last executing test programs:

1m34.322707532s ago: executing program 4 (id=270):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002cbd7000ffdbdf2504"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)

1m34.248088523s ago: executing program 4 (id=272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f0000001cc0)=ANY=[], 0x79)

1m34.225809123s ago: executing program 4 (id=273):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r3}, './file2\x00'})
mknodat$loop(r6, &(0x7f00000003c0)='./file2\x00', 0x6000, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007", @ANYBLOB], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r8}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
bpf$MAP_CREATE(0x1400000000000000, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x100c04, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@sysvgroups}, {@block_validity}, {@nodiscard}, {@quota}]}, 0x3, 0x43d, &(0x7f00000004c0)="$eJzs289rHFUcAPDv7Cap6Q8TS/3RtGq0isEfSZPW2oMXRcGDgqCHeoxJWmK3jTQRbAkaRepRCt7Fo+Bf4Ekvop4Er3qXQpFcWj2tzO5MsrvdTbPpJhvdzwemfW/mLe/73Zm3+2ZeNoCeNZr+k0Tsj4jfI2KoWq1vMFr979bq8szfq8szSZTLb/2VVNrdXF2eyZvmr9uXV/oiCp8lcaRJv4uXr5yfLpXmLmX1iaUL708sXr7y3PyF6XNz5+YuTp0+ffLE5Aunpp7vSJ5pXjdHPlo4evi1d669MXPm2rs/f5vk+Tfk0SGjGx18slzucHfddaCmnPR1MRDaUqwO0+ivjP+hKMb6yRuKVz/tanDAtiqXy+UHWh9eKQP/Y0l0OwKgO/Iv+vT+N992aOqxK9x4qXoDlOZ9K9uqR/qikLXpb7i/7aTRiDiz8s9X6Rbb8xwCAKDO9+n859lm879C1D4XujdbQxmOiPsi4mBEnIqIQxFxf0Sl7YMR8VCb/Tcuktw+/ylc31Jim5TO/17M1rbq53/57C+Gi1ntQCX//uTsfGnuePaejEX/nrQ+uUEfP7zy2xetjtXO/9It7T+fC2ZxXO/bU/+a2eml6bvJudaNTyJG+prln6ytBCQRcTgiRrbYx/zT3xxtdezO+W+gA+tM5a8jnqqe/5VoyD+XbLw+OXFPlOaOT+RXxe1++fXqm636v6v8OyA9/3ubXv9r+Q8nteu1i+33cfWPz1ve02z1+h9I3q7b9+H00tKlyYiB5PVq0LX7pxraTa23T/MfO9Z8/B+M9XfiSESkF/HDEfFIRDyaxf5YRDweEcc2yP+nl594b+v5b680/9m2zv96YSAa9zQvFM//+F1dp8Pt5J+e/5OV0li2ZzOff5uJa2tXMwAAAPz3FCJifySF8bVyoTA+Xv0b/kOxt1BaWFx65uzCBxdnq78RGI7+Qv6ka6jmeehkdluf16ca6iey58ZfFgcr9fGZhdJst5OHHrevxfhP/VnsdnTAtvN7Lehdxj/0LuMfepfxD72ryfgf7EYcwM5r9v3/cRfiAHZew/i37Ac9xP0/9C7jH3qX8Q89aXEw7vwj+U4UYvu7UNjJQhR2RRjtFSJiJb3sd0s8u7jQ7U8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAzvg3AAD//8ii43M=")
r9 = openat$cgroup_ro(r6, &(0x7f0000000940)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
write$cgroup_int(r9, &(0x7f0000000000), 0xfffffd26)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r10 = syz_io_uring_setup(0x499, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r11=>0x0, &(0x7f0000000380)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r10, 0x22d6, 0x4b34, 0x4, 0x0, 0xffa1)
close_range(r0, r1, 0x0)

1m32.514917069s ago: executing program 4 (id=284):
r0 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x14806, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0x0, 0x70a, &(0x7f00000232c0)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$int_in(r3, 0x5452, &(0x7f0000000680)=0x2)
getdents(r0, &(0x7f0000000340)=""/101, 0xfec8)
socket$nl_sock_diag(0x10, 0x3, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8b}, 0x94)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=@newqdisc={0x2c4, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x294, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0xfd, 0x2}}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x64, 0x2, 0x3, 0x17, 0xd, 0x8, 0x1}}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x9cc, 0x8, 0x4, 0x11, 0x13, 0xc, 0x4}}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0xe}}, @TCA_CHOKE_MAX_P={0x8}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_MAX_P={0x8}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x2}}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x5e9, 0x8, 0x7fffffff, 0x20, 0x0, 0x1b, 0x2}}]}}]}, 0x2c4}}, 0x4)
socket$nl_rdma(0x10, 0x3, 0x14)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r10}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240488c1}, 0x20000010)

1m31.902218278s ago: executing program 4 (id=286):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000100000ed20ec6d8a02030000000e00", @ANYBLOB="0000000000000000b70300001d000000850000001b000000b700000000"], &(0x7f0000000380)='GPL\x00', 0x80, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, 0x0, 0x0, 0xff)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000ffb000/0x3000)=nil)
io_setup(0x3, &(0x7f0000000200))
syz_open_dev$usbfs(&(0x7f0000000480), 0x7, 0x41341)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
syncfs(r3)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x12003, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000a80)='kfree\x00'}, 0x18)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000240)={[{@errors_remount}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}]}, 0x2, 0x476, &(0x7f0000000540)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r4, 0x0, 0x0)
lseek(r4, 0x3, 0x1)
getdents64(r4, 0x0, 0x0)

1m31.145746148s ago: executing program 4 (id=291):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setresuid(0x0, 0xee00, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c001800f8ffffffffffffff140001"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4000000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$eJzs3d9rHFsdAPDvTHbvbdpcN1d9uF6wLbaSFO0maWwbfKgKok8Ftb7XmGxDyCZbkk3bhKIp/gGCiAq+6JMvgn+AIP0TRCjou6gooq0++FAd2d3ZmKa7+UE3u97s5wMnc8782O85GebsnJlhJ4ChdTEiJiMiy7LsSkSU8vlpnmKnlRrrvXj+eKGRksiyO39LIsnntT/r7Xx6Lt/sTER87csR30xej7uxtb0yX61W1vPyVH01eZll21eXV+eXKkuVtdnZmRtzN+euz033pJ3jEXHri3/6wXd/9qVbv/r0w9/f/cvkt1oNbNnbjl5qNb3Y/F+0FSJi/SSCDUih2cKW6wOuCwAAB2uc7384Ij4REVeiFCPNszkAAADgNMk+NxYvk9b9PwAAAOB0SiNiLJK0nD/vOxZpWi63nuH9aJxNq7WN+qey0u71gvEopveWq5Xp/NmB8SgmjfJM/oxtu3xtX3k2It6NiO+XRpvl8kKtujjQKx8AAAAwPM7tG///s9Qa/wMAAACnzPigKwAAAACcOON/AAAAOP2M/wEAAOBU+8rt242Utd9/vfhga3Ol9uDqYmVjpby6uVBeqK3fLy/VakvN3+xbPezzqrXa/c/E2uajqXploz61sbV9d7W2uVa/u/zKK7ABAACAPnr3wtPfJRGx89nRNCKyZM+yYkQ2snflQv/rB5yc9Dgr//Hk6gH038igKwAMjFN6GF7FQVcAGLjD+oGuD+/8uvd1AQAATsbEx3bv/zdTw1v5smSgNQNOWn7/P3Gsw/Bx/x+Gl/t/MLyKB50BGBTAqZce4VB/8/v/WXasSgEAAD031kxJWs7HAWORpuVyxDvN1wIUk3vL1cp0RHwoIn5bKr7dKM80t0xcHgAAAAAAAAAAAAAAAAAAAAAAAACAI8qyJLIuRnfXAQAAAD7IItI/J/n7vyZKl8f2Xx94K/lXqTmNiIc/vvPDR/P1+vpMY/7fd+fXf5TPv9bvqxcAAABAJ+1xenscDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99OL544V26mfcv34hIsY7xS/Emeb0TBQj4uw/kijs2S6JiJEexN95EhHvdYqfNKoV43kt9sdPI2J0wPHP9SA+DLOnjf7n852OvzQuNqedj79Cnt5U9/4v3e3/Rrr0f+90+sD09VnvP/vFVNf4TyLeL3Tuf9rxky7xLx2xjd/4+vZ2t2XZTyMmOn7/JK/EmkoK96c2travLq/OL1WWKmuzszM35m7OXZ+bnrq3XK3kfzvG+N7Hf/mfg9p/tkv88UPaf/mI7f/3s0fPP9LKFvctKsZPsmzyUuf9/16X+O3vvk/mu7tRnmjnd1r5vc7//DfnLxzQ/sUu7T9s/08esf1XvvqdPxxxVQCgDza2tlfmq9XK+vEyScTOG2wuM1yZ0ehj0Pk4aJ32SWwf6vPtPNT/xS44dmZwfRIAAHAy/nfSP+iaAAAAAAAAAAAAAAAAAAAAwPA67GfAogc/J7Y/5s5gmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcKD/BgAA//+6ychX")
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5, 0x0, 0x1}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x3ff, 0x40000000}, {}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r9 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x400246}, &(0x7f0000000340)=<r10=>0x0, &(0x7f00000006c0)=<r11=>0x0)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r12}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_MKDIRAT={0x25, 0xb, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000000c0)='./file0\x00', 0x1, 0x0, 0x1, {0x0, r13}})
io_uring_enter(r9, 0x4c6e, 0xc67a, 0xc, 0x0, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @none, 0x8}, 0xe)

1m31.134593649s ago: executing program 32 (id=291):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setresuid(0x0, 0xee00, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c001800f8ffffffffffffff140001"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4000000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$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")
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5, 0x0, 0x1}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x3ff, 0x40000000}, {}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r9 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x400246}, &(0x7f0000000340)=<r10=>0x0, &(0x7f00000006c0)=<r11=>0x0)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r12}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_MKDIRAT={0x25, 0xb, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000000c0)='./file0\x00', 0x1, 0x0, 0x1, {0x0, r13}})
io_uring_enter(r9, 0x4c6e, 0xc67a, 0xc, 0x0, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @none, 0x8}, 0xe)

21.978205686s ago: executing program 3 (id=1149):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000180)) (async)
getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000180))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getgroups(0x0, 0x0) (async)
getgroups(0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00'}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="200080000101010200000000000000000a0000020c001980df000100a90e0000"], 0x20}, 0x1, 0x0, 0x0, 0x8000850}, 0x20008840)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000011c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080c0}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000011c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080c0}, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
r6 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000700)=',&#^%\x00')
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000e40)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='sys_enter\x00', r7}, 0x18)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x860000a0) (async)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x860000a0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000001080)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000540)='(pu&00\t||') (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000540)='(pu&00\t||')

21.874623968s ago: executing program 3 (id=1151):
r0 = io_uring_setup(0xf08, &(0x7f0000000780)={0x0, 0x400826e, 0x40, 0x3, 0xf0})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000c00)=[{0x0}], 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff3d1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
io_uring_register$IORING_REGISTER_FILES(r0, 0x1e, &(0x7f0000000000)=[r0], 0x1)

21.842109929s ago: executing program 3 (id=1154):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de85000000040000"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[@ANYRESDEC=0x0], 0x2000)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r3, &(0x7f0000001b00)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000040)=ANY=[], 0x1000f)

21.829985149s ago: executing program 3 (id=1156):
rseq(&(0x7f0000002d80), 0x20, 0x0, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0xffffffffdff13fff, 0x17)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001040)=ANY=[@ANYRESOCT=r0], 0x70}, 0x1, 0x0, 0x0, 0x4008099}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=")
mount(0x0, &(0x7f00000001c0)='.\x00', 0x0, 0x401, 0x0)
chown(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x88c42, 0x10c)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_getfd(r3, r1, 0x0)
socket$packet(0x11, 0x3, 0x300)
madvise(&(0x7f0000704000/0x3000)=nil, 0x3000, 0x1)

21.639573112s ago: executing program 3 (id=1160):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c636865636b3d7374726963742c756d61736b3d30303030303030303030303030303030303133363033302c756e695f786c6174653d312c756e695f786c6174653d302c666d61736b3d30303030303030303030303030303030303030303034302c757466383d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c74696d655f6f66667365743d3078303030303030303030303030303166622c666c7573682c756e695f786c6174653d302c73686f72746e616d653d77696e39352c00208893fdd4787adad4209069"], 0x6, 0x2ab, &(0x7f0000000a80)="$eJzs3b1rLFUUAPAzyX6pxW5hJYIDWlg9Xl5rs0HyILiVsoVa6MP3Hkh2ERII+IFrKlsbS/8CQbDzn7CxsBdsBTtTBEZmZya7ibObTHATP36/Jjd3zrn3zOQmYYs9+/6L04PHaTw9+eyX6PWS2BrGME6TGMRWVL6IC4ZfBQDwb3aaZfF7VmiSl0REb3NlAQAb1Pj///cbLwkA2LC33n7njd3RaO/NNO3Fw+mXx+P8lX3+tbi++zQ+jEk8ifvRj7OI7Fwxfphl2ayV5gbxynR2PM4zp+/9WK6/+1vEPH8n+jGYT13M3x/t7aSFpfxZXsez5f7DPP9B9OP5mv33R3sPavJj3IlXX16q/17046cP4qOYxON5EYv8z3fS9PXs6z8+fTcvL89PZsfj7jxuIdu+5R8NAAAAAAAAAAAAAAAAAAAAAAD/YffK3jndmPfvyafK/jvbZ/k37Ugrg4v9eYr8pFroUn+gWRbfVP117qdpmpWBi/xWvNCK1t3cNQAAAAAAAAAAAAAAAAAAAPyzHH38ycGjyeTJ4d8yqLoBVG/rv+k6w6WZl6ImZhDnM93FllvltmtWju0qJolYW0a+YqPi21fvvmLwzKqsb79r+uh6V8e0b1Bhw0F1ug4eJfXPsBvVTK86JD8sx3Timnt1Vl3KGh2/Tu2lfuN77zw3H8zWxESyrrDXfi2eXDmTXL6Lzvyp1qa3y0Hxu1B3Nhqd57/+rUh06wAAAAAAAAAAAAAAAAAAgI1avOm35uLJiqSf94sP+Y/BhqsDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNux+Pz/BoNZmXyN4E4cHt3xLQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPA/8GcAAAD//wrtYeE=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1c0)

19.429122524s ago: executing program 3 (id=1185):
r0 = socket$igmp(0x2, 0x3, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x9, 0x800000, 0x5, 0x2, 0x2, 0x0, 0x0, 0xfffffffd, 0x0, 0xbd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_mreqsrc(r1, 0x0, 0x53, 0x0, &(0x7f0000000040))
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, &(0x7f0000000000)={0x1})

19.422846544s ago: executing program 33 (id=1185):
r0 = socket$igmp(0x2, 0x3, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x9, 0x800000, 0x5, 0x2, 0x2, 0x0, 0x0, 0xfffffffd, 0x0, 0xbd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_mreqsrc(r1, 0x0, 0x53, 0x0, &(0x7f0000000040))
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, &(0x7f0000000000)={0x1})

12.372363388s ago: executing program 5 (id=1335):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4de, &(0x7f0000001080)="$eJzs3d9rXFkdAPDvnSRt0qYmVR9q0Vq0khbtTNLYNvhQI4g+Faz1PcZkEkImmZCZtE0okuIfIIi/0CeffBF8FkH6J6hQ0HcRUYrbdh92YXdnmcmdbZudSSbb+dEmnw+c3HPuvZPv92SYkzn3Xu4N4Mg6HxHTEdEXEZciYiRdn0lLbO+U6n5Pn9yfq5YkKpXb/08iSdfVf1eSLk+mLxuMiO9/N+JHycfjlja3lmcLhfx62s6VV9Zypc2ty0srs4v5xfzq9OTEtanrU1enxtvW1xvf/s8vf/r779z4y9fu/mvmfxd/XE1rOI7Vtr3Yj1Zst7jfTtcHan+Luv6IWD9IsNdYX9qfgV4nAgBAS6rf8T8dEV+KiGe/6XU2AAAAQCdUvjkc7yURFQAAAODQytSugU0y2fRagOHIZLLZnWt4PxsnMoViqfzVheLG6nx1W8RoDGQWlgr58fRa4dEYSKrtiVr9efvKrvZkRJyOiJ+PDNXa2bliYb7XBz8AAADgiDi5a/7/9sjO/B8AAAA4ZEZ7nQAAAADQceb/AAAAcPg1nf8n/d1NBAAAAOiE7928WS2V+vOv5+9sbiwX71yez5eWsysbc9m54vpadrFYXKzds29lv99XKBbXvh6rG/dy5XypnCttbs2sFDdWyzO153rP5D0nGgAAALrv9Bcf/jOJiO1vDNVK1bF0Wwtz9enOZgd0UuZguyedygPovr5eJwD0zD4X+P7t891KBOg65+OBfSb2v9jVPuBhAwAA4HUw9rlXOv/vfCC8wUzk4ej6ROf/T7U/D6D73OALjq6mc3wTAzgaju+/y2CzDX9tcy4AAEDHDNdKksmmU/7hyGSy2Z1D/KMxkCwsFfLjEfGpiPjHyMDxanui10kDAAAAAAAAAAAAAAAAAAAAAAAAwBumUkmiAgAAABxqEZn/JumD/MdGLgzvPj5wLHlnpLaMiLu/vf2re7Pl8vpEdf1bH60v/zpdf6UXRzAAAACA3erz9Po8HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADa6emT+3P10s24j78VEaON4vfHYG05+KeRiDjxLIn+F16XRERfG+JvP4iIM43iJ9W0YjTNYnf8TEQM9Tj+yTbEh6PsYXX8mW70+cvE+dqy8eevPy2v6vH5ZuNfpj7+1ca5RuPfqRZjnH30x1zT+A8izvY3Hn/q8ZNXHH9/+IOtrWbbKr+LGGv4/yd5KVauvLKWK21uXV5amV3ML+ZXJycnrk1dn7o6NZ5bWCrk058NY/zsC3/+YK/+n2gSf3Sf/l9osf/vP7r35DN7xL/45d3x3629/2f2iF/9238l/T9Q3T5Wr2/v1F907g9/P7dX/+eb9H+/9/9ii/2/dOsn/25xVwCgC0qbW8uzhUJ+XeWNrAx4B9tcGYrXIo12VW6lH/QDv7zHAxMAANB2z7/09zoTAAAAAAAAAAAAAAAAAAAAOLo6fhOy4y/fWWCwd10FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjThwEAAP//sxnTZg==")
unlink(&(0x7f0000000100)='./file1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r1=>0x0, 0x0})
close(r1)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newtaction={0x74, 0x30, 0xb, 0x70bd2a, 0x0, {}, [{0x60, 0x1, [@m_vlan={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x9, 0x4, 0x3, 0xfffffb93, 0x1}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x48004}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r4 = gettid()
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000000ac0)={0xc, {"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", 0x1000}}, 0x1006)
getsockopt(r2, 0x5, 0x0, &(0x7f0000000480)=""/206, &(0x7f0000000080)=0xce)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execveat(r6, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)={[&(0x7f00000001c0)='\'&%\x0e@,}\x00', &(0x7f0000000200)=':\x00', &(0x7f0000000300)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000380)='$\x00', &(0x7f0000000580)='-]\x00', &(0x7f00000007c0)='kmem_cache_free\x00\x9a%<X\x97\x8a\xdc\xe3[\x88\x00k\xa9Jp\xbb\nC0\xb7)\x06\xaa\x1e,\x9c\x00C\'\xe0|,\xab\xd7\xa6x)\xf5!HE\x88\xa9&C&gk\x0f\xd2\xb4\x94(\xdc\x86\x86\xaa\x1a\x80\xc97<\xf4I\xfc\xbe1\x01:1\xb0k\xa0\x95\xd1\x92M\x90\xaf\x96\x81R\x00\xa9', &(0x7f0000000600)='-\x00']}, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
madvise(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb)
tkill(r4, 0x12)
tkill(r4, 0x1)
tkill(0x0, 0x14)

12.047287162s ago: executing program 5 (id=1348):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@usrquota}, {@user_xattr}, {@stripe={'stripe', 0x3d, 0x4}}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r1}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r2, 0x0, 0x8000000000000}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
getpid()
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='afs_cb_call\x00'}, 0x70)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r4=>0x0})
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f0000000200)={0x1d, r4}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000500), 0x111, 0x8}}, 0x20)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/freeze_filesystems', 0x4ae82, 0x12c)
write$UHID_CREATE2(r6, &(0x7f0000000000)=ANY=[@ANYRESDEC=r6], 0x118)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070005020000002dcb77bd7000fedbbca606ccecac92105fa04bf2541dc786944642e59d23abb6cee555c23a97d8cbdaf8373c7d00de8f4cbcca"], 0x10}}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)

8.918657789s ago: executing program 5 (id=1396):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xffaf)

