] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   52.501702][ T4532] System zones: 0-2, 18-18, 34-34
[   52.514595][ T4532] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.326: bg 0: block 248: padding at end of block bitmap is not set
[   52.529787][ T4532] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.326: Failed to acquire dquot type 1
[   52.551217][ T4532] EXT4-fs (loop0): 1 truncate cleaned up
[   52.557200][ T4532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.570224][ T4521] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.579244][ T4521] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.590883][ T4532] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.632574][ T4536] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.668183][ T4542] IPv6: NLM_F_CREATE should be specified when creating new route
[   52.721391][ T4532] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.326: deleted inode referenced: 12
[   52.795117][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.828843][ T4550] loop0: detected capacity change from 0 to 256
[   52.944097][ T4550] netlink: 'syz.0.333': attribute type 4 has an invalid length.
[   52.983436][ T4554] siw: device registration error -23
[   53.085269][ T4562] loop0: detected capacity change from 0 to 1024
[   53.099516][ T4562] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.127930][ T4562] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   53.179656][ T4566] batadv0: entered promiscuous mode
[   53.200890][ T4566] batadv_slave_1: entered promiscuous mode
[   53.367852][ T4574] usb usb8: usbfs: process 4574 (syz.0.341) did not claim interface 0 before use
[   53.459319][ T4581] loop3: detected capacity change from 0 to 256
[   53.531485][ T4581] netlink: 'syz.3.345': attribute type 4 has an invalid length.
[   53.656034][ T4586] loop2: detected capacity change from 0 to 128
[   53.658340][ T4590] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   53.878729][ T4596] loop3: detected capacity change from 0 to 1024
[   53.900089][ T4596] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.927571][ T4596] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   53.945799][ T4596] EXT4-fs (loop3): orphan cleanup on readonly fs
[   53.961796][ T4600] netlink: 'syz.4.351': attribute type 4 has an invalid length.
[   53.969520][ T4600] __nla_validate_parse: 10 callbacks suppressed
[   53.969536][ T4600] netlink: 17 bytes leftover after parsing attributes in process `syz.4.351'.
[   53.995361][ T4596] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   54.017634][ T4596] EXT4-fs (loop3): Remounting filesystem read-only
[   54.034380][ T4596] EXT4-fs (loop3): 1 orphan inode deleted
[   54.054005][ T4596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   54.078510][ T4596] SELinux: (dev loop3, type ext4) getxattr errno 5
[   54.138098][ T4596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.240273][ T4609] loop0: detected capacity change from 0 to 2048
[   54.248203][ T4611] loop3: detected capacity change from 0 to 1024
[   54.268582][ T4611] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.282222][ T4609]  loop0: p1 < > p4
[   54.288130][ T4611] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   54.298225][ T4609] loop0: p4 size 8388608 extends beyond EOD, truncated
[   54.390823][ T4615] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   54.428998][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   54.481131][ T4622] FAULT_INJECTION: forcing a failure.
[   54.481131][ T4622] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.494313][ T4622] CPU: 0 UID: 0 PID: 4622 Comm: syz.3.361 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   54.504607][ T4622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   54.514712][ T4622] Call Trace:
[   54.518006][ T4622]  <TASK>
[   54.520991][ T4622]  dump_stack_lvl+0xf2/0x150
[   54.525707][ T4622]  dump_stack+0x15/0x1a
[   54.529892][ T4622]  should_fail_ex+0x223/0x230
[   54.534710][ T4622]  should_fail+0xb/0x10
[   54.538891][ T4622]  should_fail_usercopy+0x1a/0x20
[   54.543931][ T4622]  _copy_from_user+0x1e/0xb0
[   54.548561][ T4622]  copy_msghdr_from_user+0x54/0x2a0
[   54.553861][ T4622]  do_recvmmsg+0x256/0x6d0
[   54.558566][ T4622]  __x64_sys_recvmmsg+0xe2/0x170
[   54.563594][ T4622]  x64_sys_call+0x2a9a/0x2dc0
[   54.568326][ T4622]  do_syscall_64+0xc9/0x1c0
[   54.572871][ T4622]  ? clear_bhb_loop+0x55/0xb0
[   54.577725][ T4622]  ? clear_bhb_loop+0x55/0xb0
[   54.582431][ T4622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.588418][ T4622] RIP: 0033:0x7fa7fa6d0849
[   54.592897][ T4622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.612600][ T4622] RSP: 002b:00007fa7f8d47058 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   54.621034][ T4622] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6d0849
[   54.629049][ T4622] RDX: 0000000000000700 RSI: 0000000020001140 RDI: 0000000000000004
[   54.637048][ T4622] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   54.645101][ T4622] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[   54.653086][ T4622] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   54.661117][ T4622]  </TASK>
[   54.733060][ T4626] netlink: 28 bytes leftover after parsing attributes in process `syz.4.363'.
[   54.742124][ T4627] netlink: 28 bytes leftover after parsing attributes in process `syz.4.363'.
[   54.888344][ T4633] loop3: detected capacity change from 0 to 2048
[   54.938400][ T4633]  loop3: p1 < > p4
[   54.958783][ T4633] loop3: p4 size 8388608 extends beyond EOD, truncated
[   54.981663][ T3001]  loop3: p1 < > p4
[   54.987230][ T3001] loop3: p4 size 8388608 extends beyond EOD, truncated
[   55.058509][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   55.060382][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   55.133921][ T4624] dvmrp1: entered allmulticast mode
[   55.156013][ T4624] SELinux:  policydb version 0 does not match my version range 15-33
[   55.169235][ T4624] SELinux: failed to load policy
[   55.290003][ T4644] siw: device registration error -23
[   55.426484][ T4642] loop0: detected capacity change from 0 to 256
[   55.634617][ T4656] syz.3.376[4656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.634680][ T4656] syz.3.376[4656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.646429][ T4656] syz.3.376[4656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.846053][ T4666] FAULT_INJECTION: forcing a failure.
[   55.846053][ T4666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.870588][ T4666] CPU: 1 UID: 0 PID: 4666 Comm: syz.3.378 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   55.880862][ T4666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.891006][ T4666] Call Trace:
[   55.894299][ T4666]  <TASK>
[   55.897242][ T4666]  dump_stack_lvl+0xf2/0x150
[   55.901969][ T4666]  dump_stack+0x15/0x1a
[   55.906248][ T4666]  should_fail_ex+0x223/0x230
[   55.911024][ T4666]  should_fail+0xb/0x10
[   55.915270][ T4666]  should_fail_usercopy+0x1a/0x20
[   55.920347][ T4666]  _copy_from_iter+0xd5/0xd00
[   55.925053][ T4666]  ? kmalloc_reserve+0x16e/0x190
[   55.930089][ T4666]  ? __build_skb_around+0x196/0x1f0
[   55.935324][ T4666]  ? __alloc_skb+0x21f/0x310
[   55.940007][ T4666]  ? __virt_addr_valid+0x1ed/0x250
[   55.945158][ T4666]  ? __check_object_size+0x364/0x520
[   55.950580][ T4666]  netlink_sendmsg+0x460/0x6e0
[   55.955440][ T4666]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.960895][ T4666]  __sock_sendmsg+0x140/0x180
[   55.965598][ T4666]  ____sys_sendmsg+0x312/0x410
[   55.970509][ T4666]  __sys_sendmsg+0x19d/0x230
[   55.975228][ T4666]  __x64_sys_sendmsg+0x46/0x50
[   55.980127][ T4666]  x64_sys_call+0x2734/0x2dc0
[   55.984849][ T4666]  do_syscall_64+0xc9/0x1c0
[   55.989560][ T4666]  ? clear_bhb_loop+0x55/0xb0
[   55.994261][ T4666]  ? clear_bhb_loop+0x55/0xb0
[   55.999015][ T4666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.005029][ T4666] RIP: 0033:0x7fa7fa6d0849
[   56.009520][ T4666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.029236][ T4666] RSP: 002b:00007fa7f8d47058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.037776][ T4666] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6d0849
[   56.045774][ T4666] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   56.053807][ T4666] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   56.061803][ T4666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.069791][ T4666] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   56.077785][ T4666]  </TASK>
[   56.136893][ T4670] FAULT_INJECTION: forcing a failure.