8.523746524s ago: executing program 5 (id=1403):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000580), 0xfe, 0x507, &(0x7f0000001780)="$eJzs3c9vI1cdAPDvOL+cNG3S0gMgoEspLGi1TuJto6oHWE4IoUqIHkHahsQbRbHjKHZKE/aQ/g9IVOIER/4Azj1x54LgxqUckChEoM1KHIxmPMk6WXtjSGJH8ecjjea9N46/78Wa9+Kvd/0CGFm3IuIgIiYj4v2ImMvbk/yI++0jfdzjw0erR4ePVpNotd77R5JdT9ui42dSL+TPWYyIH30v4qfJs3Ebe/ubK9VqZaddnV5o1rYXGnv7dzdqK+uV9cpWuby8tLz49r23ypc21tdqk3npy5/+4eBbP0+7NZu3dI7jMrWHPnESJzUeET+4imBDMJaPZ3LYHeH/UoiIVyLi9ez+n4ux7NUEAG6yVmsuWnOddQDgpitkObCkUMpzAbNRKJRK7RzeqzFTqNYbzTsP67tba+1c2XxMFB5uVCuLea5wPiaStL6UlZ/Wy2fq9yLi5Yj4xdR0Vi+t1qtrw/zDBwBG2Atn1v9/T7XXfwDghisOuwMAwMBZ/wFg9Fj/AWD0WP8BYPQ8Xf/vD7UfAMDgeP8PAKPH+g8AI+WH776bHq2j/Puv1z7Y292sf3B3rdLYLNV2V0ur9Z3t0nq9vp59Z0/tvOer1uvbS2/G7ofz395uNBcae/sPavXdreaD7Hu9H1QmBjIqAOB5Xn7tkz8nEXHwznR2RMdeDtZquNkKw+4AMDRjw+4AMDR2+4LRdYH3+NIDcEN02aL3lGJETJ9tbLVaravrEnDFbn9B/h9GVUf+378ChhEj/w+jS/4fRlerlfS753/0+0AA4HqT4wd6fP7/Sn7+bf7hwE/Wzj7i46vsFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFxvx/v/lvK9wGejUCiVIl6MiPmYSB5uVCuLEfFSRPxpamIqrS8Nuc8AwEUV/pbk+3/dnntj9uzVyeTJVHaOiJ/96r1ffrjSbO78MW3/50l78+O8vTyM/gMA5zlep7Nzxxv5x4ePVo+PQfbn79+NiGI7/tHhZBydxB+P8excjImImPlXktfbko7cxUUcfBQRn+82/iRmsxxIe+fTs/HT2C8ONH7hVPxCdq19Tn8Xn7uEvsCo+SSdf+53u/8KcSs7d7//i9kMdXH5/Jc+1epRNgc+jX88/431mP9u9Rvjzd9/v12afvbaRxFfHI84jn3UMf8cx096xH+jz/h/+dJXXu91rfXriNvRPX5nrIVmbXuhsbd/d6O2sl5Zr2yVy8tLy4tv33urvJDlqBd6rwafvXPnpazQ5SHp+Gd6xC+eM/6v9zn+3/zn/R9/tce1NP43v9YtfiFefU78dE38Rp/xV2Z+V+x1LY2/1mP8573+d/qM/+lf95/ZNhwAGJ7G3v7mSrVa2Rlk4fgPiYEGVeivMJW/ONelP6cK17ZjmyvV7wwq1mT8Tz/Vap1u+Wy8r99hrxnjMrJuwHVwctNHxJNhdwYAAAAAAAAAAAAAAOjqSv+jUtIuDHuMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3Fz/DQAA//+sasqI")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000060a090400000000000000000200000034000480300001800e000100696d6d6564696174650000001c000280100002800c00028008000180fffffffb08000140000000000900010073797a30000000000900020073797a32000000001400000011000200000000000621beff5f1558cb"], 0x88}}, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r4}, 0x20)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f00000083c0)={{0x1}})
r6 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
unshare(0x60020a00)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
read(r5, &(0x7f00000003c0)=""/4096, 0x1000)

7.660512887s ago: executing program 5 (id=1417):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f00000003c0)='./file2\x00', 0x6000, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007", @ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x100c04, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@sysvgroups}, {@block_validity}, {@nodiscard}, {@quota}]}, 0x3, 0x43d, &(0x7f00000004c0)="$eJzs289rHFUcAPDv7Cap6Q8TS/3RtGq0isEfSZPW2oMXRcGDgqCHeoxJWmK3jTQRbAkaRepRCt7Fo+Bf4Ekvop4Er3qXQpFcWj2tzO5MsrvdTbPpJhvdzwemfW/mLe/73Zm3+2ZeNoCeNZr+k0Tsj4jfI2KoWq1vMFr979bq8szfq8szSZTLb/2VVNrdXF2eyZvmr9uXV/oiCp8lcaRJv4uXr5yfLpXmLmX1iaUL708sXr7y3PyF6XNz5+YuTp0+ffLE5Aunpp7vSJ5pXjdHPlo4evi1d669MXPm2rs/f5vk+Tfk0SGjGx18slzucHfddaCmnPR1MRDaUqwO0+ivjP+hKMb6yRuKVz/tanDAtiqXy+UHWh9eKQP/Y0l0OwKgO/Iv+vT+N992aOqxK9x4qXoDlOZ9K9uqR/qikLXpb7i/7aTRiDiz8s9X6Rbb8xwCAKDO9+n859lm879C1D4XujdbQxmOiPsi4mBEnIqIQxFxf0Sl7YMR8VCb/Tcuktw+/ylc31Jim5TO/17M1rbq53/57C+Gi1ntQCX//uTsfGnuePaejEX/nrQ+uUEfP7zy2xetjtXO/9It7T+fC2ZxXO/bU/+a2eml6bvJudaNTyJG+prln6ytBCQRcTgiRrbYx/zT3xxtdezO+W+gA+tM5a8jnqqe/5VoyD+XbLw+OXFPlOaOT+RXxe1++fXqm636v6v8OyA9/3ubXv9r+Q8nteu1i+33cfWPz1ve02z1+h9I3q7b9+H00tKlyYiB5PVq0LX7pxraTa23T/MfO9Z8/B+M9XfiSESkF/HDEfFIRDyaxf5YRDweEcc2yP+nl594b+v5b680/9m2zv96YSAa9zQvFM//+F1dp8Pt5J+e/5OV0li2ZzOff5uJa2tXMwAAAPz3FCJifySF8bVyoTA+Xv0b/kOxt1BaWFx65uzCBxdnq78RGI7+Qv6ka6jmeehkdluf16ca6iey58ZfFgcr9fGZhdJst5OHHrevxfhP/VnsdnTAtvN7Lehdxj/0LuMfepfxD72ryfgf7EYcwM5r9v3/cRfiAHZew/i37Ac9xP0/9C7jH3qX8Q89aXEw7vwj+U4UYvu7UNjJQhR2RRjtFSJiJb3sd0s8u7jQ7U8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAzvg3AAD//8ii43M=")
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r4 = syz_io_uring_setup(0x499, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r4, 0x22d6, 0x4b34, 0x4, 0x0, 0xffa1)
close_range(r0, r1, 0x0)

6.83104171s ago: executing program 5 (id=1425):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='ns\x00')
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
sendmmsg$inet(r1, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20008000)
getdents64(r0, &(0x7f0000000240)=""/52, 0x34)
getdents64(r0, 0x0, 0xffffffff00000018)

6.79092359s ago: executing program 34 (id=1425):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='ns\x00')
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
sendmmsg$inet(r1, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20008000)
getdents64(r0, &(0x7f0000000240)=""/52, 0x34)
getdents64(r0, 0x0, 0xffffffff00000018)

1.830082693s ago: executing program 6 (id=1481):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4de, &(0x7f0000001080)="$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")
unlink(&(0x7f0000000100)='./file1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r3 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newtaction={0x6c, 0x30, 0xb, 0x70bd2a, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x9, 0x4, 0x3, 0xfffffb93, 0x1}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x48004}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
r6 = gettid()
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000000ac0)={0xc, {"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", 0x1000}}, 0x1006)
getsockopt(r3, 0x5, 0x0, &(0x7f0000000480)=""/206, &(0x7f0000000080)=0xce)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execveat(r8, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)={[&(0x7f00000001c0)='\'&%\x0e@,}\x00', &(0x7f0000000200)=':\x00', &(0x7f0000000300)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000380)='$\x00', &(0x7f0000000580)='-]\x00', &(0x7f00000007c0)='kmem_cache_free\x00\x9a%<X\x97\x8a\xdc\xe3[\x88\x00k\xa9Jp\xbb\nC0\xb7)\x06\xaa\x1e,\x9c\x00C\'\xe0|,\xab\xd7\xa6x)\xf5!HE\x88\xa9&C&gk\x0f\xd2\xb4\x94(\xdc\x86\x86\xaa\x1a\x80\xc97<\xf4I\xfc\xbe1\x01:1\xb0k\xa0\x95\xd1\x92M\x90\xaf\x96\x81R\x00\xa9', &(0x7f0000000600)='-\x00']}, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
tkill(r5, 0x12)
tkill(r5, 0x1)
tkill(r6, 0x14)

1.686201235s ago: executing program 1 (id=1483):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_VLAN(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r2, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x20000}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8004}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0xd, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa, 0x0, 0x6}}}}]}, 0x44}}, 0x44080)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001180)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r5, {}, {0x0, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0xfffffc00}}]}, 0x38}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
r6 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'pim6reg0\x00'})
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x11c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000240)={'veth0_virt_wifi\x00', <r11=>0x0})
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), r9)
sendmsg$ETHTOOL_MSG_STRSET_GET(r9, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000500)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12, @ANYBLOB="01002bbd7000ffdbdf25010000000c00018008000100", @ANYRES32=r11], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x200c5)
sendmsg$nl_route(r6, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r8, &(0x7f0000000400)={0x11, 0x0, <r13=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14)
r14 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r13, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r13], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x4c094)
r15 = socket(0x10, 0x3, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r16=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r15, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r16, {0x0, 0x9}, {0xffff, 0xffff}, {0x5, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x79}}, 0x800)
perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0xb, 0x8, 0x0, 0x7, 0x0, 0xb, 0x20, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000540)}, 0x200, 0x5, 0x8, 0x0, 0x81, 0x2, 0x7, 0x0, 0x5, 0x0, 0x40}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001540)=@newtfilter={0x68, 0x28, 0xd27, 0x1004001, 0x25dfdbfd, {0x0, 0x0, 0x0, r16, {0xffff, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34, 0x1, [@m_sample={0x30, 0x215, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x8810}, 0x404c0c0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r16, {}, {0x0, 0x1}}}, 0x24}}, 0x10)

1.508335218s ago: executing program 6 (id=1485):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000240)={0x19, 0x3d00, 0x1575})

1.438510939s ago: executing program 1 (id=1486):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
io_uring_enter(0xffffffffffffffff, 0x627, 0x4c1, 0x43, 0x0, 0x0)
timerfd_create(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2$9p(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000)
bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[], 0x48)
set_mempolicy(0x8006, 0x0, 0x5)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000001c80)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r9}, 0x18)
dup2(0xffffffffffffffff, r8)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r11}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r6, @ANYBLOB=',version=9p2000,\x00'])

1.436315889s ago: executing program 7 (id=1428):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x7}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})

1.423098569s ago: executing program 6 (id=1487):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffe000/0x1000)=nil)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$packet(0x11, 0x3, 0x300)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
socket$unix(0x1, 0x1, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_ethernet(0x18c, &(0x7f0000000680)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @udp={{0x29, 0x4, 0x2, 0x3, 0x17e, 0x64, 0x0, 0x2, 0x11, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x3d}, {[@ra={0x94, 0x4}, @ra={0x94, 0x4}, @timestamp={0x44, 0x10, 0x29, 0x0, 0x5, [0x4, 0x4, 0x7]}, @cipso={0x86, 0x1a, 0x3, [{0x7, 0xb, "8ea9a3865f73dcc8d9"}, {0x5, 0x7, "443f77a16e"}, {0x2, 0x2}]}, @rr={0x7, 0xf, 0xb9, [@multicast2, @local, @local]}, @rr={0x7, 0x23, 0x77, [@dev={0xac, 0x14, 0x14, 0x43}, @multicast2, @local, @empty, @multicast2, @rand_addr=0x64010102, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_addr={0x44, 0xc, 0x3e, 0x1, 0x4, [{@remote, 0x8}]}, @ssrr={0x89, 0x1f, 0xd8, [@multicast1, @broadcast, @private=0xa010101, @private=0xa010102, @multicast2, @broadcast, @broadcast]}, @end]}}, {0x4e20, 0x4e24, 0xda, 0x0, @gue={{0x1, 0x1, 0x0, 0xf7, 0x0, @void}, "3a51e59f8b3417dc0a37ad6b3741c9de27ce2f2e650eba5f71b9846fd71b83e978db161a6f2ff99b913fe9455b76ab0f5afb47e2137ebc92ec507ed800166363f08ba80c9ee6a6ebb92750ae086cee370674f1e7d46308346562e0f32de1f87049c1fc7b30a2ed18512a18a7d5b2c819c79179327c7626ba7e8f42afc86afb993b33693052e15f6014f53da196671e561e4161aec10847d0d278655c445302023853c7299e5cd6bfac4562c20452c76e8a5c8646be49f78b37186e0f763b52fe122c649ee120adc5d622035f9632"}}}}}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_alloc\x00', r4}, 0x10)
ioctl$AUTOFS_IOC_FAIL(r3, 0x4c80, 0xffffffffffffffb6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0xc)
ioctl$TCFLSH(0xffffffffffffffff, 0x5435, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x210, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xe0, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x1d, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x270)
syz_clone(0x44208400, 0x0, 0x0, 0x0, 0x0, 0x0)

1.415933469s ago: executing program 7 (id=1488):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
add_key$fscrypt_provisioning(0x0, &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x9, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000400)={0xa})
epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r6, 0x0, 0xa}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000440)='hrtimer_start\x00', r0, 0x0, 0xbf}, 0xfffffffffffffe5f)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x0, &(0x7f0000000440)})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0xfffd, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = shmat(0x0, &(0x7f0000ff6000/0x4000)=nil, 0x400c)
shmdt(r7)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1)

1.31756605s ago: executing program 1 (id=1491):
r0 = socket$caif_seqpacket(0x25, 0x5, 0x2)
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
r1 = socket(0x18, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f0000000080), 0x4)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x2, @empty, 'geneve1\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x5700, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)

1.291213151s ago: executing program 1 (id=1493):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
r2 = syz_usbip_server_init(0x1)
write$usbip_server(r2, &(0x7f0000000800)=@ret_submit={{0x3, 0x10, 0x0, 0x1, 0x401}, 0xd, 0x0, 0x5, 0x0, 0xd0}, 0x30)
write$UHID_CREATE(r0, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000940)=""/3, 0x3, 0x3, 0x4, 0x0, 0x0, 0xc08}}, 0x120)
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}, {0x0, 0x4}], 0x2)
write$UHID_DESTROY(r0, &(0x7f0000000200), 0x4)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f0000000240)={0x7a6a, {{0x2, 0x4e23, @multicast2}}}, 0x88)

956.218796ms ago: executing program 0 (id=1498):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x7}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})

936.534546ms ago: executing program 0 (id=1500):
syz_open_dev$usbfs(&(0x7f0000000000), 0x5, 0x8400) (async)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) (async)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000300), 0x80, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=', @ANYBLOB='}', @ANYBLOB=',aname=a']) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x18) (async)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000002500)='\f7', 0x2}, {&(0x7f0000000000)='0', 0x1}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, 0x0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
process_mrelease(0xffffffffffffffff, 0x1000000)
memfd_create(&(0x7f0000000a80)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r7, 0x0, r8, 0x0, 0x1, 0x0) (async)
vmsplice(r8, &(0x7f0000000240)=[{&(0x7f0000000180)="04", 0x1}, {&(0x7f0000000780)="e3", 0x1}, {&(0x7f0000000340)="4080", 0x2}, {&(0x7f0000000000)="b100", 0x2}], 0x4, 0x6) (async)
ioctl$sock_inet_udp_SIOCINQ(r8, 0x541b, 0x0) (async)
write(r6, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18) (async)
socket$nl_route(0x10, 0x3, 0x0)
shmget$private(0x0, 0x400000, 0x8, &(0x7f000000e000/0x400000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

818.298258ms ago: executing program 0 (id=1503):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000300)={[{@grpjquota}, {@abort}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x4f4, &(0x7f0000000740)="$eJzs3E9sVNUeAODfnba0/Hv08Xi8B6IW0dhIbKGgsDAxGE1caGLERF02bSFIoYaWRAjqkBhcGhL3xqVbF27VDTGsTNzi0sSQEMMGMCGOuTP3dqbDzJRppx1Lvy+Z9px7595zzj333Dn3nLkTwLo1lP5JKuEbEbEtIgr1bxiq/Lt7+9LEvduXJqJYKh3/IylvdieNZ7LdxOYsMlyIKHyWVFfUmL1w8fT49PTUuSw+Onfmw9HZCxefPzWQLTl69PChg0deHHuh/UI1SC8t153dn8zs2fX6+1ffnOjNl+ep1ZajU4ZiqFFWyp7pdGJdtrUmnPR2MSO0JT3/0+rqK7f/bdETrSqvuIo5A1ZaqVQq9TdfXSzVu/zAEmDNioFu5wDojvyDPr3/zV+NOgIbVqb70XW3jlVugNJy381eEU+WF+bjIH1197edNBQR7xX//Cp9RbNxiJ4VShwAWJd+OJb3BOv6f4OVmZH756+9nP7/VzaHMhgR/46I7RHxn4jYERH/jYidEfG/iPh/3f7TrkupRfpDdfH59OcnoQo3O1TUhtL+30vZ3Fa1/7cgA4M9WWxrRN5hnjqQHZPh6Os/cWp66mCLNH589Zcvmq2r7f+lrzT9vC+Y5eNmb90A3eT43PiSC1zn1uWI3b315U96I5L5mYAkInZFxO429jtYEz713Dd75iN9C9+3ePnLSg3n0Towz1T6OuLZSO7fvX2pGAvqv5pismB+8sz4yamTU2fH5ucnRwdieurAaHoWHGiYxvWfr7zVLP1Fy//db/WbvHbk++MduylI639Tzfkf+fxttfyDSUQyP187234aV379vOnc6lLP/w3JO+Vwfl/60fjc3LmDERuSNx5cPlbdNo+n/6NYKf/wvsbtf3u2TXokHouI9CR+PCKeiModYpr3vRHxVETsa1H+n155+oO2y19oscMOSss/WXf9q9T8gvqvztc3CyTZ3GCDVT2n99641+Ti8XD1f7gcGs6WNL7+JQsuEc1ymn/apUv+WvbRAwAAgLWhEBFbasaStkShMDJSGQPaEZsK0zOzc/tPzJw/O5muixiMvkI+0lUZD+5L8vHPwZr4WF38UDZu/GXPxnJ8ZGJmerKrJQc2l9t8UhiJeLenpv2nfve9E3j0eV4L1q9W7T/txO+8uoqZAVbVw3/+X/t4RTMCrLqa9t/sCf/iEr73BawB7v+BqsV/6Mc1A9a+krYM61pb7X+/HwGER0lvvD0fXqXnDoF/iKX2/z/tcD6AVbXoc/3LCpT6G68aiAffHAOtd9gTS8vGxgZpdSWQ9qy6kvrGpWyV/5pC0/dEob0d9kdn6vTEMo9G8dzsyZ0dP/lL2XflO12D3zZvp9f7W9TO8gNduRwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03N8BAAD//6Yc4S8=")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000380)=ANY=[@ANYBLOB="180100000000defb03f7d2a3e223ec96f8d2a5a1403920000000e6ffffffffffe3f20000", @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000006c0))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f00000009c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0))
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
memfd_create(&(0x7f0000000bc0)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o84I\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HO\x00\x00\x00\x00R\xfc\xcb%u3\xec\xde%\x9d\xe4\x1d\rD\x82S\x17?\xd6\xb1\x9aF\xe2\xba[\xc7QR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11\x17\xd8\xda@4\x9f\xc5*T\x1e^\xf7o\xff\xff\xff\xffwI\x02\xf3\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\xa5\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\xae\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\xf1\x1b\xe6\xb9\xe7\xff\xc5H\x04\x93\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xcf\x7f\b\x94\xfe2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[z\xb6>\xd3\xe7Y*\xdb\xa7h\nt\xddP\n\xc5\xeb\xb1ux\x94@\x00\x00g\x02D9\x83\xa7\x97\xf4\xb25wL\x97\xfb\xb9\xccj\xb3\x96\xc1@\xee`{\x87\xa8]\x96\x9cjF^+\xcc1l\xcbmA,5\xc4J\xcab\xa6\x91\xa0\xeaU\x92\x01\x1f,\xfa\x10\"+\x01\x00\x91\xe9\x1cz\xd1f\x901\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00o\"\x85Np\xba\x0e<\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb8V\xe4\xa1C\x90\x17\xcc{\x9d\xf1\xbd\xb0\xca\x03\x96\x85h}\x8f\x1c)X\xc83rA\x90r\xb6\xba!;\x95\xaf\xe0\xcb\xec\xcd$\x02f\x8c4\x1aH\x8fC\xbfr\xd39\x92\x1fShu\x9e\b\xd4m\xa8\x16\xa6\xd5\xae\xcb\x03oFQ\"\xf7F\xb7\vp\xb6\xe5\x92\xe2O}.\x95A\x9bH\x8d\xa1\x80\x1b\x14u\xfdK\xce\xaf\x94i\xf1s\xf7\xb8Jq\xcb3=M\x84\x7f\x181/\x9bQ|4\xaf\xcf\r\xcfz Z\x19\xad_\x13\x99\xf7\xfdOD\xd3\x9d\x9d\xb8d5g\xf1\x84\xbd\xe5\xa2\xb3\xda\x82\x10n1\xed\xba\xe3\x96\x85\"\xb6\xa6n\xe7\xfd\xd4\a\x97\x85\x810/\xc4o\x11\xc8\x1b\xc0\f\xeec\xa4\x7f|P\x00\x00\x00\x000p\xaf\xfdk\xac\xcc\xac`\xc9\a<\xadIt\x9b\xeb\x8a\xfe\x9b\aO\xa5?h\xe1B\xa8C\x8e;/\xa8\x94\x1bs\xf0\xa9>\x9e\xff\xc9\xd2\x00h\xcb\xfb\xb6Y\xbfp\xd8\x90\x96\xec\x83N\x8bNnx\xb6\x16Y\xf8sU\xae\xa0\b\x8cLq\n\x1f\x99t\xb6\xffozu\xa0B(\xe9?\xcdA\xba\xa8\x13Qc\xda\x16?\xe8z\x8f\x862!\xbf\xa4\xb8\x9bC\xe9Od\xe8\xd32m\x06RX\x7f\xf7\xc2\n\x94\xe5P:l\xd9\xd5\xbd\rH6-\x8a\x12m\xff\xe9\xa0\r\tk\xda\xa4q(\xae\\\xb6\x14I\xf7\xe0z\xf1<cN\xb6p\xd5\rb\xfa\xdf\v\x00X9\xcd\xb2\xfaF\xb9\xaf\x88X\xbc', 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="3c34000000000000040100c910fc02000000000000000000000000000107", @ANYRES32=r5], 0x1b0)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

729.752279ms ago: executing program 2 (id=1506):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4de, &(0x7f0000001080)="$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")
unlink(&(0x7f0000000100)='./file1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r3 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newtaction={0x6c, 0x30, 0xb, 0x70bd2a, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x9, 0x4, 0x3, 0xfffffb93, 0x1}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x48004}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
r6 = gettid()
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000000ac0)={0xc, {"a2e3ad214fc752f91b25470987f70e06d038e7ff7fc6e5539b3264078b089b3b08346c060890e0878f0e1ac6e70a9b3368959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31350d095d0636cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62239c6f30e065cd5b91cd0a03000000000018001b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd7878a37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b412435139000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a4cd13c257ac06c7d8ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190ba4d7909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810ba2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e8134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b000000807ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d24145a2e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a0400000000000000f463661c953fcad6f37725c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2ca8378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa04006651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed004000000b53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f090056b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b5c7fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d050000002a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f463934c54edc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a3b89f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d3560aba573bd16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22005b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db239dfe785b54c34a0a5db4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbf4c807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9edbaaadaea56765404e0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901003a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d00000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d50b00", 0x1000}}, 0x1006)
getsockopt(r3, 0x5, 0x0, &(0x7f0000000480)=""/206, &(0x7f0000000080)=0xce)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execveat(r8, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)={[&(0x7f00000001c0)='\'&%\x0e@,}\x00', &(0x7f0000000200)=':\x00', &(0x7f0000000300)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000380)='$\x00', &(0x7f0000000580)='-]\x00', &(0x7f00000007c0)='kmem_cache_free\x00\x9a%<X\x97\x8a\xdc\xe3[\x88\x00k\xa9Jp\xbb\nC0\xb7)\x06\xaa\x1e,\x9c\x00C\'\xe0|,\xab\xd7\xa6x)\xf5!HE\x88\xa9&C&gk\x0f\xd2\xb4\x94(\xdc\x86\x86\xaa\x1a\x80\xc97<\xf4I\xfc\xbe1\x01:1\xb0k\xa0\x95\xd1\x92M\x90\xaf\x96\x81R\x00\xa9', &(0x7f0000000600)='-\x00']}, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
tkill(r5, 0x12)
tkill(r5, 0x1)
tkill(r6, 0x14)

691.45257ms ago: executing program 0 (id=1507):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f00000002c0)={@multicast1, @multicast1, <r1=>0x0}, &(0x7f0000000340)=0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)=@getchain={0x74, 0x66, 0x100, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0x7, 0xb}, {0xffff, 0x10}, {0xa, 0x3}}, [{0x8, 0xb, 0xc}, {0x8, 0xb, 0x7}, {0x8, 0xb, 0xa}, {0x8, 0xb, 0x1}, {0x8, 0xb, 0x10}, {0x8, 0xb, 0x1a04}, {0x8, 0xb, 0x401}, {0x8, 0xb, 0x6}, {0x8}, {0x8, 0xb, 0xffffffff}]}, 0x74}, 0x1, 0x0, 0x0, 0x5000}, 0x4811)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRES16=r2], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
r5 = eventfd2(0xce77, 0x800)
r6 = socket$tipc(0x1e, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x2)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r9=>0x0})
r10 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4affeeaf541d002007000000", @ANYRES32=r9, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r10, @ANYRES32=r10], 0x44}}, 0x0)
bind$tipc(r6, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x0, 0xfffffffd}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

649.84033ms ago: executing program 2 (id=1508):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0bfc0000000000000000020000000900010073797a30000000000900020073797a320000000014000000110001"], 0x54}, 0x1, 0x0, 0x0, 0x40820}, 0x0)
writev(r0, &(0x7f0000000040), 0x2)
close(r0)

646.99442ms ago: executing program 0 (id=1509):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000380)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@max_batch_time={'max_batch_time', 0x3d, 0x131}}, {@mblk_io_submit}, {@quota}]}, 0x3, 0x437, &(0x7f0000000d80)="$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")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x4)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000017000000000000000000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000c80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mq_unlink(&(0x7f0000000000)='eth0\x00') (fail_nth: 7)

610.819251ms ago: executing program 2 (id=1510):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r2, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r2, &(0x7f0000000140)={&(0x7f00000000c0)={0xa, 0x4e26, 0x80000, @loopback, 0xffffbffd}, 0x1c, 0x0, 0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="24000000000000002900000032000000ff02"], 0x28}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f0000000180), 0x1)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f0000000140), 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80000)
fcntl$setown(r6, 0x8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r5}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

558.829212ms ago: executing program 1 (id=1511):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
fgetxattr(r1, &(0x7f00000003c0)=@known='security.selinux\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000cc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000380)={0x1d, r3, 0xfffffffffffffffd, {0x0, 0xf0, 0x4}, 0x2}, 0x18)
bind$can_j1939(r2, &(0x7f0000000240)={0x1d, r3, 0x1, {0x2, 0xf0, 0x1}, 0x2}, 0x18)

557.820812ms ago: executing program 2 (id=1512):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000480)='mm_page_alloc\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x6c, 0x4, 0x0, 0x1, [{0x68, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x58, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x34, 0x5, 0x0, 0x1, @payload={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x56}, @NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0xb9}, @NFTA_PAYLOAD_DREG={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_PAYLOAD_BASE={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xc0}}, 0x0)

557.319312ms ago: executing program 1 (id=1513):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x0, 0x0})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
gettid()
ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x6)
timer_create(0x0, &(0x7f0000000380)={0x0, 0x28, 0x5, @tid=0xffffffffffffffff}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0x0)
add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)=ANY=[@ANYBLOB="010000e11b92fcff29343d"], 0xb, r1)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000240)={r0}, 0x4)
connect$unix(r3, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
socket$nl_xfrm(0x10, 0x3, 0x6)
keyctl$clear(0x7, r1)
syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x1a08050, &(0x7f0000000880)=ANY=[], 0x2, 0x5be, &(0x7f0000002340)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r4, &(0x7f0000000f80)=""/4096, 0x1000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='loginuid\x00')
preadv(r5, &(0x7f0000000d80)=[{&(0x7f0000000c40)=""/132, 0x84}, {0x0}], 0x2, 0x2, 0x1d)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x26203, 0x0)
inotify_init1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)

454.554653ms ago: executing program 6 (id=1514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000000)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0x5, 0x2c6, &(0x7f0000000380)="$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")
r3 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x51)
epoll_create1(0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x2008c02, &(0x7f0000000040), 0x1, 0x648, &(0x7f0000000100)="$eJzs3c9vFNcdAPDvrNe/aW1Q1ZYeiqWqAqnFxgYqVFUq3BGiP27txcUGUQxG2FVjhISRyCVSbjkg5ZRDyH+RIHHlH8ghUpRTFAlFhEOIUNhoZnfs8XrXv3fXrD8fabLvzXjnvXH4+r15+95sAAfWWESMR8TRiLidRIwUjpWz/5ayH0p/7uWLe1fSLYlK5R/fJnHvfrJcPFdSex2uvfnHkequIz3ry11Yuntjem5u9k4tP7F48/bEwtLdk9dvTl+bvTZ7a+pPU+fOnjl7bvLUrq7vcCF98eF//z/y3qV/ffzh62Tyky8uJXE+vbpMel317+3fVcnp72wsKlWvivvT3+u5XZ57v/h+JP93siqp38G+lsZAb0T8Kkaip/B/cyTe/VtHKwa0VCWJvI0CDpxkR/E/sPcVAdos7wfk9/aN7oMbaHBHD7xtnl+oDkhVY783IvL4L2djfhED2djA0MtkzThPEhG7G5mrSst49vTSw3SLJuNwQGssP8hHuevb/ySLzdEYyHJDL0tr4r9U2NL9f99OoX2rybG6Q+If2mf5QUT8utb+98V24r8chfj/zw7Lz+L/0IuVmxHxDwAAAAAAADv35EJE/LHR/L9SjGXLggayj+ur838+7c3fNxwR5/eg/M0//y/lS/SSPSgOKHh+IeIvDef/5mEXoz213M+y+QC9ydXrc7OnIuLnEXEievvT/GTdeUuF9Mn3jzxqVn5x/l+6peU/e1qcXlz6ply3EHdmenHaXwPYvecPIn6Tzf89Vtuzdv5P2v4nDeb/pvF9e4tlHPn948vFfKVSuZ+nG8d/dS4w0FqVjyKON2z/VxvYZOPnc0xk/YGJvFew3m9fFxYa1RH/0Dlp+z/UPP5Xet4rz+tZ2N75+yLi9FK5WfhvIf4b9//7kn/2RGEpwTvTi4t3JiP6kovr909tr87QrfJ4yOMljf8Tv2s6/re2/1+Iw8GIWN5imb98M/xVs2Paf+icNP5nNu7/jya19j+y9n+lI7DlxNTj0c+yMzV4LtzlLbX/Z7I2/URtTzb+B9SU1u3ZaoB2pLoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8JYrRcShSErjK+lSaXw8YjgifhFDpbn5hcU/XJ3/362Z9Fj2/f+l/Jt+R6r5JP/+/9FCfqoufzoiDkfEBz2DWX78yvzcTKcvHgAAAAAAAAAAAAAAAAAAAPaJ4WzNf6W/fv1/6uueTtcOaLly7XWTeB9oR12A9irv+J2V/j2tCNB2O49/4G239fjvbWk9gPZrHv+vXlcyeT5Jike/a3G9gNbT/4eDa/P4H2y008eD0AUaxP9YJ+oBtNuGY3qPVlI+/Yeu5P4fAAAAAAC6yuFjTz5PImL5z4PZluqrHTPZH7pbqe4VODjM4YWDqzzf6RoAneIeH1hd1/9DpdHx5rP/k9ZUCAAAAAAAAAAAAABY5/hR6//hoNp43b+5/dDNNlj/3yj4PS4Aukjzr/7Q9kO3c48PbNbaW/8PAAAAAAAAAAAAAPvAwN0b03Nzs3cWlnaZiIgvK0nEbs/TJPHvBof+2qKyWppYnt4X1djTxJvWnLk3IvbHBbY7kT+Co4PV6PDfJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYMVPAQAA//+2/DDv")
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0x100000000}, 0x18)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r2, 0x5000940e, &(0x7f0000001600)={{r5}, "9148bdb22970263caa3b82f6c5be832238373a0614c2bd4b76884dccf348708593ef65e13aeec6125a83faa1fa334a2c20c50fcab8a9d2bc407c7c457b2062a70616fb1424b6ef135ad6e941c0fe372d291fad2a0f4f01d4533fae73097be83d071e5183eb05760bb385b6a0f9bcb273d783eadeac4447bedb6f139ab11a22c080a780fa1aaa52ba9d383a3a85e2af868887086a0e93aea2b269da72c4e76f9c0e57f09846bf9ef420c35ceb60e70859efac3d4e8169fe1a9e34c489f7a148a3c22d1df0610160e413d67e4d45f968a1208e03dcd57c09857013e74b4c4b5759cb5044a0538169d30ed45f24dc73202a76220da4271d8db8faa8b1a98d0c54d19e978e21c8a5048e60c608db06ddc6199b57a7ae1fb286a6e69f786bc4f7f1c49d1e6763c2af34b98b6c25a0e3519fe258ab6ab129736c38f7f0e4a919c80c7610321fdb76636b6732c936095b442f946bc86c89c18439b74e8853f4cd0a16389b10c2276aa2280e31d1a90c41718ba024371e8450d3b9737a7ba687ac04d011313e0caf15963e463ef5cbe824f71a24b18e1ef64f1c99c4114244550bd4332d3042eb1c6ad2229ef14694e23697dd4edd289c0590a296b17da74511cfee5947e0537a8f178d95f64dbd00236086031f8cbecaeca6e8d9e40c722183863e2c7dc8e1919b02eb2705c851e81a393ed9e19030522ca158ffe899ed34985a996f41e4e11f57295d3919e6adca03614a7fbeecd5fd7754f64807a32152fbe63e1aba823bd7b424f8bd0f7f855cedd24dbed775aeed8add37b9e11cfda4c811256cb03c10ad1df7a14fe3cf4d678ef5d6ffe612193c61513c7b95f879893041c0a8c1dd287b95f9e8c1e4f2d07f18b2512c4e70d616d7ea27ed9f977f9d9c55b1f71f908918587217e514f7741da0bbf630f0d64109c459e7537ec3ba3b4609869e203baca243ad3f30f39bfa84045342015c4cdd6cfa6b6ba676de9fba9e5d1ed4e56d2eab870b07ae4a3734473fcd826131cbcb3227d35f4b70656057b13d834783c60cb9e496f8a3771c46aca66536c5b504d04b9f2fb08ed96ea2c3ad02a9dbe83981c998eb3f4d1facf6d8957f62f35eee212fa1c02778d74eaa36c1a5aaed41eb0ac55e79b4da5cde216f97f44fdf3a498618ac302e7d2d2267d1a93929a68927b94e410b460bc8b57b22803c324fe3d34ab4d43a855a4a8b81f6f59b49a79d7ea03b040755cbdc5b0155900e07da431884d79b48808ea8836b3b4310a416ca6cd839d9861ee1790cbd2081edf59450cafb3a42cbdf50dd04dc1e3669c76d4023f51c7f27c54f8548f9c4978b381b09e9a73664c8e6f67e7ceeef510e697b9d6c0e05d79c947ad84787acfb0fe9bff91c8bb3fc5ac47b28c6ddbcf4439e939270d77a47be12a58a6530497ca958a7f911e503080130bdb4ba609bb77a9863f6f7efecb571524f7f1f0385fa44e0f7b810d5875a3b82f1cbc6f107a883d9a9d3b168b1472e561ec5954ecd9748a8ca7a00b5f66c475299e7ce00a4f6d621cda71cdb221a985833457f0b820be8130a37b979e5f09a0b2fa5b5ea137c1aab7333c4f3a1dd31739f41f7558458401b0794737b188ffa505d6efeadfd3bce28c25d7ef038fb93068f0d2edf580e91ce7b8b785a6217113f00fe76b08632a75aa5d060771832e31bc31f2a6c6b140d68ad7f5a5f576ebba35b47fed229065833f9f931653d2f4c89cbe94ffb06a2a33bb8eb7383e6efff89341158e52402ad07094f8235e3261340d9739de37e77ea748f69d4799bd42f11916944a17752034779e3a6b428b047312458af3e65eff97cf4b0d463ea582117c82d1fd9a1e31919c564e6bc5c9261e9cc29ff0e30d52ae50a759ee38f84a77ac68326ed000b1a902b9087b99a8d65eacab62d7ba7092c9cd7d278677a51cb2631a2e843b984b4c3fb43b98212d130e72bdb9b8d7f93df0d096155f4946205a94beeeb2d1729032e5df39e38da9144d4ad3c8f6d45f28aad630ce4979d69291033b275ff8992383857a345c79b6d5d1c08b5799831c264f63d791a144b53b83e654ea02161075db4062c1f96635fc4867fb7495462380d3277127e090086b0da314e548a3e1646b90525c3ad5d6c0ee10241ce786712f74157d34abd77af06631ddd4fbb1ae73e58b5b25ff1f9c3997e96d9620938038b1f50628adc18f0973eafa0479e907358751961bfd93b86ed9bf010b5ccd5b1ccd812e2ef99b8b757dd129306bb027373bd787b4c192a4e974d042cb46f6aaa63c2893d758ac19bbe229e8417c93222a19092cec2651deca41aa651a56d3dfe65ac7b0b1940dc4d5322b3f2cca236036c89e1bbca063cc3b9236fe03cb9c560d1cda85da895a521e4debb7b3c34631c1457557fe706b135c15d56b3bef70a71a5436f101d2ab836798dc1bda08d144b6ed72a026cbcf27dc7577f5da42579a122654879a737255eaf21f47e64468f3060d090f603b704938c40e85f2ead99d0e4c2457e7f25c46eac0edf79f154aa0e6c9d12b74b63ef5bcac9834749bacf2750ecd70f11b65fb466f5c695ac8c0f9036851982c8c70c657a6228fe9c4d4034af10618ce5a5c93a0f21ad48f6dace82b8d5289517d3c0ccf83050af778532ede702264cf4e7ee5a5f28b648ce2cc26df1dca52ff29e3b09cce37b4dc37cb82c9e96406632acbd3f036d48c52a465056172a1162c876d33e37204bb200fc7861e877fe7f9e5a8be33d7fa795ce3dc4e0f0fd5e2f1642220a0cae94e9f7e33e90b8eb29cde761587c5cf2ff3ff6777cbf35a08729932ffce91da4685c4b2021f458783980f6001ff82713456b8bbb4f7dcf7f58e7b281c86a325d5e84ebaa3919dec3dc748da0202ea4c0f35d5fb73fd1083c658a461b93218ab4c4591123170f04aa162ccc97b7a89930172468abc22ddc5618f6a57516233be6ac0fe90ec41dc3ae97978bc84dbc3fabb17c89da6487edb53624394211d81b12627cc05decc6c40fa973528e83c630150e9f6a916d71459cb4863dedab88d8f6021852062f4d8d413f300b0a8ed2487c84c3ec54f011a1b7f800406d32aadbf47dfe9200f81d2f2a0d00fc802d2a1b49b3526e0270eb1e60f24a99c9a8223041ac5c0538e727a27a3ad4b9d8dee02daa33abb32905e0204bb9eb32044dfc970244a5ad3475e16cb1aca0696f7d4f0bd09635ff81238d7d3933048632c3d81c96f38224501c214a77dd017c57a3ac48eed99bb94fc74d713343c47b3ed6e28cfb73b1556a29e514784c82b5ff520daf4b7165e7266e85e72fac82e9bf157f00198ebc4ae24ce49225d0bf2ecbd3c64530641056793f25ed54a49b4e905cd9fd280bdf2a22ab49493333b64afeb0bee7fb8b54d16b6b5963d6c7f5d742e94d8fb45d585a39b9bd5d1cacc63c9ca2117d9e8baea5619766d2a6c407f7186f0835707b20112c899f220243dea50aa742cc883c73d86182b0f357bf24d4bc4d265b6bf92bd7a1f058ee45ace7328723074ae68a7a89c7a5d90348aa2c72f4e2aac4a9f8f7286c55a47761b1eb97f0445169e0c86eecfe8a8c0c7d1374163daeb4705783973278e20b057bb9d25e12150158c32cc1c0e8300c1ea8a7f3449f62af5bddd8d07ff7df80399a002a26d3bb32d58c3a6a28d12a5e869ba1e0b2b1e86fb117a8bc85081ac7fd21afa28308b73c924684197899601c64eb0c8241f7360623a3b450bb90921de9cac8313b6fbf0199f0856b976af4b385afbd7ad2de203b72ac559d77e87b70037903938d8eea837ea7d8c6031d6696147513523b52bfdef829ae75bc6a7f5b156a3e50d045d4afb4e6ed05fb75b4775458277d21b7e3c3542e05fdd1c42746c09dca11b357827d3c6a0b63bd451235f4a2cbe9d5dd0ffcfe4cffdc81b914331b4278b63701c72b27486ce44b187ef75b7061f258c99a1f45e7de5a6ee41cb9b6197e10f54467c9fe24aaf29aa263016cf8c6539b07344542052031faa80fd387597d61cc2280905a8e898cf985d700cbf286332f74cf53341931e89e9db3960f323b0b4f2f01f440484da83ea9969701312536d547e1d3d386c9a86a94baaa9441ed89dae5a47ff5fc3e6e9f82de04512c8e447011514bfc0da1dbd5c14f082cd231727924ebcf86e3113cc3e66e62a0b0fced52a20dea9c0c6322a95001f9bbe435421e0f19050e5d3a05eefc906dafb9058de02d1fd2d7c0c61827a6bffdaa880f727bd275cabfdf83d6693c1d8b1d8893a1539ca512319ac2669d76027052a169088677ef8c9b8afba43e181fe7d9df4a70cea709fd9ba2687d11d5b8a0f99e4e06fc000c66a7825ab7bbf1950f11753e52cc426ac335f74f82938afa514718dff8dabf0f7f2bcc7fa9f99f82131c3186ef56aecd44395385b1f84f294f617cde1e2373c53933fd871de6292ac01323a75148fee4714cc4e07f2020b59c13bb038448ea483a97004789909ba1d8533b3531283d95ff5ccdccbe657f03179f5256b4172c4426d73777c9adff20d5a4ceb2e32362949de72fa09745deae6c834f5380f60adf9f312126dbbb096c66e5c866773954153ca8c3adf595811a793778eb40fca02eb9c25d2b5e821c5a44ad6703e1509b0de777147dfbbfe4ad2105211b20303e2024b90a60c583040c16e665f3a55b4655e8b54affb80fbd74355118301ab6a356bee489a763f3c64c0df9211c6fbddfc46095ac7f2b7be33856addb87f1aa4fc0a62d405b0cc7a6bfeff41302b4d6eabb0dcb2ba801620dd39d5595e7bdf01dd9f48ca638d1ca764684bfc26f37e8be920b211257f60202e2e1d991339d96b0c7e295f6b67a2283222194d90e9e8b7c308a3fb8324232a06e2832d09c0154a8cdf08ee559c6433d7fce0a25858629e77f7840081f156760953008dfd902132456d5e634d7de41dc75af9da88528c7d7deb226fac9907076b400a8d251415cded30a38e7314d7873866ba5c6bc5c524eeb2bc66339011fd1248617ded97c053c6b94cb895140e12d464dd1010e6ec23d29bc301d2c0a1585fec8fa1ba812b4744b6445ef4feeb49f2a23ee56a51047d5752e7eaaa1cf0ab2c4f6960893984133aa83401983e868996e56de407ddb8e5061f141efa7f883c91612915d1c892cc6765697c6cfe71a82f4ac7da005b565fa1b7596f4234aa6831740230dc96b37f4253a8e7bc913e89812f45718e400e00073fcdae5784a041cd5693a73d1e85e9bfb5c56be612be2b4b38a5ab8c0f2b021ec0643139752156c8de04be844a8f9ef21b375c826063e9120a953af312200f795a299c6b3f8fff678896aa02dcd130f1176b36d845a2b114f083bdd047a7ef2dd2fd805a597cc7b8b25bdfc7bd3889675c2623e2de6003fa6c854c9c2fcde99da52c36c21961e9099c99d25810479a1dd5add57f8e81481ece3906193e166cab0f427f2e5e570ce19629cda96a2b0758e378caa0823eb64f7715d99e9e4334f1a2297bd1442cc16ba7377fa60ad19ae741bfca1b52afd90e0fc78850277cf82ae2ca1977edfa58eb745c5adbabc58bcb9ffff3e571710f29010613f7d874bfc54bae70da745f720eec0cfde098f50a0a7a13d35f13ff1c40cca7c3d28a8d319a8c787ffbfc439b55109204176b1108a1578ad7be561c85bf04ca2ba1f2c668cfa42c5cdbe29082173fa3b874dc8d2c8d92b985041d57c21180c62793fb84a449a512ee5b0b6fa9a3a81d9d8df58234ce26b1531cbe9d54b49954b4282a4bb080fb5cb825495469670afa82eccd521356ec1869b4a62"})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/notes', 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r9}, 0x10)
io_setup(0x3, &(0x7f0000000340))
sendfile(r7, r6, 0x0, 0xd)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="6c206afd4984361c8c2db22152b8bd72691b3665e9322ea30314c18bf30a373cf4699f7f0d75d80a88d99fbd756788c6e5b010cf2279750aac627137a370411b1059b701b24678dc76"])
write$9p(0xffffffffffffffff, &(0x7f0000001400)="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", 0x200)
r10 = syz_open_dev$vcsu(&(0x7f0000000800), 0x8, 0x10000)
setsockopt$inet_tcp_TCP_REPAIR(r10, 0x6, 0x13, &(0x7f0000000840)=0x1, 0x4)
sendfile(0xffffffffffffffff, r3, 0x0, 0xe065)
fcntl$lock(r1, 0x6, &(0x7f0000000880)={0x0, 0x2, 0x8, 0x70})