[   56.136893][ T4670] name failslab, interval 1, probability 0, space 0, times 0
[   56.149647][ T4670] CPU: 0 UID: 0 PID: 4670 Comm: syz.3.380 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   56.159911][ T4670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.170000][ T4670] Call Trace:
[   56.173307][ T4670]  <TASK>
[   56.176262][ T4670]  dump_stack_lvl+0xf2/0x150
[   56.180929][ T4670]  dump_stack+0x15/0x1a
[   56.185136][ T4670]  should_fail_ex+0x223/0x230
[   56.189880][ T4670]  should_failslab+0x8f/0xb0
[   56.194530][ T4670]  kmem_cache_alloc_noprof+0x52/0x320
[   56.199927][ T4670]  ? audit_log_start+0x34c/0x6b0
[   56.204907][ T4670]  ? audit_log_end+0x1d0/0x1e0
[   56.209727][ T4670]  audit_log_start+0x34c/0x6b0
[   56.214578][ T4670]  ? kmem_cache_free+0xdc/0x2d0
[   56.219480][ T4670]  audit_seccomp+0x4b/0x130
[   56.224084][ T4670]  __seccomp_filter+0x6fa/0x1180
[   56.229103][ T4670]  ? touch_atime+0x110/0x350
[   56.233860][ T4670]  __secure_computing+0x9f/0x1c0
[   56.238834][ T4670]  syscall_trace_enter+0xd1/0x1f0
[   56.243902][ T4670]  ? fpregs_assert_state_consistent+0x83/0xa0
[   56.250071][ T4670]  do_syscall_64+0xaa/0x1c0
[   56.254606][ T4670]  ? clear_bhb_loop+0x55/0xb0
[   56.259338][ T4670]  ? clear_bhb_loop+0x55/0xb0
[   56.264116][ T4670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.270045][ T4670] RIP: 0033:0x7fa7fa6cf25c
[   56.274525][ T4670] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   56.294162][ T4670] RSP: 002b:00007fa7f8d47050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   56.302603][ T4670] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6cf25c
[   56.310607][ T4670] RDX: 000000000000000f RSI: 00007fa7f8d470b0 RDI: 0000000000000006
[   56.318676][ T4670] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   56.326710][ T4670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.334767][ T4670] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   56.342791][ T4670]  </TASK>
[   56.377292][ T4672] loop3: detected capacity change from 0 to 256
[   56.431557][ T4674] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   56.433535][ T4672] netlink: 40 bytes leftover after parsing attributes in process `syz.3.381'.
[   56.456114][ T4672] netlink: 'syz.3.381': attribute type 4 has an invalid length.
[   56.463856][ T4672] netlink: 17 bytes leftover after parsing attributes in process `syz.3.381'.
[   56.530340][ T4677] netlink: 28 bytes leftover after parsing attributes in process `syz.0.383'.
[   56.671976][ T4682] ip6t_srh: unknown srh invflags 92A7
[   56.841885][ T4701] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   56.853036][   T29] kauditd_printk_skb: 367 callbacks suppressed
[   56.853053][   T29] audit: type=1326 audit(1733063011.290:3007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.882613][   T29] audit: type=1326 audit(1733063011.290:3008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.905938][   T29] audit: type=1326 audit(1733063011.290:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.929180][   T29] audit: type=1326 audit(1733063011.290:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.952527][   T29] audit: type=1326 audit(1733063011.290:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.975841][   T29] audit: type=1326 audit(1733063011.290:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   56.999071][   T29] audit: type=1326 audit(1733063011.290:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   57.022416][   T29] audit: type=1326 audit(1733063011.290:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   57.045905][   T29] audit: type=1326 audit(1733063011.290:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f7a305f0849 code=0x7ffc0000
[   57.090883][ T4711] loop2: detected capacity change from 0 to 256
[   57.097770][   T29] audit: type=1326 audit(1733063011.310:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4706 comm="syz.2.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f7a30622925 code=0x7ffc0000
[   57.141622][ T4711] netlink: 40 bytes leftover after parsing attributes in process `syz.2.395'.
[   57.152799][ T4711] netlink: 'syz.2.395': attribute type 4 has an invalid length.
[   57.160561][ T4711] netlink: 17 bytes leftover after parsing attributes in process `syz.2.395'.
[   57.272296][ T4699] dvmrp1: entered allmulticast mode
[   57.283106][ T4714] tipc: Started in network mode
[   57.288182][ T4714] tipc: Node identity 16af96a6c7e4, cluster identity 4711
[   57.295417][ T4714] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   57.304497][ T4699] SELinux:  policydb version 0 does not match my version range 15-33
[   57.312637][ T4699] SELinux: failed to load policy
[   57.327697][ T4714] ªªªªªª: renamed from syzkaller0
[   57.339781][ T4714] tipc: Disabling bearer <eth:syzkaller0>
[   57.399971][ T4717] Invalid ELF header magic: != ELF
[   57.561003][ T4722] loop2: detected capacity change from 0 to 1024
[   57.599498][ T4722] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.615641][ T4722] EXT4-fs (loop2): shut down requested (0)
[   57.623819][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   57.634162][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   57.644073][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   57.653186][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   57.662453][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   57.671635][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   57.681740][ T4722] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   57.849596][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.882632][ T4730] loop2: detected capacity change from 0 to 512
[   57.951013][ T4734] netlink: 100 bytes leftover after parsing attributes in process `syz.3.403'.
[   57.978366][ T4730] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   57.986535][ T4730] System zones: 0-2, 18-18, 34-34
[   57.992644][ T4730] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.401: bg 0: block 248: padding at end of block bitmap is not set
[   58.046199][ T4740] loop3: detected capacity change from 0 to 128
[   58.061759][ T4738] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   58.088456][ T4740] EXT4-fs: Ignoring removed bh option
[   58.103285][ T4740] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   58.115828][ T4740] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   58.301326][ T4746] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   58.301326][ T4746]    program syz.4.407 not setting count and/or reply_len properly
[   58.445821][ T4752] loop0: detected capacity change from 0 to 256
[   58.490173][ T4752] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196)
[   58.498429][ T4752] FAT-fs (loop0): Filesystem has been set read-only
[   58.629688][ T4755] netlink: 8 bytes leftover after parsing attributes in process `syz.0.409'.
[   58.657237][ T4757] hub 9-0:1.0: USB hub found
[   58.672966][ T4757] hub 9-0:1.0: 8 ports detected
[   59.069942][ T4766] __nla_validate_parse: 1 callbacks suppressed
[   59.069961][ T4766] netlink: 84 bytes leftover after parsing attributes in process `syz.4.415'.
[   59.156431][ T4768] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   59.298626][ T3306] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196)
[   59.553802][ T3300] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   59.697272][ T4787] netlink: 'syz.0.424': attribute type 4 has an invalid length.
[   59.820865][ T4789] loop0: detected capacity change from 0 to 256
[   59.858204][ T4791] netlink: 100 bytes leftover after parsing attributes in process `syz.4.426'.
[   59.894134][ T4789] netlink: 40 bytes leftover after parsing attributes in process `syz.0.425'.
[   59.915888][ T4789] netlink: 'syz.0.425': attribute type 4 has an invalid length.
[   59.923627][ T4789] netlink: 17 bytes leftover after parsing attributes in process `syz.0.425'.
[   59.936833][ T4793] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   60.190253][ T4805] loop0: detected capacity change from 0 to 128
[   60.204588][ T4805] EXT4-fs: Ignoring removed bh option
[   60.225217][ T4805] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   60.250948][ T4805] ext4 filesystem being mounted at /108/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   60.466510][ T4730] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.401: Failed to acquire dquot type 1
[   60.615447][ T4809] loop3: detected capacity change from 0 to 2048
[   60.653233][ T4730] EXT4-fs (loop2): 1 truncate cleaned up
[   60.659569][ T4730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.672265][ T4730] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.684258][ T3290]  loop3: p1 < > p4
[   60.692438][ T3290] loop3: p4 size 8388608 extends beyond EOD, truncated
[   60.710008][ T4809]  loop3: p1 < > p4
[   60.715021][ T4809] loop3: p4 size 8388608 extends beyond EOD, truncated
[   60.732447][ T4815] pim6reg1: entered promiscuous mode
[   60.737898][ T4815] pim6reg1: entered allmulticast mode
[   60.748920][ T4730] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.401: deleted inode referenced: 12
[   60.788240][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.192832][ T3306] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   61.207813][ T4823] netlink: 'syz.3.437': attribute type 4 has an invalid length.
[   61.240642][ T4822] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   61.328164][ T4830] siw: device registration error -23
[   61.538729][ T4838] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   61.538729][ T4838]    program syz.4.443 not setting count and/or reply_len properly
[   61.813144][ T4847] siw: device registration error -23
[   61.955582][   T29] kauditd_printk_skb: 201 callbacks suppressed
[   61.955599][   T29] audit: type=1326 audit(1733063016.390:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.117004][   T29] audit: type=1326 audit(1733063016.420:3217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.140427][   T29] audit: type=1326 audit(1733063016.430:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.163760][   T29] audit: type=1326 audit(1733063016.430:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.187250][   T29] audit: type=1326 audit(1733063016.430:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.210664][   T29] audit: type=1326 audit(1733063016.430:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.234056][   T29] audit: type=1326 audit(1733063016.430:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.257374][   T29] audit: type=1326 audit(1733063016.430:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.280794][   T29] audit: type=1326 audit(1733063016.430:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f98c7c70849 code=0x7ffc0000
[   62.304148][   T29] audit: type=1326 audit(1733063016.430:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4850 comm="syz.4.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f98c7c70883 code=0x7ffc0000
[   62.488577][ T4832] syz.3.442 (4832) used greatest stack depth: 7272 bytes left
[   62.661077][ T4857] loop2: detected capacity change from 0 to 512
[   62.730284][ T4857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.761768][ T4857] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.777018][ T4868] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   62.894791][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.917166][ T4873] SELinux:  policydb magic number 0x4 does not match expected magic number 0xf97cff8c
[   62.929632][ T4873] SELinux: failed to load policy
[   62.964192][ T4877] netlink: 100 bytes leftover after parsing attributes in process `syz.4.453'.