241.923586ms ago: executing program 0 (id=1515):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
io_setup(0x6, &(0x7f0000000540)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r1, 0x1, &(0x7f0000000880)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r2, 0x0}])
setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f00000001c0)={@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x1, 0x2, 0x0, 0x0, {0xa, 0x4e20, 0x5, @loopback, 0xff}}}, {&(0x7f0000000080)=""/125, 0x7d}, &(0x7f0000000100), 0x18}, 0xa0)
pivot_root(&(0x7f0000000340)='.\x00', &(0x7f0000000180)='./file0/../file0/../file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0/../file0\x00', 0x0, 0x61)

225.100876ms ago: executing program 2 (id=1516):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYRES8=r0, @ANYRES16=r3, @ANYRESOCT=r0, @ANYRESOCT=r1], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r11}, &(0x7f0000000000), &(0x7f00000005c0)=r12}, 0x20)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r13}, 0x10)
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002000)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0x5, 0xf}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_fw={{0x7}, {0x58, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'veth0_macvtap\x00'}, @TCA_FW_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x1, 0x7, 0xfffffffc, 0x7, {0x3, 0x2, 0x80, 0x0, 0x296, 0x8001}, {0x40, 0x2, 0x9, 0x7f, 0x2, 0x6}, 0x6, 0x8, 0x1}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r14 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=<r15=>r6, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r14, 0x0, 0xffffffffffffffff}, 0x18)
r16 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff)
r17 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r17, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000400000000000900020073797a30000000000500010007000000050005000a0000000c000780080012400000ffff11000300686173683a69702c706f72740000000083fbcf88"], 0x58}}, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r16, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r13, @ANYRESHEX=r15, @ANYBLOB='0\x00\x00\x00'], 0x30}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010023484af53b607cc70700"], 0x2c}}, 0x0)

138.549228ms ago: executing program 7 (id=1517):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001100010000000000000000000000000a20000000000a03000000800000000000070000000900010073797a30000000007c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d38001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c00028008000140000000080800034000000110"], 0xc4}}, 0x20050890)

138.016128ms ago: executing program 6 (id=1518):
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

97.917549ms ago: executing program 7 (id=1519):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4de, &(0x7f0000001080)="$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")
unlink(&(0x7f0000000100)='./file1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r3 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newtaction={0x74, 0x30, 0xb, 0x70bd2a, 0x0, {}, [{0x60, 0x1, [@m_vlan={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x9, 0x4, 0x3, 0xfffffb93, 0x1}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x48004}, 0x0)
sendmsg$kcm(r3, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
r6 = gettid()
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000000ac0)={0xc, {"a2e3ad214fc752f91b25470987f70e06d038e7ff7fc6e5539b3264078b089b3b08346c060890e0878f0e1ac6e70a9b3368959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31350d095d0636cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62239c6f30e065cd5b91cd0a03000000000018001b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd7878a37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b412435139000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a4cd13c257ac06c7d8ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190ba4d7909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810ba2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e8134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b000000807ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d24145a2e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a0400000000000000f463661c953fcad6f37725c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2ca8378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa04006651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed004000000b53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f090056b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b5c7fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d050000002a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f463934c54edc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a3b89f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d3560aba573bd16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22005b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db239dfe785b54c34a0a5db4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbf4c807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9edbaaadaea56765404e0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901003a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d00000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d50b00", 0x1000}}, 0x1006)
getsockopt(r3, 0x5, 0x0, &(0x7f0000000480)=""/206, &(0x7f0000000080)=0xce)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execveat(r8, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)={[&(0x7f00000001c0)='\'&%\x0e@,}\x00', &(0x7f0000000200)=':\x00', &(0x7f0000000300)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000380)='$\x00', &(0x7f0000000580)='-]\x00', &(0x7f00000007c0)='kmem_cache_free\x00\x9a%<X\x97\x8a\xdc\xe3[\x88\x00k\xa9Jp\xbb\nC0\xb7)\x06\xaa\x1e,\x9c\x00C\'\xe0|,\xab\xd7\xa6x)\xf5!HE\x88\xa9&C&gk\x0f\xd2\xb4\x94(\xdc\x86\x86\xaa\x1a\x80\xc97<\xf4I\xfc\xbe1\x01:1\xb0k\xa0\x95\xd1\x92M\x90\xaf\x96\x81R\x00\xa9', &(0x7f0000000600)='-\x00']}, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
tkill(r5, 0x12)
tkill(r5, 0x1)
tkill(r6, 0x14)

83.379979ms ago: executing program 2 (id=1520):
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f00000003c0)='./file2\x00', 0x6000, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x499, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000380)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r0, 0x0, 0x0})
io_uring_enter(r5, 0x22d6, 0x4b34, 0x4, 0x0, 0xffa1)

0s ago: executing program 6 (id=1521):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000490000000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000c00)={'tunl0\x00', &(0x7f0000000b80)={'sit0\x00', <r2=>0x0, 0x10, 0x80, 0x8ce9, 0x1, {{0x16, 0x4, 0x1, 0x2d, 0x58, 0x66, 0x0, 0xfa, 0x29, 0x0, @remote, @empty, {[@timestamp_addr={0x44, 0x44, 0x33, 0x1, 0x9, [{@multicast2, 0x9a9}, {@initdev={0xac, 0x1e, 0x1, 0x0}}, {@private=0xa010100, 0xa9}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xdc2}, {@loopback, 0x80000001}, {@broadcast, 0x1}, {@broadcast, 0x9}, {@private=0xb, 0x3}]}]}}}}})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x7, 0xfffffff8, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x1000, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x4000, 0x0, 0x0, 0xfffffffe, 0x6, 0x0, 0x0, 0x272, 0xb, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffffffe, 0x0, 0x80007, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x0, 0xb97, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x0, 0x0, 0x1, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0xffffffff, 0x1, 0x0, 0x9, 0x0, 0x0, 0x4, 0x6, 0x9, 0x0, 0xfffffffc, 0x0, 0x0, 0x40000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x5, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0xffff, 0x0, 0x0, 0xb38, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x2000000, 0xc, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x7, 0x100, 0x0, 0x8, 0xfffffffd, 0x0, 0xfffffffd, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x8, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0x0, 0x5f}, {0xff, 0x2, 0x0, 0x0, 0x19, 0x40000000}, 0x0, 0x7f}}]}}]}, 0x45c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000c40)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000c80)=0x14)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000cc0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000d00)=0x14)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000e40)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d40)={0xb0, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x900}, 0x10040090)
r7 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x80a, &(0x7f0000000340)={[{@grpquota}, {@lazytime}, {@stripe={'stripe', 0x3d, 0x1200}}, {@quota}]}, 0x1, 0x7b5, &(0x7f00000017c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000008c0)="89", 0x0}, 0x32)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x18)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000240)={&(0x7f00000003c0)=""/125, 0x32000, 0x1000, 0x1, 0x2}, 0x20)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r8, <r11=>0xffffffffffffffff}, 0x0, &(0x7f0000000180)=r1}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x18, 0x12, &(0x7f0000000ac0)=ANY=[@ANYRES16=r7, @ANYRES32=r10, @ANYBLOB="000000000d000000b703000000000000850000000c000000b70000000000000018120000", @ANYRES32=r10, @ANYBLOB="0000c80000000000b703000000000000850000000c000000b70000000000000018570000090000000000000000000000181a0000", @ANYRESOCT=r11, @ANYBLOB="f1ff000000000000b3600800f0ffffff950000000000343917705fbd1c2e794ee93c4d6aff0000"], &(0x7f0000000040)='GPL\x00', 0x781, 0xb0, &(0x7f0000000780)=""/176, 0x41100, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000005c0)={0x0, 0x0, 0x6, 0x4}, 0x10, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000640), 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000004c0)='tegra_dma_complete_cb\x00', r12, 0x0, 0x9}, 0x18)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r13, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msgsnd(0x0, 0x0, 0x0, 0x800)
io_uring_setup(0x4d25, &(0x7f0000000840)={0x0, 0x31e0, 0x0, 0x2, 0x1f3, 0x0, r8})

kernel console output (not intermixed with test programs):

] EXT4-fs: Ignoring removed orlov option
[  117.797506][ T6588] x_tables: ip6_tables: mh match: only valid for protocol 135
[  117.857873][ T6590] x_tables: ip6_tables: mh match: only valid for protocol 135
[  118.032072][   T29] kauditd_printk_skb: 154 callbacks suppressed
[  118.032088][   T29] audit: type=1400 audit(1752409795.301:3930): avc:  denied  { connect } for  pid=6606 comm="syz.0.901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  118.077735][   T29] audit: type=1400 audit(1752409795.331:3931): avc:  denied  { name_bind } for  pid=6606 comm="syz.0.901" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  118.494434][   T29] audit: type=1400 audit(1752409795.761:3932): avc:  denied  { write } for  pid=6614 comm="+}[@" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  118.610623][ T6561] syz.2.883 (6561) used greatest stack depth: 6040 bytes left
[  118.619196][ T6616] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  118.679226][ T6619] x_tables: ip6_tables: mh match: only valid for protocol 135
[  119.362572][   T29] audit: type=1400 audit(1752409796.631:3933): avc:  denied  { read write } for  pid=6646 comm="syz.0.917" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  119.386112][   T29] audit: type=1400 audit(1752409796.631:3934): avc:  denied  { open } for  pid=6646 comm="syz.0.917" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  119.424278][ T3355] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  119.450492][ T3355] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  119.473081][ T6645] loop3: detected capacity change from 0 to 128
[  119.484305][ T6645] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.576723][ T6655] x_tables: ip6_tables: mh match: only valid for protocol 135
[  119.589084][   T29] audit: type=1326 audit(1752409796.861:3935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.1.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  119.614801][   T29] audit: type=1326 audit(1752409796.861:3936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.1.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  119.638495][   T29] audit: type=1326 audit(1752409796.861:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.1.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  119.662043][   T29] audit: type=1326 audit(1752409796.861:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.1.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  119.685731][   T29] audit: type=1326 audit(1752409796.861:3939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.1.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  119.738323][ T6659] syzkaller0: tun_chr_ioctl cmd 35111
[  119.774875][ T6661] netlink: 3672 bytes leftover after parsing attributes in process `syz.1.922'.
[  119.805388][ T6666] netlink: 209652 bytes leftover after parsing attributes in process `syz.0.917'.
[  119.820252][ T6648] netlink: 209652 bytes leftover after parsing attributes in process `syz.0.917'.
[  119.887532][ T6671] loop5: detected capacity change from 0 to 512
[  119.917715][ T6671] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  119.956160][ T6676] lo speed is unknown, defaulting to 1000
[  120.133279][ T6685] loop3: detected capacity change from 0 to 512
[  120.133740][ T6671] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.164324][ T6671] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  120.187802][ T6676] lo speed is unknown, defaulting to 1000
[  120.215753][ T6695] x_tables: ip6_tables: mh match: only valid for protocol 135
[  120.294487][ T6700] loop5: detected capacity change from 0 to 512
[  120.305536][ T6700] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  120.343301][ T6700] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  120.344799][ T6704] SELinux: ebitmap: truncated map
[  120.351390][ T6700] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  120.356861][ T6704] SELinux: failed to load policy
[  120.374798][ T6700] System zones: 0-1, 15-15, 18-18, 34-34
[  120.380790][ T6700] EXT4-fs (loop5): orphan cleanup on readonly fs
[  120.387327][ T6700] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  120.402031][ T6700] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  120.405192][ T6708] syzkaller0: tun_chr_ioctl cmd 35111
[  120.425144][ T6700] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.934: bg 0: block 40: padding at end of block bitmap is not set
[  120.446378][ T6700] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  120.455638][ T6700] EXT4-fs (loop5): 1 truncate cleaned up
[  120.465569][ T6700] EXT4-fs (loop5): shut down requested (0)
[  120.509481][ T6710] netlink: 3672 bytes leftover after parsing attributes in process `syz.0.938'.
[  120.544509][ T6712] FAULT_INJECTION: forcing a failure.
[  120.544509][ T6712] name failslab, interval 1, probability 0, space 0, times 0
[  120.557332][ T6712] CPU: 0 UID: 0 PID: 6712 Comm: syz.1.940 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  120.557372][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  120.557388][ T6712] Call Trace:
[  120.557394][ T6712]  <TASK>
[  120.557401][ T6712]  __dump_stack+0x1d/0x30
[  120.557421][ T6712]  dump_stack_lvl+0xe8/0x140
[  120.557443][ T6712]  dump_stack+0x15/0x1b
[  120.557471][ T6712]  should_fail_ex+0x265/0x280
[  120.557540][ T6712]  should_failslab+0x8c/0xb0
[  120.557563][ T6712]  kmem_cache_alloc_noprof+0x50/0x310
[  120.557594][ T6712]  ? audit_log_start+0x365/0x6c0
[  120.557676][ T6712]  audit_log_start+0x365/0x6c0
[  120.557711][ T6712]  ? __rcu_read_unlock+0x4f/0x70
[  120.557742][ T6712]  audit_seccomp+0x48/0x100
[  120.557769][ T6712]  ? __seccomp_filter+0x68c/0x10d0
[  120.557819][ T6712]  __seccomp_filter+0x69d/0x10d0
[  120.557849][ T6712]  ? __schedule+0x6a8/0xb30
[  120.557877][ T6712]  ? vfs_write+0x75e/0x8e0
[  120.557988][ T6712]  ? __cond_resched+0x4e/0x90
[  120.558023][ T6712]  __secure_computing+0x82/0x150
[  120.558068][ T6712]  syscall_trace_enter+0xcf/0x1e0
[  120.558096][ T6712]  do_syscall_64+0xac/0x200
[  120.558117][ T6712]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  120.558150][ T6712]  ? clear_bhb_loop+0x40/0x90
[  120.558246][ T6712]  ? clear_bhb_loop+0x40/0x90
[  120.558272][ T6712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.558331][ T6712] RIP: 0033:0x7f6ed8a9d33c
[  120.558347][ T6712] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  120.558364][ T6712] RSP: 002b:00007f6ed7107030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  120.558382][ T6712] RAX: ffffffffffffffda RBX: 00007f6ed8cc5fa0 RCX: 00007f6ed8a9d33c
[  120.558397][ T6712] RDX: 000000000000000f RSI: 00007f6ed71070a0 RDI: 0000000000000007
[  120.558481][ T6712] RBP: 00007f6ed7107090 R08: 0000000000000000 R09: 0000000000000000
[  120.558495][ T6712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.558506][ T6712] R13: 0000000000000000 R14: 00007f6ed8cc5fa0 R15: 00007ffc1517a538
[  120.558525][ T6712]  </TASK>
[  120.842340][ T6719] netlink: 4 bytes leftover after parsing attributes in process `syz.3.943'.
[  120.851292][ T6719] bridge_slave_1: left allmulticast mode
[  120.857270][ T6719] bridge_slave_1: left promiscuous mode
[  120.863076][ T6719] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.876468][ T6719] bridge_slave_0: left allmulticast mode
[  120.882247][ T6719] bridge_slave_0: left promiscuous mode
[  120.888133][ T6719] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.925186][ T6713] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  120.928332][ T6728] loop2: detected capacity change from 0 to 512
[  121.015175][ T6728] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.088090][ T6728] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.111350][ T6728] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  121.122578][ T6738] lo speed is unknown, defaulting to 1000
[  121.173231][ T6736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6736 comm=syz.1.949
[  121.233370][ T6745] loop2: detected capacity change from 0 to 512
[  121.243024][ T6738] lo speed is unknown, defaulting to 1000
[  121.296553][ T6749] loop3: detected capacity change from 0 to 512
[  121.303595][ T6749] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  121.307972][ T6745] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.336202][ T6749] EXT4-fs (loop3): 1 truncate cleaned up
[  121.353740][ T6749] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode 802.3ad(4)
[  121.353974][ T6745] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  121.404112][ T6750] loop5: detected capacity change from 0 to 512
[  121.506947][ T6762] netlink: 3672 bytes leftover after parsing attributes in process `syz.1.957'.
[  121.536932][ T6764] loop3: detected capacity change from 0 to 1024
[  121.552329][ T6764] EXT4-fs: Ignoring removed orlov option
[  121.609203][ T6773] FAULT_INJECTION: forcing a failure.
[  121.609203][ T6773] name failslab, interval 1, probability 0, space 0, times 0
[  121.621970][ T6773] CPU: 0 UID: 0 PID: 6773 Comm: syz.2.961 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  121.622019][ T6773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.622036][ T6773] Call Trace:
[  121.622093][ T6773]  <TASK>
[  121.622103][ T6773]  __dump_stack+0x1d/0x30
[  121.622129][ T6773]  dump_stack_lvl+0xe8/0x140
[  121.622151][ T6773]  dump_stack+0x15/0x1b
[  121.622170][ T6773]  should_fail_ex+0x265/0x280
[  121.622203][ T6773]  ? tipc_nametbl_lookup_group+0x451/0x630
[  121.622308][ T6773]  should_failslab+0x8c/0xb0
[  121.622336][ T6773]  __kmalloc_cache_noprof+0x4c/0x320
[  121.622393][ T6773]  tipc_nametbl_lookup_group+0x451/0x630
[  121.622444][ T6773]  __tipc_sendmsg+0x409/0x1b00
[  121.622474][ T6773]  ? obj_cgroup_charge_account+0x122/0x1a0
[  121.622515][ T6773]  ? __rcu_read_unlock+0x4f/0x70
[  121.622543][ T6773]  ? avc_has_perm_noaudit+0x1b1/0x200
[  121.622598][ T6773]  ? __rcu_read_unlock+0x4f/0x70
[  121.622621][ T6773]  __tipc_sendstream+0xa23/0xb30
[  121.622655][ T6773]  ? selinux_socket_sendmsg+0x175/0x1b0
[  121.622692][ T6773]  ? _raw_spin_unlock_bh+0x36/0x40
[  121.622851][ T6773]  tipc_send_packet+0x65/0x80
[  121.622873][ T6773]  ? __pfx_tipc_send_packet+0x10/0x10
[  121.622898][ T6773]  __sock_sendmsg+0x145/0x180
[  121.622929][ T6773]  ____sys_sendmsg+0x31e/0x4e0
[  121.622977][ T6773]  ___sys_sendmsg+0x17b/0x1d0
[  121.623085][ T6773]  __x64_sys_sendmsg+0xd4/0x160
[  121.623125][ T6773]  x64_sys_call+0x2999/0x2fb0
[  121.623146][ T6773]  do_syscall_64+0xd2/0x200
[  121.623216][ T6773]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  121.623249][ T6773]  ? clear_bhb_loop+0x40/0x90
[  121.623280][ T6773]  ? clear_bhb_loop+0x40/0x90
[  121.623351][ T6773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.623385][ T6773] RIP: 0033:0x7f5edcb8e929
[  121.623404][ T6773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.623425][ T6773] RSP: 002b:00007f5edb1f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.623522][ T6773] RAX: ffffffffffffffda RBX: 00007f5edcdb5fa0 RCX: 00007f5edcb8e929
[  121.623537][ T6773] RDX: 0000000004008030 RSI: 0000200000000400 RDI: 0000000000000006
[  121.623576][ T6773] RBP: 00007f5edb1f7090 R08: 0000000000000000 R09: 0000000000000000
[  121.623621][ T6773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.623637][ T6773] R13: 0000000000000000 R14: 00007f5edcdb5fa0 R15: 00007fff1abcef68
[  121.623684][ T6773]  </TASK>
[  121.882245][ T6776] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.960'.
[  121.892451][ T6771] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.960'.
[  121.929902][ T6780] loop2: detected capacity change from 0 to 512
[  121.941427][ T6780] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.988074][ T6780] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.149836][ T6780] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  122.218720][ T6786] lo speed is unknown, defaulting to 1000
[  122.361893][ T6797] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6797 comm=syz.1.964
[  122.533063][ T6786] lo speed is unknown, defaulting to 1000
[  122.751301][ T6803] loop2: detected capacity change from 0 to 164
[  122.762550][ T6803] iso9660: Corrupted directory entry in block 4 of inode 1792
[  122.781282][ T6803] iso9660: Corrupted directory entry in block 4 of inode 1792
[  122.823915][ T6807] x_tables: ip6_tables: mh match: only valid for protocol 135
[  122.938162][ T6813] netlink: 12 bytes leftover after parsing attributes in process `syz.0.975'.
[  122.943355][ T6811] loop2: detected capacity change from 0 to 512
[  123.006448][ T6811] EXT4-fs (loop2): 1 orphan inode deleted
[  123.016258][ T6815] netlink: 4 bytes leftover after parsing attributes in process `syz.3.973'.
[  123.026125][ T5596] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:21: Failed to release dquot type 1
[  123.048757][ T6811] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.060126][ T6819] syzkaller0: tun_chr_ioctl cmd 35111
[  123.065084][ T6815] FAULT_INJECTION: forcing a failure.
[  123.065084][ T6815] name failslab, interval 1, probability 0, space 0, times 0
[  123.081146][ T6815] CPU: 1 UID: 0 PID: 6815 Comm: syz.3.973 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  123.081223][ T6815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  123.081238][ T6815] Call Trace:
[  123.081247][ T6815]  <TASK>
[  123.081254][ T6815]  __dump_stack+0x1d/0x30
[  123.081366][ T6815]  dump_stack_lvl+0xe8/0x140
[  123.081392][ T6815]  dump_stack+0x15/0x1b
[  123.081459][ T6815]  should_fail_ex+0x265/0x280
[  123.081495][ T6815]  ? nf_tables_updobj+0x3d/0x1a0
[  123.081576][ T6815]  should_failslab+0x8c/0xb0
[  123.081608][ T6815]  __kmalloc_cache_noprof+0x4c/0x320
[  123.081655][ T6815]  nf_tables_updobj+0x3d/0x1a0
[  123.081694][ T6815]  nf_tables_newobj+0xc8f/0xcc0
[  123.081818][ T6815]  nfnetlink_rcv+0xb96/0x1690
[  123.081890][ T6815]  netlink_unicast+0x5a5/0x680
[  123.081934][ T6815]  netlink_sendmsg+0x58b/0x6b0
[  123.081962][ T6815]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.082052][ T6815]  __sock_sendmsg+0x145/0x180
[  123.082117][ T6815]  ____sys_sendmsg+0x31e/0x4e0
[  123.082192][ T6815]  ___sys_sendmsg+0x17b/0x1d0
[  123.082258][ T6815]  __x64_sys_sendmsg+0xd4/0x160
[  123.082382][ T6815]  x64_sys_call+0x2999/0x2fb0
[  123.082467][ T6815]  do_syscall_64+0xd2/0x200
[  123.082483][ T6815]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.082594][ T6815]  ? clear_bhb_loop+0x40/0x90
[  123.082672][ T6815]  ? clear_bhb_loop+0x40/0x90
[  123.082702][ T6815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.082730][ T6815] RIP: 0033:0x7f4bb46fe929
[  123.082751][ T6815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.082811][ T6815] RSP: 002b:00007f4bb2d67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.082916][ T6815] RAX: ffffffffffffffda RBX: 00007f4bb4925fa0 RCX: 00007f4bb46fe929
[  123.082934][ T6815] RDX: 0000000020000000 RSI: 0000200000000180 RDI: 0000000000000005
[  123.082981][ T6815] RBP: 00007f4bb2d67090 R08: 0000000000000000 R09: 0000000000000000
[  123.083076][ T6815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.083093][ T6815] R13: 0000000000000000 R14: 00007f4bb4925fa0 R15: 00007ffebf3e9cd8
[  123.083120][ T6815]  </TASK>
[  123.153210][ T6829] netlink: 'syz.2.976': attribute type 3 has an invalid length.
[  123.204186][ T6826] lo speed is unknown, defaulting to 1000
[  123.206171][ T6829] netlink: 'syz.2.976': attribute type 8 has an invalid length.
[  123.206184][ T6829] netlink: 197324 bytes leftover after parsing attributes in process `syz.2.976'.
[  123.226726][ T6829] SELinux:  Context system_u:object_r:usr_t:s0 is not valid (left unmapped).
[  123.245193][ T6831] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6831 comm=syz.0.980
[  123.264648][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  123.264669][   T29] audit: type=1400 audit(1752409800.531:3965): avc:  denied  { relabelto } for  pid=6810 comm="syz.2.976" name="bus" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:usr_t:s0"
[  123.328470][ T6834] x_tables: duplicate underflow at hook 1
[  123.363914][ T6826] lo speed is unknown, defaulting to 1000
[  123.465830][   T29] audit: type=1400 audit(1752409800.731:3966): avc:  denied  { setopt } for  pid=6840 comm="syz.1.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  123.533620][   T29] audit: type=1400 audit(1752409800.801:3967): avc:  denied  { setattr } for  pid=6832 comm="syz.3.982" path="socket:[14852]" dev="sockfs" ino=14852 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  123.621518][   T29] audit: type=1400 audit(1752409800.851:3968): avc:  denied  { bind } for  pid=6840 comm="syz.1.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  123.650169][ T6848] x_tables: ip6_tables: mh match: only valid for protocol 135
[  123.715085][ T6858] loop3: detected capacity change from 0 to 512
[  123.752432][ T6858] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  123.776593][   T29] audit: type=1326 audit(1752409801.051:3969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.800225][   T29] audit: type=1326 audit(1752409801.051:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.826017][   T29] audit: type=1326 audit(1752409801.051:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.849450][   T29] audit: type=1326 audit(1752409801.051:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.873246][   T29] audit: type=1326 audit(1752409801.051:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.897356][   T29] audit: type=1326 audit(1752409801.051:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6863 comm="syz.1.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  123.933507][ T6868] loop5: detected capacity change from 0 to 2048
[  123.941167][ T6858] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.059112][ T6886] futex_wake_op: syz.1.994 tries to shift op by -1; fix this program
[  124.087671][ T6889] syzkaller0: tun_chr_ioctl cmd 35111
[  124.126209][ T6895] loop3: detected capacity change from 0 to 512
[  124.203368][ T6895] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.293024][ T6852] cgroup: fork rejected by pids controller in /syz0
[  124.302947][ T6914] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  124.318891][ T6914] SELinux: failed to load policy
[  124.353308][ T6895] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.376856][ T6895] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  124.455296][ T6923] loop5: detected capacity change from 0 to 512
[  124.736860][ T6963] loop3: detected capacity change from 0 to 256
[  124.775976][ T7038] FAULT_INJECTION: forcing a failure.
[  124.775976][ T7038] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.789526][ T7038] CPU: 1 UID: 0 PID: 7038 Comm: syz.3.1006 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  124.789562][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  124.789577][ T7038] Call Trace:
[  124.789656][ T7038]  <TASK>
[  124.789666][ T7038]  __dump_stack+0x1d/0x30
[  124.789687][ T7038]  dump_stack_lvl+0xe8/0x140
[  124.789740][ T7038]  dump_stack+0x15/0x1b
[  124.789760][ T7038]  should_fail_ex+0x265/0x280
[  124.789808][ T7038]  should_fail+0xb/0x20
[  124.789841][ T7038]  should_fail_usercopy+0x1a/0x20
[  124.789874][ T7038]  _copy_to_user+0x20/0xa0
[  124.789893][ T7038]  simple_read_from_buffer+0xb5/0x130
[  124.789968][ T7038]  proc_fail_nth_read+0x100/0x140
[  124.790004][ T7038]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  124.790037][ T7038]  vfs_read+0x19d/0x6f0
[  124.790143][ T7038]  ? __rcu_read_unlock+0x4f/0x70
[  124.790170][ T7038]  ? __fget_files+0x184/0x1c0
[  124.790196][ T7038]  ksys_read+0xda/0x1a0
[  124.790252][ T7038]  __x64_sys_read+0x40/0x50
[  124.790286][ T7038]  x64_sys_call+0x2d77/0x2fb0
[  124.790378][ T7038]  do_syscall_64+0xd2/0x200
[  124.790395][ T7038]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  124.790420][ T7038]  ? clear_bhb_loop+0x40/0x90
[  124.790444][ T7038]  ? clear_bhb_loop+0x40/0x90
[  124.790470][ T7038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.790490][ T7038] RIP: 0033:0x7f4bb46fd33c
[  124.790521][ T7038] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  124.790544][ T7038] RSP: 002b:00007f4bb2d67030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.790568][ T7038] RAX: ffffffffffffffda RBX: 00007f4bb4925fa0 RCX: 00007f4bb46fd33c
[  124.790584][ T7038] RDX: 000000000000000f RSI: 00007f4bb2d670a0 RDI: 0000000000000004
[  124.790600][ T7038] RBP: 00007f4bb2d67090 R08: 0000000000000000 R09: 0000000000000000
[  124.790674][ T7038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.790687][ T7038] R13: 0000000000000000 R14: 00007f4bb4925fa0 R15: 00007ffebf3e9cd8
[  124.790715][ T7038]  </TASK>
[  125.020169][ T7040] futex_wake_op: syz.3.1007 tries to shift op by -1; fix this program
[  125.184741][ T7048] Illegal XDP return value 4294967274 on prog  (id 717) dev N/A, expect packet loss!
[  125.520147][ T7061] x_tables: ip6_tables: mh match: only valid for protocol 135
[  125.711449][ T7071] SELinux: failed to load policy
[  125.779409][ T7066] IPVS: set_ctl: invalid protocol: 2 0.0.0.0:21
[  126.010272][ T7084] loop5: detected capacity change from 0 to 512
[  126.067023][ T7086] loop3: detected capacity change from 0 to 1024
[  126.267747][ T7096] bridge0: port 4(vlan2) entered blocking state
[  126.274208][ T7096] bridge0: port 4(vlan2) entered disabled state
[  126.280891][ T7096] vlan2: entered allmulticast mode
[  126.286137][ T7096] bond0: entered allmulticast mode
[  126.291445][ T7096] bond_slave_0: entered allmulticast mode
[  126.297416][ T7096] bond_slave_1: entered allmulticast mode
[  126.305415][ T7096] vlan2: entered promiscuous mode
[  126.310865][ T7096] bond0: entered promiscuous mode
[  126.316126][ T7096] bond_slave_0: entered promiscuous mode
[  126.322358][ T7096] bond_slave_1: entered promiscuous mode
[  126.556403][ T7101] lo speed is unknown, defaulting to 1000
[  126.575579][ T7103] loop2: detected capacity change from 0 to 512
[  126.583660][ T7103] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.596593][ T7103] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.598792][ T7101] lo speed is unknown, defaulting to 1000
[  126.607781][ T7107] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7107 comm=syz.1.1029
[  126.629736][ T7103] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  126.711563][ T7111] x_tables: duplicate underflow at hook 1
[  126.749569][ T7109] SELinux: failed to load policy
[  126.792590][ T7115] SELinux: ebitmap: truncated map
[  126.799669][ T7115] SELinux: failed to load policy
[  126.826616][ T7119] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  126.849945][ T7121] loop2: detected capacity change from 0 to 512
[  126.858785][ T7119] SELinux: failed to load policy
[  126.864345][ T7121] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.878667][ T7121] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.891929][ T7121] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  127.336544][ T7135] netlink: '+}[@': attribute type 10 has an invalid length.
[  127.370378][ T7135] batman_adv: batadv0: Adding interface: team0
[  127.376701][ T7135] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.402158][ T7135] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  127.481464][ T7142] loop3: detected capacity change from 0 to 512
[  127.503560][ T7142] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.540675][ T7137] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1038'.
[  127.554888][ T7142] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.569671][ T7142] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  127.623716][ T7150] syzkaller0: tun_chr_ioctl cmd 35111
[  127.632514][ T7152] loop2: detected capacity change from 0 to 512
[  127.649644][ T7152] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.666057][ T7152] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  127.683633][ T7152] EXT4-fs (loop2): Remounting filesystem read-only
[  127.758004][ T7162] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  127.758059][ T7162] SELinux: failed to load policy
[  128.076467][ T7180] syzkaller0: tun_chr_ioctl cmd 35111
[  128.161251][ T7186] loop3: detected capacity change from 0 to 512
[  128.168937][ T7186] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.222029][ T7186] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.254611][ T7186] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  128.528275][   T29] kauditd_printk_skb: 491 callbacks suppressed
[  128.528296][   T29] audit: type=1400 audit(1752409805.741:4462): avc:  denied  { allowed } for  pid=7193 comm="syz.2.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  128.554156][   T29] audit: type=1400 audit(1752409805.741:4463): avc:  denied  { create } for  pid=7193 comm="syz.2.1060" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  128.576434][   T29] audit: type=1400 audit(1752409805.751:4464): avc:  denied  { map } for  pid=7193 comm="syz.2.1060" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=15273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  128.600817][   T29] audit: type=1400 audit(1752409805.751:4465): avc:  denied  { read write } for  pid=7193 comm="syz.2.1060" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=15273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  128.625967][   T29] audit: type=1400 audit(1752409805.751:4466): avc:  denied  { write } for  pid=7193 comm="syz.2.1060" path="socket:[15269]" dev="sockfs" ino=15269 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  128.650230][ T7198] syzkaller0: tun_chr_ioctl cmd 35111
[  128.841021][ T7202] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  128.936154][ T7202] SELinux: failed to load policy
[  129.164168][ T7210] loop3: detected capacity change from 0 to 2048
[  129.178078][   T29] audit: type=1400 audit(1752409806.351:4467): avc:  denied  { write } for  pid=7207 comm="syz.0.1064" name="001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  129.341805][   T29] audit: type=1400 audit(1752409806.611:4468): avc:  denied  { read write open } for  pid=7208 comm="syz.3.1065" path="/223/file1/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  129.388502][ T7229] futex_wake_op: syz.0.1070 tries to shift op by -1; fix this program
[  129.436372][   T29] audit: type=1326 audit(1752409806.681:4469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7228 comm="syz.0.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d6f28e929 code=0x7ffc0000
[  129.460232][   T29] audit: type=1326 audit(1752409806.681:4470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7228 comm="syz.0.1070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6d6f28e929 code=0x7ffc0000
[  129.462864][ T7231] SELinux: failed to load policy
[  129.484139][   T29] audit: type=1400 audit(1752409806.691:4471): avc:  denied  { create } for  pid=7228 comm="syz.0.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  129.511870][ T7232] lo speed is unknown, defaulting to 1000
[  129.518437][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.3.1065