[   63.043908][ T4883] loop0: detected capacity change from 0 to 1024
[   63.055912][ T4883] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   63.065745][ T4883] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   63.076069][ T4883] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   63.091985][ T4883] EXT4-fs error (device loop0): ext4_get_journal_inode:5809: inode #5: comm syz.0.455: unexpected bad inode w/o EXT4_IGET_BAD
[   63.118262][ T4890] loop3: detected capacity change from 0 to 1024
[   63.127035][ T4883] EXT4-fs (loop0): no journal found
[   63.132375][ T4883] EXT4-fs (loop0): can't get journal size
[   63.141712][ T4889] siw: device registration error -23
[   63.166755][ T4890] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.183989][ T4883] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   63.192630][ T4890] EXT4-fs (loop3): shut down requested (0)
[   63.223993][ T4883] ip6erspan0: tun_chr_ioctl cmd 1074025677
[   63.234020][ T4883] ip6erspan0: linktype set to 804
[   63.322343][ T4906] loop3: detected capacity change from 0 to 512
[   63.335789][ T4902] FAULT_INJECTION: forcing a failure.
[   63.335789][ T4902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.349088][ T4902] CPU: 1 UID: 0 PID: 4902 Comm: syz.4.462 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   63.359468][ T4902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.369570][ T4902] Call Trace:
[   63.372901][ T4902]  <TASK>
[   63.375855][ T4902]  dump_stack_lvl+0xf2/0x150
[   63.380489][ T4902]  dump_stack+0x15/0x1a
[   63.384811][ T4902]  should_fail_ex+0x223/0x230
[   63.389621][ T4902]  should_fail+0xb/0x10
[   63.393799][ T4902]  should_fail_usercopy+0x1a/0x20
[   63.398969][ T4902]  _copy_from_iter+0xd5/0xd00
[   63.403748][ T4902]  ? kmalloc_reserve+0x16e/0x190
[   63.408732][ T4902]  ? __build_skb_around+0x196/0x1f0
[   63.414087][ T4902]  ? __alloc_skb+0x21f/0x310
[   63.418746][ T4902]  ? __virt_addr_valid+0x1ed/0x250
[   63.424018][ T4902]  ? __check_object_size+0x364/0x520
[   63.429414][ T4902]  netlink_sendmsg+0x460/0x6e0
[   63.434363][ T4902]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.439659][ T4902]  __sock_sendmsg+0x140/0x180
[   63.444463][ T4902]  ____sys_sendmsg+0x312/0x410
[   63.449273][ T4902]  __sys_sendmsg+0x19d/0x230
[   63.453921][ T4902]  __x64_sys_sendmsg+0x46/0x50
[   63.458805][ T4902]  x64_sys_call+0x2734/0x2dc0
[   63.463607][ T4902]  do_syscall_64+0xc9/0x1c0
[   63.468237][ T4902]  ? clear_bhb_loop+0x55/0xb0
[   63.472961][ T4902]  ? clear_bhb_loop+0x55/0xb0
[   63.477747][ T4902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.483696][ T4902] RIP: 0033:0x7f98c7c70849
[   63.488208][ T4902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.507847][ T4902] RSP: 002b:00007f98c62e7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.516350][ T4902] RAX: ffffffffffffffda RBX: 00007f98c7e35fa0 RCX: 00007f98c7c70849
[   63.524349][ T4902] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000003
[   63.532372][ T4902] RBP: 00007f98c62e70a0 R08: 0000000000000000 R09: 0000000000000000
[   63.540379][ T4902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.548440][ T4902] R13: 0000000000000000 R14: 00007f98c7e35fa0 R15: 00007ffd19093258
[   63.556457][ T4902]  </TASK>
[   63.701997][ T4910] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   63.701997][ T4910]    program syz.4.465 not setting count and/or reply_len properly
[   63.808534][ T4906] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   63.816780][ T4906] System zones: 0-2, 18-18, 34-34
[   63.825725][ T4906] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.463: bg 0: block 248: padding at end of block bitmap is not set
[   63.843716][ T4906] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.463: Failed to acquire dquot type 1
[   63.890354][ T4906] EXT4-fs (loop3): 1 truncate cleaned up
[   63.896847][ T4906] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.059948][ T4923] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.463: deleted inode referenced: 12
[   64.155535][ T4928] loop2: detected capacity change from 0 to 256
[   64.208340][ T4928] netlink: 40 bytes leftover after parsing attributes in process `syz.2.471'.
[   64.220648][ T4928] netlink: 'syz.2.471': attribute type 4 has an invalid length.
[   64.228383][ T4928] netlink: 17 bytes leftover after parsing attributes in process `syz.2.471'.
[   64.362560][ T4933] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   64.362560][ T4933]    program syz.2.474 not setting count and/or reply_len properly
[   64.478112][ T4937] loop3: detected capacity change from 0 to 512
[   64.520926][ T4942] loop2: detected capacity change from 0 to 2048
[   64.528782][ T4937] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.472: couldn't read orphan inode 26 (err -116)
[   64.541504][ T4937] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.557817][ T4942]  loop2: p1 < > p4
[   64.562323][ T4942] loop2: p4 size 8388608 extends beyond EOD, truncated
[   64.609536][ T4946] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.649178][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   64.660624][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   64.709861][ T4946] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.761149][ T4946] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.808678][ T4956] netlink: 16 bytes leftover after parsing attributes in process `syz.0.482'.
[   64.819280][ T4946] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.887583][ T4946] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.894540][ T4964] loop0: detected capacity change from 0 to 2048
[   64.920930][ T4946] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.948743][ T2125] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.959834][ T4964]  loop0: p1 < > p4
[   64.964242][ T4964] loop0: p4 size 8388608 extends beyond EOD, truncated
[   64.972139][ T4946] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.991821][ T4946] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.001041][ T3001]  loop0: p1 < > p4
[   65.005521][ T3001] loop0: p4 size 8388608 extends beyond EOD, truncated
[   65.019874][ T2125] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.047922][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   65.061121][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   65.085763][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   65.089005][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   65.144873][ T2125] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.184470][ T4985] loop2: detected capacity change from 0 to 2048
[   65.213444][ T2125] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.228011][ T4985]  loop2: p1 < > p4
[   65.232322][ T4985] loop2: p4 size 8388608 extends beyond EOD, truncated
[   65.253778][ T4975] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.268216][ T3001]  loop2: p1 < > p4
[   65.272686][ T3001] loop2: p4 size 8388608 extends beyond EOD, truncated
[   65.344634][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   65.356037][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   65.373552][ T4975] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.431224][ T5001] loop3: detected capacity change from 0 to 256
[   65.434555][ T4953] chnl_net:caif_netlink_parms(): no params data found
[   65.465989][ T4975] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.533976][ T5001] netlink: 40 bytes leftover after parsing attributes in process `syz.3.495'.
[   65.543279][ T2125] bridge_slave_1: left allmulticast mode
[   65.548972][ T2125] bridge_slave_1: left promiscuous mode
[   65.554615][ T2125] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.564057][ T2125] bridge_slave_0: left allmulticast mode
[   65.569854][ T2125] bridge_slave_0: left promiscuous mode
[   65.575563][ T2125] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.651761][ T2125] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.662026][ T2125] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.672146][ T2125] bond0 (unregistering): Released all slaves
[   65.684372][ T4975] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.699046][ T5001] netlink: 'syz.3.495': attribute type 4 has an invalid length.
[   65.706847][ T5001] netlink: 17 bytes leftover after parsing attributes in process `syz.3.495'.
[   65.722765][ T2125] tipc: Left network mode
[   65.784147][ T2125] hsr_slave_0: left promiscuous mode
[   65.790872][ T5026] FAULT_INJECTION: forcing a failure.