[  129.612000][ T7238] loop2: detected capacity change from 0 to 128
[  129.655480][ T7232] lo speed is unknown, defaulting to 1000
[  129.736027][ T7238] lo speed is unknown, defaulting to 1000
[  129.792905][ T7238] lo speed is unknown, defaulting to 1000
[  130.008646][ T7263] FAULT_INJECTION: forcing a failure.
[  130.008646][ T7263] name failslab, interval 1, probability 0, space 0, times 0
[  130.019277][ T7264] futex_wake_op: syz.3.1082 tries to shift op by -1; fix this program
[  130.022369][ T7263] CPU: 0 UID: 0 PID: 7263 Comm: syz.0.1079 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  130.022437][ T7263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.022456][ T7263] Call Trace:
[  130.022465][ T7263]  <TASK>
[  130.022478][ T7263]  __dump_stack+0x1d/0x30
[  130.022508][ T7263]  dump_stack_lvl+0xe8/0x140
[  130.022534][ T7263]  dump_stack+0x15/0x1b
[  130.022629][ T7263]  should_fail_ex+0x265/0x280
[  130.022671][ T7263]  should_failslab+0x8c/0xb0
[  130.022702][ T7263]  kmem_cache_alloc_noprof+0x50/0x310
[  130.022736][ T7263]  ? skb_clone+0x151/0x1f0
[  130.022761][ T7263]  skb_clone+0x151/0x1f0
[  130.022855][ T7263]  __netlink_deliver_tap+0x2c9/0x500
[  130.022909][ T7263]  netlink_unicast+0x653/0x680
[  130.022971][ T7263]  netlink_sendmsg+0x58b/0x6b0
[  130.023001][ T7263]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.023075][ T7263]  __sock_sendmsg+0x145/0x180
[  130.023108][ T7263]  __sys_sendto+0x268/0x330
[  130.023178][ T7263]  __x64_sys_sendto+0x76/0x90
[  130.023219][ T7263]  x64_sys_call+0x2eb6/0x2fb0
[  130.023263][ T7263]  do_syscall_64+0xd2/0x200
[  130.023287][ T7263]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  130.023340][ T7263]  ? clear_bhb_loop+0x40/0x90
[  130.023412][ T7263]  ? clear_bhb_loop+0x40/0x90
[  130.023440][ T7263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.023463][ T7263] RIP: 0033:0x7f6d6f28e929
[  130.023485][ T7263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.023511][ T7263] RSP: 002b:00007f6d6d8d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  130.023546][ T7263] RAX: ffffffffffffffda RBX: 00007f6d6f4b6080 RCX: 00007f6d6f28e929
[  130.023565][ T7263] RDX: 0000000000000090 RSI: 00002000000000c0 RDI: 000000000000000d
[  130.023598][ T7263] RBP: 00007f6d6d8d6090 R08: 0000000000000000 R09: 0000000000000000
[  130.023613][ T7263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.023629][ T7263] R13: 0000000000000000 R14: 00007f6d6f4b6080 R15: 00007ffe6fd0f0d8
[  130.023656][ T7263]  </TASK>
[  130.067597][ T7263] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1079'.
[  130.248349][ T7259] SELinux: failed to load policy
[  130.397701][ T7290] loop5: detected capacity change from 0 to 512
[  130.416512][ T7290] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  130.438609][ T7290] EXT4-fs mount: 48 callbacks suppressed
[  130.438626][ T7290] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.468803][ T7290] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.515046][ T7293] loop3: detected capacity change from 0 to 512
[  130.515872][ T7294] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1087'.
[  130.526604][ T7298] lo speed is unknown, defaulting to 1000
[  130.538052][ T7290] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  130.558619][ T7295] loop2: detected capacity change from 0 to 256
[  130.662246][ T7298] lo speed is unknown, defaulting to 1000
[  130.685110][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.727256][ T7310] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1092'.
[  130.736424][ T7310] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1092'.
[  130.773534][ T7314] FAULT_INJECTION: forcing a failure.
[  130.773534][ T7314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.787165][ T7314] CPU: 0 UID: 0 PID: 7314 Comm: syz.2.1090 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  130.787245][ T7314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.787261][ T7314] Call Trace:
[  130.787269][ T7314]  <TASK>
[  130.787278][ T7314]  __dump_stack+0x1d/0x30
[  130.787351][ T7314]  dump_stack_lvl+0xe8/0x140
[  130.787376][ T7314]  dump_stack+0x15/0x1b
[  130.787397][ T7314]  should_fail_ex+0x265/0x280
[  130.787435][ T7314]  should_fail+0xb/0x20
[  130.787506][ T7314]  should_fail_usercopy+0x1a/0x20
[  130.787557][ T7314]  _copy_from_iter+0xcf/0xe40
[  130.787596][ T7314]  ? __build_skb_around+0x1a0/0x200
[  130.787683][ T7314]  ? __alloc_skb+0x223/0x320
[  130.787722][ T7314]  netlink_sendmsg+0x471/0x6b0
[  130.787756][ T7314]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.787781][ T7314]  __sock_sendmsg+0x145/0x180
[  130.787812][ T7314]  ____sys_sendmsg+0x31e/0x4e0
[  130.787897][ T7314]  ___sys_sendmsg+0x17b/0x1d0
[  130.788005][ T7314]  __x64_sys_sendmsg+0xd4/0x160
[  130.788052][ T7314]  x64_sys_call+0x2999/0x2fb0
[  130.788116][ T7314]  do_syscall_64+0xd2/0x200
[  130.788147][ T7314]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  130.788211][ T7314]  ? clear_bhb_loop+0x40/0x90
[  130.788235][ T7314]  ? clear_bhb_loop+0x40/0x90
[  130.788257][ T7314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.788283][ T7314] RIP: 0033:0x7f5edcb8e929
[  130.788298][ T7314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.788316][ T7314] RSP: 002b:00007f5edb1f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.788335][ T7314] RAX: ffffffffffffffda RBX: 00007f5edcdb5fa0 RCX: 00007f5edcb8e929
[  130.788347][ T7314] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000006
[  130.788359][ T7314] RBP: 00007f5edb1f7090 R08: 0000000000000000 R09: 0000000000000000
[  130.788371][ T7314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.788442][ T7314] R13: 0000000000000000 R14: 00007f5edcdb5fa0 R15: 00007fff1abcef68
[  130.788462][ T7314]  </TASK>
[  131.019732][ T7325] syzkaller0: tun_chr_ioctl cmd 35111
[  131.346881][ T7339] loop2: detected capacity change from 0 to 512
[  131.426919][ T7320] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7320 comm=syz.1.1093
[  131.512486][ T7342] loop5: detected capacity change from 0 to 1024
[  131.563110][ T7342] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  131.880454][ T7322] lo speed is unknown, defaulting to 1000
[  131.990694][ T7322] lo speed is unknown, defaulting to 1000
[  132.008235][ T7359] loop5: detected capacity change from 0 to 1024
[  132.058058][ T7359] blktrace: Concurrent blktraces are not allowed on sg0
[  132.233460][ T7380] loop5: detected capacity change from 0 to 512
[  132.302147][ T7380] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  132.327027][ T7389] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  132.348507][ T7389] SELinux: failed to load policy
[  132.414456][ T7394] openvswitch: netlink: Message has 6 unknown bytes.
[  132.488251][ T7380] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.514759][ T7380] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.599629][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.613549][ T7403] netlink: 3672 bytes leftover after parsing attributes in process `syz.2.1106'.
[  132.679926][ T7409] loop5: detected capacity change from 0 to 128
[  132.787309][ T7409] syz.5.1107: attempt to access beyond end of device
[  132.787309][ T7409] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  132.874710][ T7409] syz.5.1107: attempt to access beyond end of device
[  132.874710][ T7409] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  133.151861][ T7409] syz.5.1107: attempt to access beyond end of device
[  133.151861][ T7409] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  133.181719][ T7442] FAULT_INJECTION: forcing a failure.
[  133.181719][ T7442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.195024][ T7442] CPU: 1 UID: 0 PID: 7442 Comm: syz.0.1110 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  133.195059][ T7442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.195084][ T7442] Call Trace:
[  133.195090][ T7442]  <TASK>
[  133.195099][ T7442]  __dump_stack+0x1d/0x30
[  133.195173][ T7442]  dump_stack_lvl+0xe8/0x140
[  133.195197][ T7442]  dump_stack+0x15/0x1b
[  133.195221][ T7442]  should_fail_ex+0x265/0x280
[  133.195255][ T7442]  should_fail+0xb/0x20
[  133.195338][ T7442]  should_fail_usercopy+0x1a/0x20
[  133.195369][ T7442]  _copy_from_iter+0xcf/0xe40
[  133.195399][ T7442]  ? __build_skb_around+0x1a0/0x200
[  133.195436][ T7442]  ? __alloc_skb+0x223/0x320
[  133.195580][ T7442]  netlink_sendmsg+0x471/0x6b0
[  133.195647][ T7442]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.195698][ T7442]  __sock_sendmsg+0x145/0x180
[  133.195721][ T7442]  ____sys_sendmsg+0x345/0x4e0
[  133.195783][ T7442]  ___sys_sendmsg+0x17b/0x1d0
[  133.195837][ T7442]  __sys_sendmmsg+0x178/0x300
[  133.195914][ T7442]  __x64_sys_sendmmsg+0x57/0x70
[  133.195953][ T7442]  x64_sys_call+0x2f2f/0x2fb0
[  133.196041][ T7442]  do_syscall_64+0xd2/0x200
[  133.196064][ T7442]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  133.196092][ T7442]  ? clear_bhb_loop+0x40/0x90
[  133.196113][ T7442]  ? clear_bhb_loop+0x40/0x90
[  133.196206][ T7442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.196239][ T7442] RIP: 0033:0x7f6d6f28e929
[  133.196259][ T7442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.196278][ T7442] RSP: 002b:00007f6d6d8f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  133.196375][ T7442] RAX: ffffffffffffffda RBX: 00007f6d6f4b5fa0 RCX: 00007f6d6f28e929
[  133.196391][ T7442] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000008
[  133.196405][ T7442] RBP: 00007f6d6d8f7090 R08: 0000000000000000 R09: 0000000000000000
[  133.196417][ T7442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.196428][ T7442] R13: 0000000000000000 R14: 00007f6d6f4b5fa0 R15: 00007ffe6fd0f0d8
[  133.196447][ T7442]  </TASK>
[  133.462377][ T7417] serio: Serial port ptm0
[  133.616933][ T7451] loop5: detected capacity change from 0 to 1024
[  133.643971][ T7451] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  133.699547][ T7453] SELinux: ebitmap: truncated map
[  133.722133][ T7453] SELinux: failed to load policy
[  133.753509][   T29] kauditd_printk_skb: 52 callbacks suppressed
[  133.753525][   T29] audit: type=1400 audit(1752409811.021:4524): avc:  denied  { setopt } for  pid=7454 comm="syz.5.1115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  133.791768][ T7455] x_tables: duplicate underflow at hook 1
[  133.834403][   T29] audit: type=1400 audit(1752409811.091:4525): avc:  denied  { read } for  pid=7454 comm="syz.5.1115" name="event3" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  133.857796][   T29] audit: type=1400 audit(1752409811.091:4526): avc:  denied  { open } for  pid=7454 comm="syz.5.1115" path="/dev/input/event3" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  134.000487][ T7464] loop2: detected capacity change from 0 to 512
[  134.048003][   T29] audit: type=1400 audit(1752409811.251:4527): avc:  denied  { bind } for  pid=7463 comm="syz.2.1117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  134.093691][ T7468] loop5: detected capacity change from 0 to 512
[  134.138941][ T7468] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  134.250752][ T7468] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.275338][ T7464] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  134.296340][ T7468] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.315083][ T7473] lo speed is unknown, defaulting to 1000
[  134.345121][ T7464] EXT4-fs (loop2): orphan cleanup on readonly fs
[  134.351933][ T7473] lo speed is unknown, defaulting to 1000
[  134.364529][ T7468] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  134.394763][ T7464] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  134.414852][ T7473] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7473 comm=syz.0.1119
[  134.434756][ T7464] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  134.500727][ T7479] syzkaller0: tun_chr_ioctl cmd 35111
[  134.519097][ T7464] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  134.531534][ T7464] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1117: bg 0: block 40: padding at end of block bitmap is not set
[  134.547943][ T7464] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  134.558351][ T7464] EXT4-fs (loop2): 1 truncate cleaned up
[  134.558797][ T7464] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  134.576426][ T7481] SELinux: failed to load policy
[  134.608450][ T7483] x_tables: duplicate underflow at hook 1
[  134.648463][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.837375][ T7490] loop2: detected capacity change from 0 to 1024
[  134.864391][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.012839][   T29] audit: type=1326 audit(1752409812.281:4528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.2.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  135.060310][ T7490] blktrace: Concurrent blktraces are not allowed on sg0
[  135.157234][   T29] audit: type=1326 audit(1752409812.321:4529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.2.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  135.182200][   T29] audit: type=1326 audit(1752409812.321:4530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.2.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  135.206135][   T29] audit: type=1326 audit(1752409812.321:4531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.2.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  135.231496][   T29] audit: type=1326 audit(1752409812.321:4532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.2.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  135.595127][ T7506] loop5: detected capacity change from 0 to 512
[  135.728912][ T7512] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  135.737396][ T7509] netlink: 87 bytes leftover after parsing attributes in process `syz.3.1131'.
[  135.770261][ T7509] netlink: 'syz.3.1131': attribute type 3 has an invalid length.
[  135.787132][ T7513] netlink: 26 bytes leftover after parsing attributes in process `syz.0.1130'.
[  135.829364][ T7515] tmpfs: Bad value for 'mpol'
[  135.926932][ T7521] futex_wake_op: syz.1.1136 tries to shift op by -1; fix this program
[  135.982748][ T7527] x_tables: ip6_tables: mh match: only valid for protocol 135
[  136.025237][ T7517] SELinux:  policydb magic number 0x8 does not match expected magic number 0xf97cff8c
[  136.067152][ T7523] loop2: detected capacity change from 0 to 8192
[  136.073618][ T7517] SELinux: failed to load policy
[  136.082734][ T7523] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  136.478776][ T7544] lo speed is unknown, defaulting to 1000
[  136.506800][ T7546] loop5: detected capacity change from 0 to 128
[  136.550838][ T7546] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  136.573823][ T7546] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.621366][ T7544] lo speed is unknown, defaulting to 1000
[  136.809157][ T7553] loop3: detected capacity change from 0 to 256
[  136.953621][ T7568] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  136.964258][ T7568] SELinux: failed to load policy
[  137.009139][ T7574] loop3: detected capacity change from 0 to 512
[  137.020362][ T7570] syzkaller0: tun_chr_ioctl cmd 35111
[  137.043152][ T7574] EXT4-fs (loop3): 1 orphan inode deleted
[  137.056632][ T7578] netlink: 3672 bytes leftover after parsing attributes in process `syz.2.1158'.
[  137.067607][  T385] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  137.082333][ T7574] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.098344][ T7574] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.112761][ T7580] rdma_op ffff888119b9d580 conn xmit_rdma 0000000000000000
[  137.123077][ T7580] sit0: entered promiscuous mode
[  137.132219][ T7580] netlink: 'syz.1.1157': attribute type 1 has an invalid length.
[  137.140447][ T7580] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1157'.
[  137.158087][ T3317] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /241/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.180775][ T7582] netlink: 3672 bytes leftover after parsing attributes in process `syz.0.1159'.
[  137.185182][ T3317] EXT4-fs error (device loop3): ext4_empty_dir:3084: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.195199][ T4485] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.235719][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.256989][ T3317] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /241/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.259038][ T7593] loop5: detected capacity change from 0 to 128
[  137.285579][ T7593] EXT4-fs: Ignoring removed nobh option
[  137.310260][ T7597] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1163'.
[  137.320544][ T7599] x_tables: ip6_tables: mh match: only valid for protocol 135
[  137.329614][ T7593] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  137.331440][ T7601] FAULT_INJECTION: forcing a failure.
[  137.331440][ T7601] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.345411][ T7597] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1163'.
[  137.355683][ T7601] CPU: 0 UID: 0 PID: 7601 Comm: syz.0.1165 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  137.355729][ T7601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.355747][ T7601] Call Trace:
[  137.355758][ T7601]  <TASK>
[  137.355769][ T7601]  __dump_stack+0x1d/0x30
[  137.355841][ T7601]  dump_stack_lvl+0xe8/0x140
[  137.355869][ T7601]  dump_stack+0x15/0x1b
[  137.355892][ T7601]  should_fail_ex+0x265/0x280
[  137.356021][ T7601]  should_fail+0xb/0x20
[  137.356147][ T7601]  should_fail_usercopy+0x1a/0x20
[  137.356203][ T7601]  _copy_from_user+0x1c/0xb0
[  137.356230][ T7601]  ___sys_sendmsg+0xc1/0x1d0
[  137.356293][ T7601]  __x64_sys_sendmsg+0xd4/0x160
[  137.356387][ T7601]  x64_sys_call+0x2999/0x2fb0
[  137.356468][ T7601]  do_syscall_64+0xd2/0x200
[  137.356491][ T7601]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.356527][ T7601]  ? clear_bhb_loop+0x40/0x90
[  137.356555][ T7601]  ? clear_bhb_loop+0x40/0x90
[  137.356594][ T7601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.356622][ T7601] RIP: 0033:0x7f6d6f28e929
[  137.356643][ T7601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.356684][ T7601] RSP: 002b:00007f6d6d8f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.356710][ T7601] RAX: ffffffffffffffda RBX: 00007f6d6f4b5fa0 RCX: 00007f6d6f28e929
[  137.356726][ T7601] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[  137.356743][ T7601] RBP: 00007f6d6d8f7090 R08: 0000000000000000 R09: 0000000000000000
[  137.356829][ T7601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.356844][ T7601] R13: 0000000000000000 R14: 00007f6d6f4b5fa0 R15: 00007ffe6fd0f0d8
[  137.356876][ T7601]  </TASK>
[  137.360433][ T7593] ext4 filesystem being mounted at /127/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  137.399070][ T3317] EXT4-fs error (device loop3): ext4_empty_dir:3084: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.544619][ T7605] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1168'.
[  137.560568][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.610836][ T4485] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.612444][ T3317] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /241/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.633025][ T7612] syzkaller0: tun_chr_ioctl cmd 35111
[  137.642335][ T3317] EXT4-fs error (device loop3): ext4_empty_dir:3084: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.667753][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.679988][ T3317] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /241/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.702678][ T3317] EXT4-fs error (device loop3): ext4_empty_dir:3084: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.740166][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.752241][ T3317] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /241/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  137.772160][ T7616] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  137.785752][ T7616] SELinux: failed to load policy
[  137.790170][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.806374][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.818948][ T7619] netlink: 3672 bytes leftover after parsing attributes in process `syz.2.1173'.
[  137.830771][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.849016][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.861065][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  137.874608][ T3317] EXT4-fs warning (device loop3): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[  138.007056][ T7530] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.860214][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  138.860228][   T29] audit: type=1400 audit(1752409816.131:4719): avc:  denied  { ioctl } for  pid=7637 comm="syz.0.1180" path="socket:[16857]" dev="sockfs" ino=16857 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  139.282784][ T7645] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1183'.
[  139.297140][   T29] audit: type=1400 audit(1752409816.571:4720): avc:  denied  { bind } for  pid=7646 comm="syz.0.1184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  139.318311][   T29] audit: type=1400 audit(1752409816.571:4721): avc:  denied  { setopt } for  pid=7646 comm="syz.0.1184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  139.344843][ T7647] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.379618][ T7650] loop5: detected capacity change from 0 to 512
[  139.410898][ T5651] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.440864][ T7647] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.454703][ T7654] syzkaller0: tun_chr_ioctl cmd 35111
[  139.466789][ T5651] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.488574][ T7647] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.513023][   T29] audit: type=1400 audit(1752409816.781:4722): avc:  denied  { mounton } for  pid=7656 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  139.576420][ T5651] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.620292][ T7647] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.740568][ T5651] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.886064][ T5651] bond0 (unregistering): (slave geneve1): Releasing backup interface
[  139.928839][ T5651] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  139.941062][ T7673] x_tables: duplicate underflow at hook 1
[  139.948459][ T5651] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  139.959386][ T5651] bond0 (unregistering): Released all slaves
[  139.968582][ T5651] bond2 (unregistering): Released all slaves
[  139.996920][ T7647] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.017510][ T7647] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.092773][ T7647] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.101324][ T7656] lo speed is unknown, defaulting to 1000
[  140.110610][ T5651] hsr_slave_0: left promiscuous mode
[  140.121820][ T5651] hsr_slave_1: left promiscuous mode
[  140.131967][ T5651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  140.139749][ T5651] batman_adv: batadv0: Removing interface: batadv_slave_0
[  140.149788][ T5651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  140.157334][ T5651] batman_adv: batadv0: Removing interface: batadv_slave_1
[  140.169565][ T7683] loop5: detected capacity change from 0 to 512
[  140.171702][   T29] audit: type=1400 audit(1752409817.441:4723): avc:  denied  { connect } for  pid=7680 comm="syz.2.1196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  140.199640][ T7683] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.208527][ T5651] veth1_macvtap: left promiscuous mode
[  140.214348][ T5651] veth0_macvtap: left promiscuous mode
[  140.236384][ T7685] futex_wake_op: syz.2.1197 tries to shift op by -1; fix this program
[  140.246986][   T29] audit: type=1326 audit(1752409817.531:4724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7684 comm="syz.2.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  140.272279][   T29] audit: type=1326 audit(1752409817.531:4725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7684 comm="syz.2.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  140.296990][   T29] audit: type=1326 audit(1752409817.531:4726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7684 comm="syz.2.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  140.322305][   T29] audit: type=1326 audit(1752409817.531:4727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7684 comm="syz.2.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  140.349247][   T29] audit: type=1326 audit(1752409817.531:4728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7684 comm="syz.2.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  140.388344][ T7683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.401578][ T5651] team0 (unregistering): Port device team_slave_1 removed
[  140.404633][ T7683] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.425388][ T5651] team0 (unregistering): Port device team_slave_0 removed
[  140.438253][ T7683] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  140.500223][ T7647] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.513727][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.520114][ T7656] lo speed is unknown, defaulting to 1000
[  140.606840][ T7656] chnl_net:caif_netlink_parms(): no params data found
[  140.695833][ T7656] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.703334][ T7656] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.743924][ T7656] bridge_slave_0: entered allmulticast mode
[  140.750964][ T7656] bridge_slave_0: entered promiscuous mode
[  140.758055][ T7656] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.758888][ T7712] SELinux: failed to load policy
[  140.765225][ T7656] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.779216][ T7656] bridge_slave_1: entered allmulticast mode
[  140.786596][ T7656] bridge_slave_1: entered promiscuous mode
[  140.797939][ T7715] futex_wake_op: syz.5.1207 tries to shift op by -1; fix this program
[  140.829716][ T7656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.870198][ T7656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.901189][ T7656] team0: Port device team_slave_0 added
[  140.908943][ T7723] FAULT_INJECTION: forcing a failure.
[  140.908943][ T7723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.916620][ T7656] team0: Port device team_slave_1 added
[  140.922714][ T7723] CPU: 0 UID: 0 PID: 7723 Comm: syz.5.1210 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  140.922773][ T7723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.922791][ T7723] Call Trace:
[  140.922801][ T7723]  <TASK>
[  140.922811][ T7723]  __dump_stack+0x1d/0x30
[  140.922918][ T7723]  dump_stack_lvl+0xe8/0x140
[  140.922943][ T7723]  dump_stack+0x15/0x1b
[  140.922966][ T7723]  should_fail_ex+0x265/0x280
[  140.923006][ T7723]  should_fail+0xb/0x20
[  140.923058][ T7723]  should_fail_usercopy+0x1a/0x20
[  140.923180][ T7723]  _copy_from_user+0x1c/0xb0
[  140.923207][ T7723]  ___sys_sendmsg+0xc1/0x1d0
[  140.923284][ T7723]  __x64_sys_sendmsg+0xd4/0x160
[  140.923389][ T7723]  x64_sys_call+0x2999/0x2fb0
[  140.923420][ T7723]  do_syscall_64+0xd2/0x200
[  140.923443][ T7723]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  140.923479][ T7723]  ? clear_bhb_loop+0x40/0x90
[  140.923537][ T7723]  ? clear_bhb_loop+0x40/0x90
[  140.923568][ T7723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.923597][ T7723] RIP: 0033:0x7f1189f6e929
[  140.923616][ T7723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.923641][ T7723] RSP: 002b:00007f11885d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.923686][ T7723] RAX: ffffffffffffffda RBX: 00007f118a195fa0 RCX: 00007f1189f6e929
[  140.923704][ T7723] RDX: 0000000000000000 RSI: 0000200000002540 RDI: 0000000000000003
[  140.923780][ T7723] RBP: 00007f11885d7090 R08: 0000000000000000 R09: 0000000000000000
[  140.923796][ T7723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.923812][ T7723] R13: 0000000000000000 R14: 00007f118a195fa0 R15: 00007ffe454381b8
[  140.923837][ T7723]  </TASK>
[  141.014387][ T7727] loop5: detected capacity change from 0 to 512
[  141.125620][ T7656] batman_adv: batadv0: Adding interface: batadv_slave_0
[  141.132689][ T7656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.159568][ T7656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  141.196007][ T7731] lo speed is unknown, defaulting to 1000
[  141.216251][ T7727] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  141.235190][ T7734] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7734 comm=syz.0.1213
[  141.259492][ T7656] batman_adv: batadv0: Adding interface: batadv_slave_1
[  141.266622][ T7656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.294190][ T7656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  141.334448][ T7727] EXT4-fs (loop5): mount failed
[  141.342478][ T7736] syzkaller0: tun_chr_ioctl cmd 35111
[  141.368510][ T7731] lo speed is unknown, defaulting to 1000
[  141.379751][ T7656] hsr_slave_0: entered promiscuous mode
[  141.386408][ T7656] hsr_slave_1: entered promiscuous mode
[  141.392640][ T7656] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  141.400924][ T7656] Cannot create hsr debugfs directory
[  141.614471][ T7656] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  141.628322][ T7656] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  141.651956][ T7656] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  141.671333][ T7749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.682323][ T7656] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  141.691007][ T7749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.752510][ T7757] __nla_validate_parse: 1 callbacks suppressed
[  141.752531][ T7757] netlink: 3672 bytes leftover after parsing attributes in process `syz.5.1220'.
[  141.774244][ T7656] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.794012][ T7656] 8021q: adding VLAN 0 to HW filter on device team0
[  141.810642][ T5651] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.821154][ T5651] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.846780][ T7656] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  141.859669][ T7656] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  141.879093][ T5651] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.886409][ T5651] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.957716][ T7656] 8021q: adding VLAN 0 to HW filter on device batadv0
[  142.147961][ T7779] loop5: detected capacity change from 0 to 512
[  142.165998][ T7781] lo speed is unknown, defaulting to 1000
[  142.174108][ T7656] veth0_vlan: entered promiscuous mode
[  142.183856][ T7656] veth1_vlan: entered promiscuous mode
[  142.206067][ T7781] lo speed is unknown, defaulting to 1000
[  142.224272][ T7656] veth0_macvtap: entered promiscuous mode
[  142.240283][ T7656] veth1_macvtap: entered promiscuous mode
[  142.254726][ T7656] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.267815][ T7656] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.278848][ T7656] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.288622][ T7656] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.299056][ T7656] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.309169][ T7656] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.388666][ T7792] SELinux: failed to load policy
[  142.398483][ T7796] x_tables: ip6_tables: mh match: only valid for protocol 135
[  142.471577][ T7798] kernel read not supported for file /policy (pid: 7798 comm: syz.2.1227)
[  142.486252][ T7802] vhci_hcd: invalid port number 96
[  142.491977][ T7802] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  142.517185][ T7802] bridge1: entered promiscuous mode
[  142.523097][ T7802] bridge1: entered allmulticast mode
[  142.533385][ T7802] team0: Port device bridge1 added
[  142.545580][ T7809] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  142.894770][ T7832] sctp: [Deprecated]: syz.1.1241 (pid 7832) Use of struct sctp_assoc_value in delayed_ack socket option.
[  142.894770][ T7832] Use struct sctp_sack_info instead
[  142.945470][ T7837] vhci_hcd: invalid port number 96
[  142.950882][ T7837] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  143.001921][ T7832] netlink: 'syz.1.1241': attribute type 10 has an invalid length.
[  143.010022][ T7832] ipvlan0: entered allmulticast mode
[  143.015615][ T7832] veth0_vlan: entered allmulticast mode
[  143.255029][ T7853] FAULT_INJECTION: forcing a failure.
[  143.255029][ T7853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.270277][ T7853] CPU: 1 UID: 0 PID: 7853 Comm: syz.2.1249 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  143.270313][ T7853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.270329][ T7853] Call Trace:
[  143.270338][ T7853]  <TASK>
[  143.270366][ T7853]  __dump_stack+0x1d/0x30
[  143.270445][ T7853]  dump_stack_lvl+0xe8/0x140
[  143.270463][ T7853]  dump_stack+0x15/0x1b
[  143.270478][ T7853]  should_fail_ex+0x265/0x280
[  143.270574][ T7853]  should_fail+0xb/0x20
[  143.270658][ T7853]  should_fail_usercopy+0x1a/0x20
[  143.270751][ T7853]  _copy_from_user+0x1c/0xb0
[  143.270770][ T7853]  ___sys_sendmsg+0xc1/0x1d0
[  143.270826][ T7853]  __sys_sendmmsg+0x178/0x300
[  143.270869][ T7853]  __x64_sys_sendmmsg+0x57/0x70
[  143.270973][ T7853]  x64_sys_call+0x2f2f/0x2fb0
[  143.271006][ T7853]  do_syscall_64+0xd2/0x200
[  143.271028][ T7853]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  143.271059][ T7853]  ? clear_bhb_loop+0x40/0x90
[  143.271093][ T7853]  ? clear_bhb_loop+0x40/0x90
[  143.271113][ T7853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.271134][ T7853] RIP: 0033:0x7f5edcb8e929
[  143.271153][ T7853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.271227][ T7853] RSP: 002b:00007f5edb1f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  143.271246][ T7853] RAX: ffffffffffffffda RBX: 00007f5edcdb5fa0 RCX: 00007f5edcb8e929
[  143.271265][ T7853] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  143.271277][ T7853] RBP: 00007f5edb1f7090 R08: 0000000000000000 R09: 0000000000000000
[  143.271291][ T7853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.271307][ T7853] R13: 0000000000000000 R14: 00007f5edcdb5fa0 R15: 00007fff1abcef68
[  143.271330][ T7853]  </TASK>
[  143.502875][ T7855] loop5: detected capacity change from 0 to 1024
[  143.510237][ T7855] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  143.525711][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  143.534658][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  143.544492][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  143.559663][ T7857] netlink: 200 bytes leftover after parsing attributes in process `syz.2.1251'.
[  143.569711][ T7857] 9pnet_fd: Insufficient options for proto=fd
[  143.792275][ T7863] loop5: detected capacity change from 0 to 512
[  143.853415][ T7866] SELinux: failed to load policy
[  143.952631][   T29] kauditd_printk_skb: 180 callbacks suppressed
[  143.952649][   T29] audit: type=1400 audit(1752409821.221:4908): avc:  denied  { create } for  pid=7868 comm="syz.2.1256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  144.021213][   T29] audit: type=1400 audit(1752409821.261:4909): avc:  denied  { setopt } for  pid=7868 comm="syz.2.1256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  144.043579][   T29] audit: type=1400 audit(1752409821.261:4910): avc:  denied  { write } for  pid=7868 comm="syz.2.1256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  144.139327][ T7880] netlink: 3672 bytes leftover after parsing attributes in process `syz.6.1261'.
[  144.161626][ T7882] syzkaller0: tun_chr_ioctl cmd 35111
[  144.198385][ T7890] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[  144.258594][ T7894] loop6: detected capacity change from 0 to 512
[  144.272517][ T7894] EXT4-fs (loop6): orphan cleanup on readonly fs
[  144.285594][ T7894] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1266: bg 0: block 248: padding at end of block bitmap is not set
[  144.304050][ T7894] Quota error (device loop6): write_blk: dquota write failed
[  144.311801][ T7894] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  144.322062][ T7894] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.1266: Failed to acquire dquot type 1
[  144.335004][ T7894] EXT4-fs (loop6): 1 truncate cleaned up
[  144.343320][   T29] audit: type=1326 audit(1752409821.611:4911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7897 comm="syz.1.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  144.343531][ T7894] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.369640][   T29] audit: type=1326 audit(1752409821.611:4912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7897 comm="syz.1.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  144.409722][   T29] audit: type=1326 audit(1752409821.611:4913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7897 comm="syz.1.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  144.435341][   T29] audit: type=1326 audit(1752409821.611:4914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7897 comm="syz.1.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  144.459322][   T29] audit: type=1326 audit(1752409821.611:4915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7897 comm="syz.1.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ed8a9e929 code=0x7ffc0000
[  144.521825][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.545109][ T7906] vhci_hcd: invalid port number 96
[  144.550491][ T7906] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  144.611744][ T7922] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1278'.
[  144.623245][ T7922] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1278'.
[  144.634490][ T7919] loop6: detected capacity change from 0 to 1024
[  144.645116][ T7923] syzkaller0: tun_chr_ioctl cmd 35111
[  144.652597][ T7919] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  144.658723][ T7925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1279'.
[  144.674580][ T7925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1279'.
[  144.768027][ T7932] loop6: detected capacity change from 0 to 512
[  144.777821][ T7932] EXT4-fs (loop6): orphan cleanup on readonly fs
[  144.785690][ T7932] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1281: bg 0: block 248: padding at end of block bitmap is not set
[  144.802557][ T7932] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.1281: Failed to acquire dquot type 1
[  144.821937][ T7932] EXT4-fs (loop6): 1 truncate cleaned up
[  144.830492][ T7932] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.865099][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.936919][ T7952] loop5: detected capacity change from 0 to 512
[  144.941395][ T7954] loop6: detected capacity change from 0 to 512
[  144.952411][ T7954] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.953442][ T7952] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.976705][ T7952] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.991416][ T7952] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.012542][ T7954] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.026657][ T7954] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.040770][ T7952] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  145.060930][ T7954] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  145.144064][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.170612][ T7977] FAULT_INJECTION: forcing a failure.
[  145.170612][ T7977] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.170647][ T7977] CPU: 0 UID: 0 PID: 7977 Comm: syz.5.1296 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  145.170718][ T7977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  145.170733][ T7977] Call Trace:
[  145.170740][ T7977]  <TASK>
[  145.170747][ T7977]  __dump_stack+0x1d/0x30
[  145.170768][ T7977]  dump_stack_lvl+0xe8/0x140
[  145.170786][ T7977]  dump_stack+0x15/0x1b
[  145.170821][ T7977]  should_fail_ex+0x265/0x280
[  145.170858][ T7977]  should_fail+0xb/0x20
[  145.170891][ T7977]  should_fail_usercopy+0x1a/0x20
[  145.170928][ T7977]  _copy_to_user+0x20/0xa0
[  145.171004][ T7977]  simple_read_from_buffer+0xb5/0x130
[  145.171101][ T7977]  proc_fail_nth_read+0x100/0x140
[  145.171142][ T7977]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  145.171186][ T7977]  vfs_read+0x19d/0x6f0
[  145.171282][ T7977]  ? __rcu_read_unlock+0x4f/0x70
[  145.171308][ T7977]  ? __fget_files+0x184/0x1c0
[  145.171330][ T7977]  ? ksys_read+0x6f/0x1a0
[  145.171369][ T7977]  ksys_read+0xda/0x1a0
[  145.171443][ T7977]  __x64_sys_read+0x40/0x50
[  145.171482][ T7977]  x64_sys_call+0x2d77/0x2fb0
[  145.171533][ T7977]  do_syscall_64+0xd2/0x200
[  145.171554][ T7977]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  145.171670][ T7977]  ? clear_bhb_loop+0x40/0x90
[  145.171696][ T7977]  ? clear_bhb_loop+0x40/0x90
[  145.171722][ T7977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.171748][ T7977] RIP: 0033:0x7f1189f6d33c
[  145.171765][ T7977] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  145.171925][ T7977] RSP: 002b:00007f11885d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  145.172055][ T7977] RAX: ffffffffffffffda RBX: 00007f118a195fa0 RCX: 00007f1189f6d33c
[  145.172071][ T7977] RDX: 000000000000000f RSI: 00007f11885d70a0 RDI: 0000000000000004
[  145.172141][ T7977] RBP: 00007f11885d7090 R08: 0000000000000000 R09: 0000000000000000
[  145.172153][ T7977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.172165][ T7977] R13: 0000000000000000 R14: 00007f118a195fa0 R15: 00007ffe454381b8
[  145.172186][ T7977]  </TASK>
[  145.269585][ T7989] sd 0:0:1:0: device reset
[  145.289699][ T7978] SELinux: failed to load policy
[  145.474506][ T7989] futex_wake_op: syz.5.1299 tries to shift op by 144; fix this program
[  145.620998][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.673330][ T8018] SELinux: failed to load policy
[  145.681871][ T8021] SELinux:  policydb magic number 0x30303030 does not match expected magic number 0xf97cff8c
[  145.681915][ T8021] SELinux: failed to load policy
[  145.722803][ T8024] loop6: detected capacity change from 0 to 256
[  145.833686][ T8036] batman_adv: batadv0: Removing interface: team0
[  145.843859][ T8036] bridge_slave_0: left allmulticast mode
[  145.849818][ T8036] bridge_slave_0: left promiscuous mode
[  145.855663][ T8036] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.858628][ T8042] loop6: detected capacity change from 0 to 512
[  145.870348][ T8036] bridge_slave_1: left allmulticast mode
[  145.876178][ T8036] bridge_slave_1: left promiscuous mode
[  145.876417][ T8042] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.882080][ T8036] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.900648][ T8036] bond0: (slave bond_slave_0): Releasing backup interface
[  145.909865][ T8036] bond0: (slave bond_slave_1): Releasing backup interface
[  145.911426][ T8042] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.931677][ T8042] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.945099][ T8036] team0: Port device team_slave_0 removed
[  145.953781][ T8036] team0: Port device team_slave_1 removed
[  145.957884][ T8042] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  145.959894][ T8036] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.983382][ T8036] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.032046][ T8049] netlink: 'syz.2.1324': attribute type 1 has an invalid length.
[  146.041388][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.072311][ T8053] loop6: detected capacity change from 0 to 1024
[  146.080199][ T8053] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  146.122099][ T8059] loop5: detected capacity change from 0 to 512
[  146.130163][ T8059] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  146.152767][ T8059] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.171125][ T8059] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.188042][ T8059] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  146.207584][ T8065] loop6: detected capacity change from 0 to 2048
[  146.229559][ T8065] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.256943][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.366538][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.406459][ T8077] futex_wake_op: syz.5.1332 tries to shift op by -1; fix this program
[  146.457906][ T8081] loop5: detected capacity change from 0 to 512
[  146.467053][ T8081] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  146.501604][ T8081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.514666][ T8081] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.555574][ T8081] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  146.569169][ T8087] SELinux: failed to load policy
[  146.629212][ T8090] loop6: detected capacity change from 0 to 1024
[  146.636883][ T8090] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  146.725490][ T8098] loop6: detected capacity change from 0 to 2048
[  146.771402][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.790466][ T8098] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.821908][ T8115] loop5: detected capacity change from 0 to 512
[  146.833115][ T8115] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  146.854170][ T8115] EXT4-fs (loop5): 1 truncate cleaned up
[  146.860340][ T8115] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.880700][ T8124] vhci_hcd: invalid port number 23
[  146.886812][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.898110][ T8115] EXT4-fs (loop5): Online resizing not supported with sparse_super2
[  146.950481][ T8115] hub 6-0:1.0: USB hub found
[  146.956117][ T8115] hub 6-0:1.0: 8 ports detected
[  147.032826][ T8127] Q�6��\b��Y�4��: renamed from lo
[  147.072463][ T8143] __nla_validate_parse: 7 callbacks suppressed
[  147.072479][ T8143] netlink: 3672 bytes leftover after parsing attributes in process `syz.6.1360'.
[  147.196642][ T8158] loop6: detected capacity change from 0 to 128
[  147.206497][ T8158] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities
[  147.227164][ T3388] IPVS: starting estimator thread 0...
[  147.228789][ T8169] FAULT_INJECTION: forcing a failure.
[  147.228789][ T8169] name failslab, interval 1, probability 0, space 0, times 0
[  147.245692][ T8169] CPU: 0 UID: 0 PID: 8169 Comm: syz.0.1367 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  147.245721][ T8169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.245733][ T8169] Call Trace:
[  147.245801][ T8169]  <TASK>
[  147.245810][ T8169]  __dump_stack+0x1d/0x30
[  147.245849][ T8169]  dump_stack_lvl+0xe8/0x140
[  147.245867][ T8169]  dump_stack+0x15/0x1b
[  147.245933][ T8169]  should_fail_ex+0x265/0x280
[  147.246027][ T8169]  should_failslab+0x8c/0xb0
[  147.246049][ T8169]  __kvmalloc_node_noprof+0x123/0x4e0
[  147.246076][ T8169]  ? nf_hook_entries_grow+0x1bc/0x450
[  147.246110][ T8169]  nf_hook_entries_grow+0x1bc/0x450
[  147.246224][ T8169]  __nf_register_net_hook+0x18e/0x480
[  147.246313][ T8169]  nf_register_net_hook+0x88/0x130
[  147.246342][ T8169]  nf_register_net_hooks+0x44/0x150
[  147.246377][ T8169]  nf_ct_netns_do_get+0x2b1/0x380
[  147.246468][ T8169]  nf_ct_netns_get+0x87/0xc0
[  147.246504][ T8169]  __ip_vs_update_dest+0x3cf/0xa00
[  147.246544][ T8169]  ip_vs_add_dest+0xc18/0xd90
[  147.246636][ T8169]  ? selinux_capable+0x1f9/0x270
[  147.246667][ T8169]  ? should_fail_ex+0xdb/0x280
[  147.246798][ T8169]  do_ip_vs_set_ctl+0x7dd/0x8c0
[  147.246884][ T8169]  ? do_ip_setsockopt+0x1af3/0x2240
[  147.246919][ T8169]  nf_setsockopt+0x196/0x1b0
[  147.247020][ T8169]  ip_setsockopt+0x102/0x110
[  147.247055][ T8169]  sctp_setsockopt+0x116/0xe30
[  147.247088][ T8169]  sock_common_setsockopt+0x69/0x80
[  147.247116][ T8169]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  147.247242][ T8169]  __sys_setsockopt+0x184/0x200
[  147.247347][ T8169]  __x64_sys_setsockopt+0x64/0x80
[  147.247385][ T8169]  x64_sys_call+0x2bd5/0x2fb0
[  147.247406][ T8169]  do_syscall_64+0xd2/0x200
[  147.247423][ T8169]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.247505][ T8169]  ? clear_bhb_loop+0x40/0x90
[  147.247526][ T8169]  ? clear_bhb_loop+0x40/0x90
[  147.247552][ T8169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.247581][ T8169] RIP: 0033:0x7f6d6f28e929
[  147.247599][ T8169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.247622][ T8169] RSP: 002b:00007f6d6d8f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.247643][ T8169] RAX: ffffffffffffffda RBX: 00007f6d6f4b5fa0 RCX: 00007f6d6f28e929
[  147.247655][ T8169] RDX: 0000000000000487 RSI: 0000000000000000 RDI: 0000000000000004
[  147.247666][ T8169] RBP: 00007f6d6d8f7090 R08: 0000000000000044 R09: 0000000000000000
[  147.247689][ T8169] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.247704][ T8169] R13: 0000000000000000 R14: 00007f6d6f4b5fa0 R15: 00007ffe6fd0f0d8
[  147.247727][ T8169]  </TASK>
[  147.564720][ T8174] syzkaller0: tun_chr_ioctl cmd 35111
[  147.594638][ T8170] IPVS: using max 2352 ests per chain, 117600 per kthread
[  147.756284][ T8192] vhci_hcd: default hub control req: d307 v0000 i0004 l0
[  147.819120][ T8196] SELinux: failed to load policy
[  147.947888][ T8211] loop6: detected capacity change from 0 to 512
[  147.981131][ T8218] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8218 comm=syz.6.1380
[  148.528602][ T8231] SELinux: failed to load policy
[  148.534045][ T8238] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  148.559132][ T8238] SELinux: failed to load policy
[  148.617229][ T8246] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.622036][   T23] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  148.637318][   T23] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  148.646007][   T23] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  148.680938][ T8252] serio: Serial port ptm0
[  148.693805][ T8253] netlink: 'syz.1.1387': attribute type 49 has an invalid length.
[  148.716947][   T23] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  148.759938][ T8246] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.946723][ T8246] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.111630][ T8246] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.255259][ T8246] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.446065][   T29] kauditd_printk_skb: 271 callbacks suppressed
[  149.446084][   T29] audit: type=1400 audit(1752409826.721:5185): avc:  denied  { unmount } for  pid=3321 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  149.513778][ T8246] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.570106][ T8246] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.600016][ T8246] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.762410][   T29] audit: type=1400 audit(1752409827.031:5186): avc:  denied  { listen } for  pid=8288 comm="syz.6.1395" lport=20002 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  149.795020][   T29] audit: type=1400 audit(1752409827.071:5187): avc:  denied  { write } for  pid=8284 comm="syz.1.1394" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  149.874909][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.121292][ T8317] loop6: detected capacity change from 0 to 512
[  150.161275][ T8317] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.185594][ T8314] lo speed is unknown, defaulting to 1000
[  150.217164][ T8318] SELinux: failed to load policy
[  150.228988][ T8323] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8323 comm=syz.1.1398
[  150.265250][ T8317] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.317402][ T8317] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.329734][ T8330] loop5: detected capacity change from 0 to 512
[  150.339418][ T8314] lo speed is unknown, defaulting to 1000
[  150.365822][ T8317] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  150.382132][ T8330] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.441765][ T8330] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.488207][   T29] audit: type=1400 audit(1752409827.761:5188): avc:  denied  { append } for  pid=8329 comm="syz.5.1403" path="/162/file1/hugetlb.1GB.usage_in_bytes" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  150.552413][   T29] audit: type=1400 audit(1752409827.821:5189): avc:  denied  { setopt } for  pid=8336 comm="syz.1.1405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  150.556069][   T29] audit: type=1400 audit(1752409827.821:5190): avc:  denied  { bind } for  pid=8336 comm="syz.1.1405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  150.610439][   T29] audit: type=1400 audit(1752409827.871:5191): avc:  denied  { mounton } for  pid=8329 comm="syz.5.1403" path="/162/file1/bus" dev="loop5" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  150.651408][   T29] audit: type=1400 audit(1752409827.921:5192): avc:  denied  { accept } for  pid=8336 comm="syz.1.1405" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  150.701255][ T8332] netlink: 124 bytes leftover after parsing attributes in process `syz.2.1404'.
[  150.722453][   T29] audit: type=1400 audit(1752409827.991:5193): avc:  denied  { connect } for  pid=8331 comm="syz.2.1404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  150.750118][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.791744][   T29] audit: type=1400 audit(1752409828.061:5194): avc:  denied  { write } for  pid=8340 comm="syz.6.1406" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  150.821652][ T8343] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1407'.
[  150.836146][ T8343] block device autoloading is deprecated and will be removed.
[  150.851399][ T8341] loop6: detected capacity change from 0 to 512
[  150.859134][ T8341] EXT4-fs: Ignoring removed i_version option
[  150.866389][ T8341] EXT4-fs: Ignoring removed nobh option
[  150.872727][ T8341] ext3: Unknown parameter 'dont_hash'
[  151.013435][ T8358] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1413'.