[   65.790872][ T5026] name failslab, interval 1, probability 0, space 0, times 0
[   65.803604][ T5026] CPU: 1 UID: 0 PID: 5026 Comm: syz.3.503 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   65.813941][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.824165][ T5026] Call Trace:
[   65.827467][ T5026]  <TASK>
[   65.830428][ T5026]  dump_stack_lvl+0xf2/0x150
[   65.835068][ T5026]  dump_stack+0x15/0x1a
[   65.839318][ T5026]  should_fail_ex+0x223/0x230
[   65.844039][ T5026]  should_failslab+0x8f/0xb0
[   65.848672][ T5026]  kmem_cache_alloc_noprof+0x52/0x320
[   65.854057][ T5026]  ? vm_area_alloc+0x2c/0x130
[   65.858788][ T5026]  vm_area_alloc+0x2c/0x130
[   65.863308][ T5026]  __mmap_region+0x6b5/0x13f0
[   65.868033][ T5026]  mmap_region+0x164/0x1e0
[   65.872477][ T5026]  do_mmap+0x718/0xb60
[   65.876567][ T5026]  vm_mmap_pgoff+0x133/0x290
[   65.881181][ T5026]  ksys_mmap_pgoff+0xd0/0x330
[   65.885894][ T5026]  ? fpregs_assert_state_consistent+0x83/0xa0
[   65.892005][ T5026]  x64_sys_call+0x1940/0x2dc0
[   65.896687][ T5026]  do_syscall_64+0xc9/0x1c0
[   65.901262][ T5026]  ? clear_bhb_loop+0x55/0xb0
[   65.905955][ T5026]  ? clear_bhb_loop+0x55/0xb0
[   65.910710][ T5026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.916615][ T5026] RIP: 0033:0x7fa7fa6d0883
[   65.921028][ T5026] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   65.940792][ T5026] RSP: 002b:00007fa7f8d46e38 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   65.949217][ T5026] RAX: ffffffffffffffda RBX: 00000000000002af RCX: 00007fa7fa6d0883
[   65.957281][ T5026] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   65.965250][ T5026] RBP: 0000000020000102 R08: 00000000ffffffff R09: 0000000000000000
[   65.973224][ T5026] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000005
[   65.981194][ T5026] R13: 00007fa7f8d46f10 R14: 00007fa7f8d46ed0 R15: 0000000020000500
[   65.989172][ T5026]  </TASK>
[   66.010777][ T2125] hsr_slave_1: left promiscuous mode
[   66.022204][ T2125] veth1_macvtap: left promiscuous mode
[   66.027797][ T2125] veth0_macvtap: left promiscuous mode
[   66.033388][ T2125] veth1_vlan: left promiscuous mode
[   66.038754][ T2125] veth0_vlan: left promiscuous mode
[   66.083145][ T5029] 9pnet_fd: Insufficient options for proto=fd
[   66.170312][ T5038] loop2: detected capacity change from 0 to 1024
[   66.176917][ T2125] team0 (unregistering): Port device team_slave_1 removed
[   66.195591][ T5043] loop3: detected capacity change from 0 to 1024
[   66.204379][ T5043] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.210223][ T2125] team0 (unregistering): Port device team_slave_0 removed
[   66.219340][ T5043] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   66.232407][ T5038] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #2: comm syz.2.506: corrupted in-inode xattr: bad e_name length
[   66.257571][ T5043] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   66.257571][ T5043]    program syz.3.508 not setting count and/or reply_len properly
[   66.282393][ T4975] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.291256][ T4953] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.298401][ T4953] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.298526][ T5038] EXT4-fs (loop2): Remounting filesystem read-only
[   66.317827][ T4953] bridge_slave_0: entered allmulticast mode
[   66.318818][ T5046] loop3: detected capacity change from 0 to 256
[   66.328595][ T4953] bridge_slave_0: entered promiscuous mode
[   66.337522][ T4953] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.342192][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.344586][ T4953] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.353501][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.360426][ T4953] bridge_slave_1: entered allmulticast mode
[   66.375664][ T4953] bridge_slave_1: entered promiscuous mode
[   66.387698][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.398382][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.407209][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.416984][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.426140][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.435030][ T3302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   66.443149][ T5046] netlink: 40 bytes leftover after parsing attributes in process `syz.3.509'.
[   66.462898][ T4975] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.500256][ T4975] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.510044][ T5046] netlink: 'syz.3.509': attribute type 4 has an invalid length.
[   66.517835][ T5046] netlink: 17 bytes leftover after parsing attributes in process `syz.3.509'.
[   66.531006][ T4953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.555475][ T4953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.567177][ T4975] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.596294][ T4953] team0: Port device team_slave_0 added
[   66.615958][ T4953] team0: Port device team_slave_1 added
[   66.644894][ T5070] 9pnet_fd: Insufficient options for proto=fd
[   66.665355][ T5066] geneve2: entered promiscuous mode
[   66.670682][ T5066] geneve2: entered allmulticast mode
[   66.693524][ T4953] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.700551][ T4953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.726522][ T4953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.737930][ T4953] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.744887][ T4953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.770818][ T4953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.785886][ T5079] loop0: detected capacity change from 0 to 1024
[   66.792604][ T5079] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.808246][ T5079] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   66.827138][ T4953] hsr_slave_0: entered promiscuous mode
[   66.838233][ T4953] hsr_slave_1: entered promiscuous mode
[   66.849807][ T5079] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   66.849807][ T5079]    program syz.0.519 not setting count and/or reply_len properly
[   67.056603][ T4953] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   67.069768][ T4953] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   67.081030][ T4953] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   67.098066][ T4953] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   67.174476][ T4953] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.212223][ T4953] 8021q: adding VLAN 0 to HW filter on device team0
[   67.243738][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.251034][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.286132][ T4953] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   67.296647][ T4953] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   67.311281][ T5124] loop0: detected capacity change from 0 to 256
[   67.313384][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.324638][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.388596][ T4953] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.445817][ T5124] netlink: 40 bytes leftover after parsing attributes in process `syz.0.524'.
[   67.485200][ T5124] netlink: 'syz.0.524': attribute type 4 has an invalid length.
[   67.492934][ T5124] netlink: 17 bytes leftover after parsing attributes in process `syz.0.524'.
[   67.614333][ T4953] veth0_vlan: entered promiscuous mode
[   67.629637][ T4953] veth1_vlan: entered promiscuous mode
[   67.672811][ T4953] veth0_macvtap: entered promiscuous mode
[   67.682202][ T4953] veth1_macvtap: entered promiscuous mode
[   67.706018][ T4953] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.736277][ T4953] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.751989][ T4953] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.760820][ T4953] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.769561][ T4953] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.778397][ T4953] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.806682][   T29] kauditd_printk_skb: 246 callbacks suppressed
[   67.806694][   T29] audit: type=1400 audit(1733063022.240:3470): avc:  denied  { mount } for  pid=4953 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   67.841181][   T29] audit: type=1326 audit(1733063022.260:3471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5165 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   67.864571][   T29] audit: type=1326 audit(1733063022.260:3472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5165 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   67.888405][   T29] audit: type=1326 audit(1733063022.260:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5165 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   67.911869][   T29] audit: type=1326 audit(1733063022.260:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5165 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   67.935210][   T29] audit: type=1326 audit(1733063022.260:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5165 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25f790849 code=0x7ffc0000
[   67.958665][   T29] audit: type=1400 audit(1733063022.280:3476): avc:  denied  { mounton } for  pid=4953 comm="syz-executor" path="/root/syzkaller.5fHG8A/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   67.989262][ T5175] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   67.989262][ T5175]    program syz.3.532 not setting count and/or reply_len properly
[   68.018515][ T5176] loop0: detected capacity change from 0 to 1024
[   68.042725][ T5176] EXT4-fs: Ignoring removed mblk_io_submit option
[   68.057743][   T29] audit: type=1326 audit(1733063022.490:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5180 comm="syz.5.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   68.062861][ T5176] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   68.081228][   T29] audit: type=1326 audit(1733063022.490:3478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5180 comm="syz.5.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   68.081262][   T29] audit: type=1326 audit(1733063022.490:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5180 comm="syz.5.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   68.148510][ T5181] loop5: detected capacity change from 0 to 2048
[   68.174679][ T5184] 9pnet_fd: Insufficient options for proto=fd
[   68.201792][ T5176] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   68.201792][ T5176]    program syz.0.531 not setting count and/or reply_len properly
[   68.207901][ T5193] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   68.263945][ T5181] EXT4-fs mount: 8 callbacks suppressed
[   68.263965][ T5181] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.300818][ T5193] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.316090][ T4953] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.326387][ T5205] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   68.351966][ T5205] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.371969][ T5193] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.374630][ T5210] loop5: detected capacity change from 0 to 512
[   68.405834][ T5205] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.431131][ T5193] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.441716][ T5210] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   68.453032][ T5210] System zones: 0-2, 18-18, 34-34
[   68.460730][ T5210] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.540: bg 0: block 248: padding at end of block bitmap is not set
[   68.478936][ T5210] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.540: Failed to acquire dquot type 1
[   68.480930][ T5205] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.494902][ T5226] loop0: detected capacity change from 0 to 512
[   68.507401][ T5226] EXT4-fs: inline encryption not supported
[   68.513413][ T5210] EXT4-fs (loop5): 1 truncate cleaned up
[   68.519937][ T5210] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.532646][ T5210] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.544122][ T5193] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.555136][ T5226] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.572743][ T5226] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.586720][ T5210] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.540: deleted inode referenced: 12
[   68.605755][ T5226] SELinux:  policydb magic number 0xf97c028c does not match expected magic number 0xf97cff8c
[   68.606532][ T5205] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.616826][ T5226] SELinux: failed to load policy
[   68.646910][ T5193] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.664425][ T5193] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.680881][ T5193] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.690825][ T5236] program syz.0.543 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.721283][ T5205] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.732636][ T5193] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.744406][ T5205] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.756152][ T5205] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.768929][ T5205] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.968858][ T5262] loop3: detected capacity change from 0 to 1024
[   68.981216][ T5258] netlink: 40 bytes leftover after parsing attributes in process `syz.4.547'.
[   68.985795][ T5262] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.003999][ T5262] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   69.029184][ T5262] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   69.029184][ T5262]    program syz.3.548 not setting count and/or reply_len properly
[   69.056020][ T5258] netlink: 'syz.4.547': attribute type 4 has an invalid length.
[   69.193188][ T5283] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   69.223518][ T4953] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.286920][ T5289] siw: device registration error -23
[   69.387936][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.513331][ T5319] siw: device registration error -23
[   69.534939][ T5323] loop5: detected capacity change from 0 to 512
[   69.580420][ T5323] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   69.596831][ T5323] System zones: 0-2, 18-18, 34-34
[   69.610393][ T5323] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.563: bg 0: block 248: padding at end of block bitmap is not set
[   69.630186][ T5323] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.563: Failed to acquire dquot type 1
[   69.648411][ T5323] EXT4-fs (loop5): 1 truncate cleaned up
[   69.657801][ T5323] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.676067][ T5323] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.695875][ T5340] FAULT_INJECTION: forcing a failure.
[   69.695875][ T5340] name failslab, interval 1, probability 0, space 0, times 0
[   69.708624][ T5340] CPU: 0 UID: 0 PID: 5340 Comm: syz.3.567 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   69.718955][ T5340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.729065][ T5340] Call Trace:
[   69.732357][ T5340]  <TASK>
[   69.735320][ T5340]  dump_stack_lvl+0xf2/0x150
[   69.740003][ T5340]  dump_stack+0x15/0x1a
[   69.744264][ T5340]  should_fail_ex+0x223/0x230
[   69.748990][ T5340]  should_failslab+0x8f/0xb0
[   69.753614][ T5340]  __kmalloc_node_noprof+0xad/0x410
[   69.758841][ T5340]  ? __kvmalloc_node_noprof+0x72/0x170
[   69.764400][ T5340]  ? dev_addr_init+0xb2/0x120
[   69.769126][ T5340]  __kvmalloc_node_noprof+0x72/0x170
[   69.774523][ T5340]  alloc_netdev_mqs+0x5c1/0x9c0
[   69.779436][ T5340]  tun_set_iff+0x434/0x810
[   69.783879][ T5340]  __tun_chr_ioctl+0x64c/0x1860
[   69.788917][ T5340]  tun_chr_ioctl+0x27/0x30
[   69.793400][ T5340]  ? __pfx_tun_chr_ioctl+0x10/0x10
[   69.798615][ T5340]  __se_sys_ioctl+0xc9/0x140
[   69.803242][ T5340]  __x64_sys_ioctl+0x43/0x50
[   69.807857][ T5340]  x64_sys_call+0x1690/0x2dc0
[   69.812548][ T5340]  do_syscall_64+0xc9/0x1c0
[   69.817107][ T5340]  ? clear_bhb_loop+0x55/0xb0
[   69.821815][ T5340]  ? clear_bhb_loop+0x55/0xb0
[   69.826506][ T5340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.832499][ T5340] RIP: 0033:0x7fa7fa6d0849
[   69.837000][ T5340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.856627][ T5340] RSP: 002b:00007fa7f8d47058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.865161][ T5340] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6d0849
[   69.873173][ T5340] RDX: 0000000020000100 RSI: 00000000400454ca RDI: 0000000000000006
[   69.881149][ T5340] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   69.889166][ T5340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.897140][ T5340] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   69.905120][ T5340]  </TASK>
[   69.919473][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.936118][ T5356] FAULT_INJECTION: forcing a failure.
[   69.936118][ T5356] name failslab, interval 1, probability 0, space 0, times 0
[   69.948930][ T5356] CPU: 0 UID: 0 PID: 5356 Comm: syz.4.568 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   69.959249][ T5356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.962682][ T5323] EXT4-fs error (device loop5): ext4_lookup:1817: inode #2: comm syz.5.563: deleted inode referenced: 12
[   69.969389][ T5356] Call Trace:
[   69.969399][ T5356]  <TASK>
[   69.969408][ T5356]  dump_stack_lvl+0xf2/0x150
[   69.991474][ T5356]  dump_stack+0x15/0x1a
[   69.995710][ T5356]  should_fail_ex+0x223/0x230
[   70.000418][ T5356]  ? audit_log_d_path+0x96/0x250
[   70.005444][ T5356]  should_failslab+0x8f/0xb0
[   70.010056][ T5356]  __kmalloc_cache_noprof+0x4e/0x320
[   70.015398][ T5356]  audit_log_d_path+0x96/0x250
[   70.020209][ T5356]  ? __rcu_read_unlock+0x4e/0x70
[   70.025205][ T5356]  audit_log_d_path_exe+0x42/0x70
[   70.030289][ T5356]  audit_log_task+0x192/0x1c0
[   70.035049][ T5356]  audit_seccomp+0x68/0x130
[   70.039556][ T5356]  __seccomp_filter+0x6fa/0x1180
[   70.044532][ T5356]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   70.050271][ T5356]  ? vfs_write+0x596/0x920
[   70.054772][ T5356]  ? putname+0xcf/0xf0
[   70.058977][ T5356]  __secure_computing+0x9f/0x1c0
[   70.063986][ T5356]  syscall_trace_enter+0xd1/0x1f0
[   70.069029][ T5356]  ? fpregs_assert_state_consistent+0x83/0xa0
[   70.075176][ T5356]  do_syscall_64+0xaa/0x1c0
[   70.079705][ T5356]  ? clear_bhb_loop+0x55/0xb0
[   70.084391][ T5356]  ? clear_bhb_loop+0x55/0xb0
[   70.089104][ T5356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.095085][ T5356] RIP: 0033:0x7f98c7c70849
[   70.099522][ T5356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.119136][ T5356] RSP: 002b:00007f98c62e7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[   70.127588][ T5356] RAX: ffffffffffffffda RBX: 00007f98c7e35fa0 RCX: 00007f98c7c70849
[   70.135642][ T5356] RDX: 0000000000008003 RSI: 0000000000000010 RDI: 0000000000000000
[   70.143670][ T5356] RBP: 00007f98c62e70a0 R08: 0000000000000000 R09: 0000000000000000
[   70.151647][ T5356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.159690][ T5356] R13: 0000000000000000 R14: 00007f98c7e35fa0 R15: 00007ffd19093258
[   70.167672][ T5356]  </TASK>
[   70.261002][ T4953] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.375773][ T5373] 9pnet_fd: Insufficient options for proto=fd
[   70.408803][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.416229][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.423736][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.431217][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.438709][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.446184][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.453618][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.461088][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.468596][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.476159][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.483752][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.491315][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.498847][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.506369][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.513874][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.520083][ T5394] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   70.520083][ T5394]    program syz.4.579 not setting count and/or reply_len properly
[   70.521307][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.545358][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.552797][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.560439][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.567878][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.575324][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.582742][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.590202][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.597635][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.605118][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.612585][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.620030][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.627463][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.634884][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.642394][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.649818][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.657271][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.664684][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.672094][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.679559][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.687032][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.694584][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.702016][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.709445][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.716839][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.724369][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.731900][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.739344][ T2964] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   70.754068][ T5396] __nla_validate_parse: 1 callbacks suppressed
[   70.754081][ T5396] netlink: 100 bytes leftover after parsing attributes in process `syz.3.580'.
[   70.770626][ T2964] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   70.955749][ T5362] chnl_net:caif_netlink_parms(): no params data found
[   71.022780][ T5430] loop0: detected capacity change from 0 to 512
[   71.076982][ T5430] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   71.115536][ T5430] System zones: 0-2, 18-18, 34-34
[   71.141783][ T5362] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.148993][ T5362] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.181053][ T5430] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.591: bg 0: block 248: padding at end of block bitmap is not set
[   71.195989][ T5447] netlink: 100 bytes leftover after parsing attributes in process `syz.3.593'.
[   71.205172][ T5362] bridge_slave_0: entered allmulticast mode
[   71.218193][ T5362] bridge_slave_0: entered promiscuous mode
[   71.236334][ T5430] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.591: Failed to acquire dquot type 1
[   71.250234][ T5362] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.257302][ T5362] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.276585][ T5362] bridge_slave_1: entered allmulticast mode
[   71.290546][ T5430] EXT4-fs (loop0): 1 truncate cleaned up
[   71.296529][ T5430] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.315092][ T5362] bridge_slave_1: entered promiscuous mode
[   71.329010][ T5455] siw: device registration error -23
[   71.347314][ T5430] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.371353][ T5362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.429781][ T5362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.451051][ T5430] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.591: deleted inode referenced: 12
[   71.494912][ T5362] team0: Port device team_slave_0 added
[   71.520416][ T5362] team0: Port device team_slave_1 added
[   71.536862][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.579002][ T5362] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.585990][ T5362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.612099][ T5362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.649757][ T5470] loop0: detected capacity change from 0 to 256
[   71.658273][ T5362] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.665233][ T5362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.691394][ T5362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.739588][ T5362] hsr_slave_0: entered promiscuous mode
[   71.747373][ T5362] hsr_slave_1: entered promiscuous mode
[   71.753498][ T5362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.776874][ T5362] Cannot create hsr debugfs directory
[   71.818029][ T5470] netlink: 40 bytes leftover after parsing attributes in process `syz.0.596'.
[   71.861824][ T5470] netlink: 'syz.0.596': attribute type 4 has an invalid length.
[   71.869635][ T5470] netlink: 17 bytes leftover after parsing attributes in process `syz.0.596'.
[   71.919838][ T5480] loop3: detected capacity change from 0 to 2048
[   71.968743][ T5362] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   71.978874][ T5483] siw: device registration error -23
[   72.000743][ T5480]  loop3: p1 < > p4
[   72.005313][ T5480] loop3: p4 size 8388608 extends beyond EOD, truncated
[   72.038199][ T5362] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   72.111425][ T5485] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.119174][ T5485] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.140774][ T5485] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.148241][ T5485] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.184202][ T5488] loop3: detected capacity change from 0 to 512
[   72.208462][ T5362] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   72.252710][ T5362] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   72.266386][ T5488] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   72.279671][ T5488] System zones: 0-2, 18-18, 34-34
[   72.287096][ T5488] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.605: bg 0: block 248: padding at end of block bitmap is not set
[   72.330484][ T5488] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.605: Failed to acquire dquot type 1
[   72.386996][ T5488] EXT4-fs (loop3): 1 truncate cleaned up
[   72.406990][ T5488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.474644][ T5488] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.495756][ T5362] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.551829][ T5362] 8021q: adding VLAN 0 to HW filter on device team0
[   72.584199][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.591337][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.608511][ T5488] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.605: deleted inode referenced: 12
[   72.639325][  T111] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.646474][  T111] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.691672][ T5505] FAULT_INJECTION: forcing a failure.
[   72.691672][ T5505] name failslab, interval 1, probability 0, space 0, times 0
[   72.704536][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.5.610 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   72.714811][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   72.724883][ T5505] Call Trace:
[   72.728248][ T5505]  <TASK>
[   72.731228][ T5505]  dump_stack_lvl+0xf2/0x150
[   72.735944][ T5505]  dump_stack+0x15/0x1a
[   72.740146][ T5505]  should_fail_ex+0x223/0x230
[   72.744842][ T5505]  ? audit_log_d_path+0x96/0x250
[   72.749847][ T5505]  should_failslab+0x8f/0xb0
[   72.754486][ T5505]  __kmalloc_cache_noprof+0x4e/0x320
[   72.759820][ T5505]  audit_log_d_path+0x96/0x250
[   72.764663][ T5505]  ? __rcu_read_unlock+0x4e/0x70
[   72.769655][ T5505]  audit_log_d_path_exe+0x42/0x70
[   72.774703][ T5505]  audit_log_task+0x192/0x1c0
[   72.779419][ T5505]  audit_seccomp+0x68/0x130
[   72.783950][ T5505]  __seccomp_filter+0x6fa/0x1180
[   72.789008][ T5505]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   72.794735][ T5505]  ? vfs_write+0x596/0x920
[   72.799172][ T5505]  ? __schedule+0x6fa/0x930
[   72.803722][ T5505]  __secure_computing+0x9f/0x1c0
[   72.808699][ T5505]  syscall_trace_enter+0xd1/0x1f0
[   72.813760][ T5505]  do_syscall_64+0xaa/0x1c0
[   72.818343][ T5505]  ? clear_bhb_loop+0x55/0xb0
[   72.823088][ T5505]  ? clear_bhb_loop+0x55/0xb0
[   72.827821][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.833750][ T5505] RIP: 0033:0x7ffacfe90849
[   72.838181][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.857874][ T5505] RSP: 002b:00007fface507058 EFLAGS: 00000246 ORIG_RAX: 00000000000001c3
[   72.866327][ T5505] RAX: ffffffffffffffda RBX: 00007ffad0055fa0 RCX: 00007ffacfe90849
[   72.874342][ T5505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   72.882332][ T5505] RBP: 00007fface5070a0 R08: 0000000000000000 R09: 0000000000000000
[   72.890325][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.898395][ T5505] R13: 0000000000000000 R14: 00007ffad0055fa0 R15: 00007fff36f1a798
[   72.906442][ T5505]  </TASK>
[   72.913417][   T29] kauditd_printk_skb: 506 callbacks suppressed
[   72.913430][   T29] audit: type=1326 audit(1733063027.130:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="<no_memory>" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   72.949608][   T29] audit: type=1326 audit(1733063027.390:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7ffacfe8f25c code=0x7ffc0000
[   72.976890][   T29] audit: type=1326 audit(1733063027.410:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ffacfe8f2ff code=0x7ffc0000
[   73.000421][   T29] audit: type=1326 audit(1733063027.410:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ffacfe8f4aa code=0x7ffc0000
[   73.023871][   T29] audit: type=1326 audit(1733063027.410:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   73.047229][   T29] audit: type=1326 audit(1733063027.410:3983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5504 comm="syz.5.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacfe90849 code=0x7ffc0000
[   73.100058][ T5362] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   73.110479][ T5362] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   73.133142][   T29] audit: type=1326 audit(1733063027.570:3984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5487 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa6d0849 code=0x7ffc0000
[   73.156529][   T29] audit: type=1326 audit(1733063027.570:3985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5487 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa6d0849 code=0x7ffc0000
[   73.221068][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.300577][ T5362] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.310251][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.317943][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.325386][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.332836][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.340292][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.347748][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.355169][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.362589][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.370006][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.377496][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.384923][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.392406][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.399982][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.407575][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.415057][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.422521][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.429949][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.437450][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.444979][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.452408][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.459850][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.467223][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.474682][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.482294][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.489957][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.497464][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.504852][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.512299][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.519779][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.527193][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.534609][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.542131][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.549565][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.556958][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.564449][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.571903][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.579338][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.586737][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.594299][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.601850][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.609343][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.616937][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.624854][ T3374] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   73.657103][ T3374] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   73.674753][ T5528] capability: warning: `syz.5.613' uses deprecated v2 capabilities in a way that may be insecure
[   73.680886][   T29] audit: type=1326 audit(1733063028.110:3986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.3.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa6d0849 code=0x7ffc0000
[   73.708786][   T29] audit: type=1326 audit(1733063028.110:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5525 comm="syz.3.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa6d0849 code=0x7ffc0000
[   73.778182][ T5536] FAULT_INJECTION: forcing a failure.
[   73.778182][ T5536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.791336][ T5536] CPU: 0 UID: 0 PID: 5536 Comm: syz.3.615 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   73.801603][ T5536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.811774][ T5536] Call Trace:
[   73.815070][ T5536]  <TASK>
[   73.818019][ T5536]  dump_stack_lvl+0xf2/0x150
[   73.822709][ T5536]  dump_stack+0x15/0x1a
[   73.826903][ T5536]  should_fail_ex+0x223/0x230
[   73.831634][ T5536]  should_fail+0xb/0x10
[   73.835814][ T5536]  should_fail_usercopy+0x1a/0x20
[   73.840978][ T5536]  _copy_to_user+0x20/0xa0
[   73.845427][ T5536]  simple_read_from_buffer+0xa0/0x110
[   73.850908][ T5536]  proc_fail_nth_read+0xf9/0x140
[   73.855988][ T5536]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   73.861662][ T5536]  vfs_read+0x1a2/0x700
[   73.865861][ T5536]  ? __rcu_read_unlock+0x4e/0x70
[   73.871034][ T5536]  ? __fget_files+0x17c/0x1c0
[   73.875745][ T5536]  ksys_read+0xe8/0x1b0
[   73.879936][ T5536]  __x64_sys_read+0x42/0x50
[   73.884515][ T5536]  x64_sys_call+0x2874/0x2dc0
[   73.889287][ T5536]  do_syscall_64+0xc9/0x1c0
[   73.893903][ T5536]  ? clear_bhb_loop+0x55/0xb0
[   73.898743][ T5536]  ? clear_bhb_loop+0x55/0xb0
[   73.903457][ T5536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.909482][ T5536] RIP: 0033:0x7fa7fa6cf25c
[   73.913289][ T5543] loop0: detected capacity change from 0 to 2048
[   73.913909][ T5536] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   73.913936][ T5536] RSP: 002b:00007fa7f8d47050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   73.948471][ T5536] RAX: ffffffffffffffda RBX: 00007fa7fa895fa0 RCX: 00007fa7fa6cf25c
[   73.956474][ T5536] RDX: 000000000000000f RSI: 00007fa7f8d470b0 RDI: 0000000000000004
[   73.964521][ T5536] RBP: 00007fa7f8d470a0 R08: 0000000000000000 R09: 0000000000000000
[   73.972590][ T5536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.980610][ T5536] R13: 0000000000000000 R14: 00007fa7fa895fa0 R15: 00007ffe38f4f818
[   73.988622][ T5536]  </TASK>
[   74.018567][ T3290]  loop0: p1 < > p4
[   74.023084][ T3290] loop0: p4 size 8388608 extends beyond EOD, truncated
[   74.046235][ T5546] siw: device registration error -23
[   74.053690][ T5362] veth0_vlan: entered promiscuous mode
[   74.057739][ T5543]  loop0: p1 < > p4
[   74.063997][ T5362] veth1_vlan: entered promiscuous mode
[   74.070462][ T5543] loop0: p4 size 8388608 extends beyond EOD, truncated
[   74.136113][ T5362] veth0_macvtap: entered promiscuous mode
[   74.144731][ T5362] veth1_macvtap: entered promiscuous mode
[   74.167746][ T5362] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.192894][ T5362] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.208480][ T5362] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.217290][ T5362] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.226200][ T5362] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.234956][ T5362] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.483380][ T5569] syzkaller0: entered promiscuous mode
[   74.489017][ T5569] syzkaller0: entered allmulticast mode
[   74.504054][ T5580] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   74.545932][ T5580] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.624343][ T5580] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.701536][ T5580] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.734371][ T5594] loop0: detected capacity change from 0 to 256
[   74.745655][ T5580] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.811490][ T5594] netlink: 40 bytes leftover after parsing attributes in process `syz.0.630'.
[   74.829637][ T5580] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.844011][ T5580] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.853003][ T5594] netlink: 'syz.0.630': attribute type 4 has an invalid length.
[   74.860741][ T5594] netlink: 17 bytes leftover after parsing attributes in process `syz.0.630'.
[   74.875608][ T5580] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.895223][ T5598] netlink: 8 bytes leftover after parsing attributes in process `syz.3.633'.
[   74.907901][ T5580] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.998948][ T5608] loop0: detected capacity change from 0 to 2048
[   75.028218][ T5608]  loop0: p1 < > p4
[   75.035765][ T5608] loop0: p4 size 8388608 extends beyond EOD, truncated
[   75.064677][ T5622] netlink: 28 bytes leftover after parsing attributes in process `syz.4.642'.
[   75.068360][ T3001]  loop0: p1 < > p4
[   75.073635][ T5622] netlink: 28 bytes leftover after parsing attributes in process `syz.4.642'.
[   75.091198][ T3001] loop0: p4 size 8388608 extends beyond EOD, truncated
[   75.100529][ T5622] gretap0: entered promiscuous mode
[   75.113975][ T5622] erspan0: entered promiscuous mode
[   75.159767][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   75.182086][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   75.240505][ T5641] loop5: detected capacity change from 0 to 1024
[   75.249995][ T5643] program syz.0.651 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.260622][ T5641] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.274766][ T5643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'.
[   75.288193][ T5652] tun0: tun_chr_ioctl cmd 1074812117
[   75.301286][ T5641] FAULT_INJECTION: forcing a failure.
[   75.301286][ T5641] name failslab, interval 1, probability 0, space 0, times 0
[   75.314099][ T5641] CPU: 0 UID: 0 PID: 5641 Comm: syz.5.650 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   75.324374][ T5641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   75.334452][ T5641] Call Trace:
[   75.335486][ T5655] loop3: detected capacity change from 0 to 2048
[   75.337761][ T5641]  <TASK>
[   75.337772][ T5641]  dump_stack_lvl+0xf2/0x150
[   75.351706][ T5641]  dump_stack+0x15/0x1a
[   75.355905][ T5641]  should_fail_ex+0x223/0x230
[   75.360617][ T5641]  should_failslab+0x8f/0xb0
[   75.365222][ T5641]  kmem_cache_alloc_noprof+0x52/0x320
[   75.370648][ T5641]  ? dst_alloc+0xc0/0x100
[   75.375001][ T5641]  dst_alloc+0xc0/0x100
[   75.379251][ T5641]  ? ip_route_input_rcu+0xbc2/0x1c40
[   75.384623][ T5641]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[   75.390679][ T5641]  ? call_rcu+0x2fb/0x430
[   75.395021][ T5641]  ip_route_output_flow+0x76/0x120
[   75.400176][ T5641]  tcp_v4_connect+0x45f/0xad0
[   75.404993][ T5641]  tcp_v6_connect+0x7f2/0xc60
[   75.409690][ T5641]  mptcp_connect+0x459/0x760
[   75.414361][ T5641]  __inet_stream_connect+0x162/0x790
[   75.419681][ T5641]  ? _raw_spin_unlock_bh+0x36/0x40
[   75.424814][ T5641]  ? release_sock+0x117/0x150
[   75.429524][ T5641]  ? _raw_spin_unlock_bh+0x36/0x40
[   75.434763][ T5641]  ? lock_sock_nested+0x10f/0x140
[   75.439862][ T5641]  ? selinux_netlbl_socket_connect+0x113/0x130
[   75.446036][ T5641]  inet_stream_connect+0x48/0x70
[   75.451079][ T5641]  ? __pfx_inet_stream_connect+0x10/0x10
[   75.456785][ T5641]  __sys_connect+0x18f/0x1b0
[   75.461491][ T5641]  __x64_sys_connect+0x41/0x50
[   75.466264][ T5641]  x64_sys_call+0x22a7/0x2dc0
[   75.470977][ T5641]  do_syscall_64+0xc9/0x1c0
[   75.475505][ T5641]  ? clear_bhb_loop+0x55/0xb0
[   75.480292][ T5641]  ? clear_bhb_loop+0x55/0xb0
[   75.484994][ T5641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.490605][ T5659] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   75.490605][ T5659]    program syz.6.655 not setting count and/or reply_len properly
[   75.490957][ T5641] RIP: 0033:0x7ffacfe90849
[   75.490979][ T5641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.531642][ T5641] RSP: 002b:00007fface507058 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   75.540152][ T5641] RAX: ffffffffffffffda RBX: 00007ffad0055fa0 RCX: 00007ffacfe90849
[   75.548182][ T5641] RDX: 000000000000001c RSI: 0000000020000080 RDI: 0000000000000004
[   75.556163][ T5641] RBP: 00007fface5070a0 R08: 0000000000000000 R09: 0000000000000000
[   75.564139][ T5641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.572196][ T5641] R13: 0000000000000000 R14: 00007ffad0055fa0 R15: 00007fff36f1a798
[   75.580179][ T5641]  </TASK>
[   75.594592][ T5661] loop6: detected capacity change from 0 to 512
[   75.603701][ T5661] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.617104][ T5661] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.627586][ T3001]  loop3: p1 < > p4
[   75.632110][ T4953] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.632597][ T3001] loop3: p4 size 8388608 extends beyond EOD, truncated
[   75.650100][ T5655]  loop3: p1 < > p4
[   75.654514][ T5655] loop3: p4 size 8388608 extends beyond EOD, truncated
[   75.666005][ T3001]  loop3: p1 < > p4
[   75.676780][ T3001] loop3: p4 size 8388608 extends beyond EOD, truncated
[   75.703950][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   75.734367][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   75.773192][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   75.784375][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   75.811428][ T4976] udevd[4976]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   75.816335][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   75.834311][ T5674] loop5: detected capacity change from 0 to 128
[   75.858241][ T5362] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.868353][ T5680] siw: device registration error -23
[   75.949357][ T5674] loop5: detected capacity change from 0 to 128
[   75.949616][ T5674] EXT4-fs: Ignoring removed i_version option
[   75.949655][ T5674] EXT4-fs: Ignoring removed orlov option
[   75.963870][ T5674] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   75.964181][ T5674] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   75.994711][ T4953] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.040217][ T5700] FAULT_INJECTION: forcing a failure.
[   76.040217][ T5700] name failslab, interval 1, probability 0, space 0, times 0
[   76.040246][ T5700] CPU: 1 UID: 0 PID: 5700 Comm: syz.0.669 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   76.040273][ T5700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.040284][ T5700] Call Trace:
[   76.040289][ T5700]  <TASK>
[   76.040325][ T5700]  dump_stack_lvl+0xf2/0x150
[   76.040359][ T5700]  dump_stack+0x15/0x1a
[   76.040391][ T5700]  should_fail_ex+0x223/0x230
[   76.040436][ T5700]  should_failslab+0x8f/0xb0
[   76.040467][ T5700]  kmem_cache_alloc_noprof+0x52/0x320
[   76.040487][ T5700]  ? security_file_alloc+0x32/0x100
[   76.040520][ T5700]  security_file_alloc+0x32/0x100
[   76.040547][ T5700]  init_file+0x5b/0x1b0
[   76.040570][ T5700]  alloc_empty_file+0xea/0x200
[   76.040594][ T5700]  alloc_file_pseudo+0xc3/0x140
[   76.040668][ T5700]  anon_inode_getfile+0xa3/0x120
[   76.040686][ T5700]  do_eventfd+0x10a/0x1b0
[   76.040711][ T5700]  __x64_sys_eventfd+0x20/0x30
[   76.040802][ T5700]  x64_sys_call+0x2626/0x2dc0
[   76.040824][ T5700]  do_syscall_64+0xc9/0x1c0
[   76.040855][ T5700]  ? clear_bhb_loop+0x55/0xb0
[   76.040928][ T5700]  ? clear_bhb_loop+0x55/0xb0
[   76.040954][ T5700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.040978][ T5700] RIP: 0033:0x7fc25f790849
[   76.040992][ T5700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.041014][ T5700] RSP: 002b:00007fc25de07058 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[   76.041100][ T5700] RAX: ffffffffffffffda RBX: 00007fc25f955fa0 RCX: 00007fc25f790849
[   76.041123][ T5700] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.041137][ T5700] RBP: 00007fc25de070a0 R08: 0000000000000000 R09: 0000000000000000
[   76.041149][ T5700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.041161][ T5700] R13: 0000000000000000 R14: 00007fc25f955fa0 R15: 00007ffcd9eee2e8
[   76.041178][ T5700]  </TASK>
[   76.112677][ T5704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.670'.
[   76.210848][ T5717] netlink: 'syz.0.675': attribute type 10 has an invalid length.
[   76.300498][ T5702] loop5: detected capacity change from 0 to 8192
[   76.303162][ T5717] netlink: 40 bytes leftover after parsing attributes in process `syz.0.675'.
[   76.306500][ T5717] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[   76.508809][ T5726]  loop5: p2 p3 p4
[   76.512628][ T5726] loop5: p2 start 14935 is beyond EOD, truncated
[   76.519104][ T5726] loop5: p3 size 196608 extends beyond EOD, truncated
[   76.531849][ T5726] loop5: p4 start 4026530307 is beyond EOD, truncated
[   76.541470][ T5702]  loop5: p2 p3 p4
[   76.541561][ T5702] loop5: p2 start 14935 is beyond EOD, truncated
[   76.541577][ T5702] loop5: p3 size 196608 extends beyond EOD, truncated
[   76.542114][ T5702] loop5: p4 start 4026530307 is beyond EOD, truncated
[   76.546014][ T3001]  loop5: p2 p3 p4
[   76.546056][ T3001] loop5: p2 start 14935 is beyond EOD, truncated
[   76.546074][ T3001] loop5: p3 size 196608 extends beyond EOD, truncated
[   76.546437][ T3001] loop5: p4 start 4026530307 is beyond EOD, truncated
[   76.589569][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   76.656258][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   76.712150][ T5739] loop6: detected capacity change from 0 to 512
[   76.732383][ T5754] loop0: detected capacity change from 0 to 2048
[   76.744511][ T5739] EXT4-fs (loop6): revision level too high, forcing read-only mode
[   76.766113][ T5739] EXT4-fs (loop6): orphan cleanup on readonly fs
[   76.773780][ T5739] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   76.774693][ T5759] loop5: detected capacity change from 0 to 1024
[   76.789968][ T5739] EXT4-fs (loop6): Cannot turn on quotas: error -117
[   76.802493][ T5754]  loop0: p1 < > p4
[   76.807112][ T5739] EXT4-fs error (device loop6): ext4_orphan_get:1389: inode #16: comm syz.6.681: casefold flag without casefold feature
[   76.820986][ T5739] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.681: couldn't read orphan inode 16 (err -117)
[   76.835665][ T5754] loop0: p4 size 8388608 extends beyond EOD, truncated
[   76.850305][ T5739] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.874332][ T3001]  loop0: p1 < > p4
[   76.880705][ T3001] loop0: p4 size 8388608 extends beyond EOD, truncated
[   76.883952][ T5759] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.921061][ T4953] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.954334][ T5362] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.109379][ T5797] loop3: detected capacity change from 0 to 2048
[   77.116411][ T5796] syz.5.703[5796] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.116592][ T5796] syz.5.703[5796] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.127933][ T5791] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[   77.127933][ T5791]    program syz.0.701 not setting count and/or reply_len properly
[   77.168710][ T5797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.180424][ T5803] tipc: Started in network mode
[   77.185631][ T5803] tipc: Node identity ac1414aa, cluster identity 4711
[   77.187019][ T5800] loop6: detected capacity change from 0 to 2048
[   77.199279][ T5803] tipc: New replicast peer: 100.1.1.1
[   77.199867][ T5797] ext4 filesystem being mounted at /173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.204681][ T5803] tipc: Enabled bearer <udp:syz2>, priority 10
[   77.224000][ T5796] syz.5.703[5796] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.247842][ T5800]  loop6: p1 < > p4
[   77.268742][ T5800] loop6: p4 size 8388608 extends beyond EOD, truncated
[   77.287765][ T5811] tmpfs: Bad value for 'mpol'
[   77.292621][ T5812] netlink: 132 bytes leftover after parsing attributes in process `syz.5.706'.
[   77.326951][ T5815] loop0: detected capacity change from 0 to 8192
[   77.364852][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.436147][ T3300] ==================================================================
[   77.444275][ T3300] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[   77.451602][ T3300] 
[   77.453938][ T3300] read-write to 0xffff888237d2ba28 of 8 bytes by task 5821 on cpu 1:
[   77.462015][ T3300]  __find_get_block+0x434/0x8a0
[   77.466901][ T3300]  bdev_getblk+0x30/0x3b0
[   77.471264][ T3300]  __ext4_get_inode_loc+0x2f7/0x910
[   77.476494][ T3300]  ext4_reserve_inode_write+0xb0/0x200
[   77.481978][ T3300]  __ext4_mark_inode_dirty+0x8e/0x440
[   77.487369][ T3300]  ext4_dirty_inode+0x91/0xb0
[   77.492079][ T3300]  __mark_inode_dirty+0x166/0x7e0
[   77.497123][ T3300]  file_update_time+0x285/0x2b0
[   77.501984][ T3300]  ext4_page_mkwrite+0x19e/0xb70
[   77.506942][ T3300]  handle_mm_fault+0x12f7/0x2ac0
[   77.511906][ T3300]  exc_page_fault+0x3b9/0x650
[   77.516593][ T3300]  asm_exc_page_fault+0x26/0x30
[   77.521464][ T3300] 
[   77.523791][ T3300] read to 0xffff888237d2ba28 of 8 bytes by task 3300 on cpu 0:
[   77.531341][ T3300]  has_bh_in_lru+0x35/0x1f0
[   77.535859][ T3300]  smp_call_function_many_cond+0x2d5/0xc20
[   77.541770][ T3300]  on_each_cpu_cond_mask+0x3c/0x90
[   77.546898][ T3300]  invalidate_bh_lrus+0x2a/0x30
[   77.551775][ T3300]  invalidate_bdev+0x42/0x70
[   77.556372][ T3300]  ext4_put_super+0x571/0x840
[   77.561088][ T3300]  generic_shutdown_super+0xe5/0x220
[   77.566385][ T3300]  kill_block_super+0x2a/0x70
[   77.571093][ T3300]  ext4_kill_sb+0x44/0x80
[   77.575437][ T3300]  deactivate_locked_super+0x7d/0x1c0
[   77.580827][ T3300]  deactivate_super+0x9f/0xb0
[   77.585519][ T3300]  cleanup_mnt+0x268/0x2e0
[   77.589942][ T3300]  __cleanup_mnt+0x19/0x20
[   77.594365][ T3300]  task_work_run+0x13a/0x1a0
[   77.598970][ T3300]  syscall_exit_to_user_mode+0xa8/0x120
[   77.604536][ T3300]  do_syscall_64+0xd6/0x1c0
[   77.609061][ T3300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.614973][ T3300] 
[   77.617299][ T3300] value changed: 0xffff888106581068 -> 0xffff888100785138
[   77.624408][ T3300] 
[   77.626731][ T3300] Reported by Kernel Concurrency Sanitizer on:
[   77.632879][ T3300] CPU: 0 UID: 0 PID: 3300 Comm: syz-executor Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[   77.643386][ T3300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.653445][ T3300] ==================================================================
[   78.217509][    T8] tipc: Node number set to 2886997162