[  151.204434][ T4485] EXT4-fs error (device loop5): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  151.219033][ T4485] EXT4-fs error (device loop5): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  151.593002][ T8371] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1419'.
[  151.602578][ T8371] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1419'.
[  151.677148][ T8372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=8372 comm=syz.1.1419
[  151.692143][ T8372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=8372 comm=syz.1.1419
[  151.706820][ T8372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=8372 comm=syz.1.1419
[  151.863685][ T8382] loop1: detected capacity change from 0 to 512
[  151.873014][ T4485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.887923][ T3800] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.908494][ T8382] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1424: corrupted in-inode xattr: invalid ea_ino
[  151.923931][ T8382] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1424: couldn't read orphan inode 15 (err -117)
[  151.938585][ T8382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.001065][ T3800] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.036591][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.048032][ T3800] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.123383][ T3800] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.227497][ T8395] loop1: detected capacity change from 0 to 512
[  152.234151][ T8395] EXT4-fs: Ignoring removed oldalloc option
[  152.278863][ T8395] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  152.323522][ T3800] bridge_slave_1: left allmulticast mode
[  152.329718][ T3800] bridge_slave_1: left promiscuous mode
[  152.336021][ T3800] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.352203][ T8395] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1429: invalid indirect mapped block 4294967295 (level 0)
[  152.375110][ T3800] bridge_slave_0: left allmulticast mode
[  152.381149][ T3800] bridge_slave_0: left promiscuous mode
[  152.387315][ T3800] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.397557][ T8395] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1429: invalid indirect mapped block 4294967295 (level 1)
[  152.424106][ T8395] EXT4-fs (loop1): 1 orphan inode deleted
[  152.430511][ T8395] EXT4-fs (loop1): 1 truncate cleaned up
[  152.438512][ T8395] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.508220][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.546994][ T8410] loop1: detected capacity change from 0 to 1024
[  152.577094][ T8410] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.653393][ T3800] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.677795][ T3800] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.690672][ T8413] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1431: Allocating blocks 385-513 which overlap fs metadata
[  152.717129][ T8413] EXT4-fs (loop1): pa ffff888106bf2310: logic 16, phys. 129, len 24
[  152.727582][ T8413] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  152.765682][ T3800] bond0 (unregistering): Released all slaves
[  152.790938][ T8390] lo speed is unknown, defaulting to 1000
[  152.801915][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.872833][ T8390] lo speed is unknown, defaulting to 1000
[  152.918981][ T3800] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.926884][ T3800] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.938502][ T8415] loop1: detected capacity change from 0 to 512
[  152.945614][ T3800] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.954257][ T3800] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.963682][ T8415] EXT4-fs: Ignoring removed nobh option
[  152.973654][ T3800] veth1_macvtap: left promiscuous mode
[  152.979984][ T3800] veth0_macvtap: left promiscuous mode
[  152.988763][ T3800] veth1_vlan: left promiscuous mode
[  152.998103][ T3800] veth0_vlan: left promiscuous mode
[  153.070266][ T8415] EXT4-fs error (device loop1): ext4_init_orphan_info:585: comm syz.1.1432: inode #0: comm syz.1.1432: iget: illegal inode #
[  153.116897][ T8415] EXT4-fs (loop1): get orphan inode failed
[  153.144815][ T8415] EXT4-fs (loop1): mount failed
[  153.161617][ T3800] team0 (unregistering): Port device team_slave_1 removed
[  153.188068][ T3800] team0 (unregistering): Port device team_slave_0 removed
[  153.198491][ T8424] loop6: detected capacity change from 0 to 1024
[  153.234350][ T5601] smc: removing ib device syz!
[  153.259792][ T8427] loop1: detected capacity change from 0 to 512
[  153.279881][ T8427] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.286838][ T8427] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.286941][ T8427] ext4 filesystem being mounted at /344/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.288521][ T8427] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  153.315542][ T8429] loop6: detected capacity change from 0 to 1024
[  153.346389][ T8429] blktrace: Concurrent blktraces are not allowed on sg0
[  153.506244][ T8390] chnl_net:caif_netlink_parms(): no params data found
[  153.650914][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.691533][ T8443] syzkaller0: tun_chr_ioctl cmd 35111
[  153.800514][ T8390] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.808236][ T8390] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.875189][ T8390] bridge_slave_0: entered allmulticast mode
[  153.913716][ T8390] bridge_slave_0: entered promiscuous mode
[  153.920850][ T8462] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.937342][ T8390] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.944793][ T8390] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.956170][ T8462] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.962699][ T8390] bridge_slave_1: entered allmulticast mode
[  153.977457][ T8390] bridge_slave_1: entered promiscuous mode
[  154.013548][ T8390] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.042315][ T8390] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.104939][ T8390] team0: Port device team_slave_0 added
[  154.127817][ T8390] team0: Port device team_slave_1 added
[  154.187786][ T8390] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.195046][ T8390] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.225389][ T8390] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.253153][ T8390] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.261618][ T8390] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.289779][ T8390] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.336154][ T8390] hsr_slave_0: entered promiscuous mode
[  154.353060][ T8390] hsr_slave_1: entered promiscuous mode
[  154.374681][ T8390] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.383797][ T8390] Cannot create hsr debugfs directory
[  154.533820][ T8484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1455'.
[  154.545480][ T8488] loop1: detected capacity change from 0 to 512
[  154.558579][ T8488] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  154.575849][ T8488] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1457: invalid indirect mapped block 4294967295 (level 0)
[  154.591504][   T29] kauditd_printk_skb: 128 callbacks suppressed
[  154.591518][   T29] audit: type=1400 audit(1752409831.851:5323): avc:  denied  { read write } for  pid=8486 comm="syz.0.1456" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  154.592268][ T8390] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  154.600599][   T29] audit: type=1400 audit(1752409831.851:5324): avc:  denied  { open } for  pid=8486 comm="syz.0.1456" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  154.634417][ T8488] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1457: invalid indirect mapped block 4294967295 (level 1)
[  154.640589][   T29] audit: type=1326 audit(1752409831.911:5325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.707859][   T29] audit: type=1326 audit(1752409831.911:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.710753][ T8488] EXT4-fs (loop1): 1 orphan inode deleted
[  154.734573][   T29] audit: type=1326 audit(1752409831.911:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.734685][   T29] audit: type=1326 audit(1752409831.911:5328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.734718][   T29] audit: type=1326 audit(1752409831.911:5329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.741533][ T8488] EXT4-fs (loop1): 1 truncate cleaned up
[  154.766101][   T29] audit: type=1326 audit(1752409831.911:5330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.795125][ T8488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.818264][   T29] audit: type=1326 audit(1752409831.911:5331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.885692][   T29] audit: type=1326 audit(1752409831.911:5332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8483 comm="syz.2.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5edcb8e929 code=0x7ffc0000
[  154.915652][ T8390] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  154.933474][ T8390] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  154.953595][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.963637][ T8390] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  154.986693][ T8514] xt_hashlimit: max too large, truncated to 1048576
[  155.006963][ T8514] FAULT_INJECTION: forcing a failure.
[  155.006963][ T8514] name failslab, interval 1, probability 0, space 0, times 0
[  155.012859][ T8513] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1462'.
[  155.019877][ T8514] CPU: 1 UID: 0 PID: 8514 Comm: syz.0.1459 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  155.019967][ T8514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.019985][ T8514] Call Trace:
[  155.019994][ T8514]  <TASK>
[  155.020005][ T8514]  __dump_stack+0x1d/0x30
[  155.020036][ T8514]  dump_stack_lvl+0xe8/0x140
[  155.020128][ T8514]  dump_stack+0x15/0x1b
[  155.020214][ T8514]  should_fail_ex+0x265/0x280
[  155.020257][ T8514]  should_failslab+0x8c/0xb0
[  155.020287][ T8514]  kmem_cache_alloc_noprof+0x50/0x310
[  155.020322][ T8514]  ? __proc_create+0x265/0x500
[  155.020429][ T8514]  __proc_create+0x265/0x500
[  155.020451][ T8514]  ? should_failslab+0x8c/0xb0
[  155.020473][ T8514]  proc_create_seq_private+0xa8/0x180
[  155.020497][ T8514]  htable_create+0x2e4/0x450
[  155.020605][ T8514]  hashlimit_mt_check_common+0x5db/0x6c0
[  155.020676][ T8514]  hashlimit_mt_check_v1+0x12d/0x160
[  155.020742][ T8514]  xt_check_match+0x2aa/0x4f0
[  155.020784][ T8514]  ? strnlen+0x28/0x50
[  155.020829][ T8514]  ? strcmp+0x22/0x50
[  155.020853][ T8514]  ? xt_find_match+0x1d1/0x210
[  155.020893][ T8514]  translate_table+0xa9c/0xf90
[  155.020991][ T8514]  ? _copy_from_user+0x89/0xb0
[  155.021069][ T8514]  do_ipt_set_ctl+0x66f/0x820
[  155.021192][ T8514]  nf_setsockopt+0x196/0x1b0
[  155.021221][ T8514]  ip_setsockopt+0x102/0x110
[  155.021260][ T8514]  udp_setsockopt+0x99/0xb0
[  155.021353][ T8514]  sock_common_setsockopt+0x69/0x80
[  155.021389][ T8514]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  155.021423][ T8514]  __sys_setsockopt+0x184/0x200
[  155.021468][ T8514]  __x64_sys_setsockopt+0x64/0x80
[  155.021520][ T8514]  x64_sys_call+0x2bd5/0x2fb0
[  155.021577][ T8514]  do_syscall_64+0xd2/0x200
[  155.021601][ T8514]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.021638][ T8514]  ? clear_bhb_loop+0x40/0x90
[  155.021668][ T8514]  ? clear_bhb_loop+0x40/0x90
[  155.021766][ T8514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.021795][ T8514] RIP: 0033:0x7f6d6f28e929
[  155.021817][ T8514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.021843][ T8514] RSP: 002b:00007f6d6d8f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  155.021868][ T8514] RAX: ffffffffffffffda RBX: 00007f6d6f4b5fa0 RCX: 00007f6d6f28e929
[  155.021921][ T8514] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  155.021937][ T8514] RBP: 00007f6d6d8f7090 R08: 00000000000003c8 R09: 0000000000000000
[  155.021954][ T8514] R10: 0000200000000540 R11: 0000000000000246 R12: 0000000000000001
[  155.021971][ T8514] R13: 0000000000000000 R14: 00007f6d6f4b5fa0 R15: 00007ffe6fd0f0d8
[  155.021998][ T8514]  </TASK>
[  155.029834][ T8507] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1461'.
[  155.346771][ T8525] dvmrp0: entered allmulticast mode
[  155.417632][ T8390] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.422848][ T8390] 8021q: adding VLAN 0 to HW filter on device team0
[  155.433040][ T8539] loop6: detected capacity change from 0 to 512
[  155.437274][ T3800] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.446753][ T3800] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.446933][ T8539] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.448182][ T8536] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1468'.
[  155.454844][ T3800] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.459924][ T8539] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.465735][ T3800] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.476453][ T8539] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.540091][ T8539] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  155.599904][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.610528][ T8547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1470'.
[  155.643805][ T8554] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1473'.
[  155.657294][ T8549] loop1: detected capacity change from 0 to 2048
[  155.717449][ T8549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.718728][ T8557] SELinux: ebitmap: truncated map
[  155.746815][ T8557] SELinux: failed to load policy
[  155.767592][ T8549] netlink: 'syz.1.1469': attribute type 30 has an invalid length.
[  155.781741][ T8390] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.953372][ T8576] syzkaller0: tun_chr_ioctl cmd 35111
[  156.902520][ T3306] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  156.918482][ T3306] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  156.937111][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.008515][ T8588] loop6: detected capacity change from 0 to 512
[  157.028494][ T8588] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  157.067567][ T8588] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.081119][ T8588] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.095794][ T8588] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  157.121149][ T8390] veth0_vlan: entered promiscuous mode
[  157.136239][ T8390] veth1_vlan: entered promiscuous mode
[  157.151715][ T8390] veth0_macvtap: entered promiscuous mode
[  157.153832][ T8390] veth1_macvtap: entered promiscuous mode
[  157.170597][ T8390] batman_adv: batadv0: Interface activated: batadv_slave_0
[  157.172849][ T8390] batman_adv: batadv0: Interface activated: batadv_slave_1
[  157.187831][ T8390] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.196937][ T8390] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  157.206860][ T8390] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.218992][ T8390] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.272797][ T8605] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1483'.
[  157.281047][ T8608] syzkaller0: entered promiscuous mode
[  157.288610][ T8608] syzkaller0: entered allmulticast mode
[  157.299205][ T8605] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1483'.
[  157.311030][ T7656] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.349156][ T8614] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1486'.
[  157.362569][ T8614] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1486'.
[  157.533068][ T8636] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  157.540083][ T8636] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  157.547926][ T8636] vhci_hcd vhci_hcd.0: Device attached
[  157.555809][ T8638] vhci_hcd: cannot find a urb of seqnum 16 max seqnum 0
[  157.568837][ T8640] loop7: detected capacity change from 0 to 1024
[  157.569331][   T36] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0
[  157.580033][ T5603] vhci_hcd: stop threads
[  157.585022][   T36] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0
[  157.589468][ T5603] vhci_hcd: release socket
[  157.596951][   T36] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0
[  157.601390][ T5603] vhci_hcd: disconnect device
[  157.612959][   T36] hid-generic 0003:0004:0000.0003: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  157.630735][ T8640] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.636702][ T8629] lo speed is unknown, defaulting to 1000
[  157.649369][ T8629] lo speed is unknown, defaulting to 1000
[  157.709904][ T8649] loop0: detected capacity change from 0 to 512
[  157.718022][ T8649] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  157.738194][ T8649] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.753774][ T8649] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.768406][ T8649] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  157.823078][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.890411][ T8664] 9p: Unknown access argument }: -22
[  157.929905][ T8662] SELinux: failed to load policy
[  158.000132][ T8673] loop0: detected capacity change from 0 to 512
[  158.009385][ T8673] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  158.031206][ T8673] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.1503: invalid block
[  158.045293][ T8673] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1503: invalid indirect mapped block 4294967295 (level 1)
[  158.061129][ T8673] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1503: invalid indirect mapped block 4294967295 (level 1)
[  158.078759][ T8673] EXT4-fs (loop0): 2 truncates cleaned up
[  158.085289][ T8673] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.108472][ T8673] wg2: entered promiscuous mode
[  158.108500][ T8673] wg2: entered allmulticast mode
[  158.127091][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.180337][ T8685] loop0: detected capacity change from 0 to 512
[  158.187492][ T8685] EXT4-fs: Ignoring removed mblk_io_submit option
[  158.196531][ T8685] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  158.219354][ T8685] EXT4-fs (loop0): 1 truncate cleaned up
[  158.232025][ T8685] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.263910][ T8685] FAULT_INJECTION: forcing a failure.
[  158.263910][ T8685] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.277868][ T8685] CPU: 1 UID: 0 PID: 8685 Comm: syz.0.1509 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  158.277958][ T8685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.277974][ T8685] Call Trace:
[  158.277984][ T8685]  <TASK>
[  158.278058][ T8685]  __dump_stack+0x1d/0x30
[  158.278098][ T8685]  dump_stack_lvl+0xe8/0x140
[  158.278123][ T8685]  dump_stack+0x15/0x1b
[  158.278143][ T8685]  should_fail_ex+0x265/0x280
[  158.278226][ T8685]  should_fail+0xb/0x20
[  158.278251][ T8685]  should_fail_usercopy+0x1a/0x20
[  158.278282][ T8685]  strncpy_from_user+0x25/0x230
[  158.278360][ T8685]  strncpy_from_user_nofault+0x68/0xf0
[  158.278397][ T8685]  bpf_probe_read_user_str+0x2a/0x70
[  158.278437][ T8685]  bpf_prog_02a70dbeb5f742df+0x43/0x49
[  158.278517][ T8685]  bpf_trace_run2+0x104/0x1c0
[  158.278540][ T8685]  ? skb_put+0xa9/0xf0
[  158.278567][ T8685]  ? audit_log_d_path+0xf4/0x150
[  158.278603][ T8685]  ? audit_log_n_string+0x26b/0x290
[  158.278713][ T8685]  ? audit_log_d_path+0xf4/0x150
[  158.278752][ T8685]  kfree+0x27b/0x320
[  158.278779][ T8685]  ? audit_log_untrustedstring+0xb6/0xd0
[  158.278828][ T8685]  audit_log_d_path+0xf4/0x150
[  158.278864][ T8685]  audit_log_d_path_exe+0x42/0x70
[  158.278895][ T8685]  audit_log_task+0x1e9/0x250
[  158.278982][ T8685]  audit_seccomp+0x61/0x100
[  158.279013][ T8685]  ? __seccomp_filter+0x68c/0x10d0
[  158.279042][ T8685]  __seccomp_filter+0x69d/0x10d0
[  158.279079][ T8685]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  158.279121][ T8685]  ? vfs_write+0x75e/0x8e0
[  158.279167][ T8685]  __secure_computing+0x82/0x150
[  158.279193][ T8685]  syscall_trace_enter+0xcf/0x1e0
[  158.279288][ T8685]  do_syscall_64+0xac/0x200
[  158.279309][ T8685]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.279339][ T8685]  ? clear_bhb_loop+0x40/0x90
[  158.279365][ T8685]  ? clear_bhb_loop+0x40/0x90
[  158.279393][ T8685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.279481][ T8685] RIP: 0033:0x7f6d6f28e929
[  158.279497][ T8685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.279516][ T8685] RSP: 002b:00007f6d6d8f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  158.279536][ T8685] RAX: ffffffffffffffda RBX: 00007f6d6f4b5fa0 RCX: 00007f6d6f28e929
[  158.279549][ T8685] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  158.279605][ T8685] RBP: 00007f6d6d8f7090 R08: 0000000000000000 R09: 0000000000000000
[  158.279618][ T8685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.279630][ T8685] R13: 0000000000000000 R14: 00007f6d6f4b5fa0 R15: 00007ffe6fd0f0d8
[  158.279724][ T8685]  </TASK>
[  158.585471][ T8698] loop6: detected capacity change from 0 to 256
[  158.596137][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.613119][ T8698] 9pnet_fd: Insufficient options for proto=fd
[  158.627481][ T8701] loop1: detected capacity change from 0 to 164
[  158.641221][ T8390] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.663214][ T8705] FAULT_INJECTION: forcing a failure.
[  158.663214][ T8705] name failslab, interval 1, probability 0, space 0, times 0
[  158.678177][ T8705] CPU: 0 UID: 0 PID: 8705 Comm: syz.6.1518 Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  158.678206][ T8705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.678222][ T8705] Call Trace:
[  158.678228][ T8705]  <TASK>
[  158.678237][ T8705]  __dump_stack+0x1d/0x30
[  158.678263][ T8705]  dump_stack_lvl+0xe8/0x140
[  158.678286][ T8705]  dump_stack+0x15/0x1b
[  158.678301][ T8705]  should_fail_ex+0x265/0x280
[  158.678333][ T8705]  should_failslab+0x8c/0xb0
[  158.678359][ T8705]  kmem_cache_alloc_bulk_noprof+0x5b/0x410
[  158.678396][ T8705]  ? kmem_cache_alloc_noprof+0x186/0x310
[  158.678425][ T8705]  ? mas_dup_build+0x1f6/0xd30
[  158.678451][ T8705]  mas_dup_build+0x6df/0xd30
[  158.678482][ T8705]  __mt_dup+0xc6/0x180
[  158.678510][ T8705]  dup_mmap+0x266/0xf20
[  158.678532][ T8705]  ? __list_add_valid_or_report+0x38/0xe0
[  158.678565][ T8705]  copy_mm+0x11a/0x370
[  158.678596][ T8705]  copy_process+0xcf1/0x1f90
[  158.678633][ T8705]  kernel_clone+0x16c/0x5b0
[  158.678662][ T8705]  ? vfs_write+0x75e/0x8e0
[  158.678698][ T8705]  __x64_sys_clone+0xe6/0x120
[  158.678737][ T8705]  x64_sys_call+0x2c59/0x2fb0
[  158.678764][ T8705]  do_syscall_64+0xd2/0x200
[  158.678789][ T8705]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.678821][ T8705]  ? clear_bhb_loop+0x40/0x90
[  158.678861][ T8705]  ? clear_bhb_loop+0x40/0x90
[  158.678885][ T8705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.678908][ T8705] RIP: 0033:0x7fa95223e929
[  158.678924][ T8705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.678946][ T8705] RSP: 002b:00007fa9508a6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  158.678965][ T8705] RAX: ffffffffffffffda RBX: 00007fa952465fa0 RCX: 00007fa95223e929
[  158.678980][ T8705] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042164000
[  158.678994][ T8705] RBP: 00007fa9508a7090 R08: 0000000000000000 R09: 0000000000000000
[  158.679009][ T8705] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  158.679024][ T8705] R13: 0000000000000001 R14: 00007fa952465fa0 R15: 00007ffd97ff4e38
[  158.679046][ T8705]  </TASK>
[  158.717783][ T8710] loop7: detected capacity change from 0 to 512
[  158.768965][ T8714] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  158.777015][ T8710] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  158.794834][ T8714] loop6: detected capacity change from 0 to 2048
[  158.822263][ T3315] ==================================================================
[  158.950296][ T3315] BUG: KCSAN: data-race in pollwake / pollwake
[  158.957907][ T3315] 
[  158.960341][ T3315] write to 0xffffc900015ef9e0 of 4 bytes by interrupt on cpu 0:
[  158.969126][ T3315]  pollwake+0xb6/0x100
[  158.973839][ T3315]  __wake_up_sync_key+0x52/0x80
[  158.979303][ T3315]  sock_def_readable+0x70/0x190
[  158.984827][ T3315]  tcp_data_ready+0x1ae/0x290
[  158.989654][ T3315]  tcp_data_queue+0x15b0/0x3290
[  158.995239][ T3315]  tcp_rcv_established+0xa0f/0xef0
[  159.001623][ T3315]  tcp_v4_do_rcv+0x672/0x740
[  159.006347][ T3315]  tcp_v4_rcv+0x1bd7/0x1f60
[  159.011091][ T3315]  ip_protocol_deliver_rcu+0x397/0x780
[  159.016956][ T3315]  ip_local_deliver_finish+0x184/0x220
[  159.023175][ T3315]  ip_local_deliver+0xe8/0x1c0
[  159.028148][ T3315]  ip_sublist_rcv+0x56b/0x650
[  159.033078][ T3315]  ip_list_rcv+0x261/0x290
[  159.037728][ T3315]  __netif_receive_skb_list_core+0x4dc/0x500
[  159.044331][ T3315]  netif_receive_skb_list_internal+0x487/0x600
[  159.051783][ T3315]  napi_complete_done+0x1a3/0x410
[  159.058900][ T3315]  virtnet_poll+0x18c5/0x1d10
[  159.064144][ T3315]  __napi_poll+0x63/0x3a0
[  159.069802][ T3315]  net_rx_action+0x391/0x830
[  159.074759][ T3315]  handle_softirqs+0xb7/0x290
[  159.080021][ T3315]  __irq_exit_rcu+0x3a/0xc0
[  159.085823][ T3315]  common_interrupt+0x83/0x90
[  159.091981][ T3315]  asm_common_interrupt+0x26/0x40
[  159.097207][ T3315]  console_flush_all+0x55b/0x730
[  159.102289][ T3315]  console_unlock+0xa1/0x330
[  159.106893][ T3315]  vprintk_emit+0x388/0x650
[  159.111420][ T3315]  vprintk_default+0x26/0x30
[  159.116043][ T3315]  vprintk+0x1d/0x30
[  159.119980][ T3315]  _printk+0x79/0xa0
[  159.124089][ T3315]  set_capacity_and_notify+0x14c/0x1f0
[  159.129599][ T3315]  loop_set_size+0x2e/0x70
[  159.134044][ T3315]  loop_configure+0x8d3/0xa50
[  159.139080][ T3315]  lo_ioctl+0x559/0x15d0
[  159.143757][ T3315]  blkdev_ioctl+0x34f/0x440
[  159.149475][ T3315]  __se_sys_ioctl+0xcb/0x140
[  159.154725][ T3315]  __x64_sys_ioctl+0x43/0x50
[  159.160130][ T3315]  x64_sys_call+0x19a8/0x2fb0
[  159.165627][ T3315]  do_syscall_64+0xd2/0x200
[  159.170241][ T3315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.176529][ T3315] 
[  159.179167][ T3315] write to 0xffffc900015ef9e0 of 4 bytes by task 3315 on cpu 1:
[  159.187920][ T3315]  pollwake+0xb6/0x100
[  159.192570][ T3315]  __wake_up_sync_key+0x52/0x80
[  159.198098][ T3315]  anon_pipe_write+0x8ba/0xaa0
[  159.203860][ T3315]  vfs_write+0x49d/0x8e0
[  159.208342][ T3315]  ksys_write+0xda/0x1a0
[  159.213607][ T3315]  __x64_sys_write+0x40/0x50
[  159.219157][ T3315]  x64_sys_call+0x2cdd/0x2fb0
[  159.224802][ T3315]  do_syscall_64+0xd2/0x200
[  159.229411][ T3315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.235437][ T3315] 
[  159.237791][ T3315] value changed: 0x00000000 -> 0x00000001
SYZFAIL: failed to send rpc
fd=3 want=48 sent=0 n=-1 (errno 32: Broken pipe)
[  159.243525][ T3315] 
[  159.245859][ T3315] Reported by Kernel Concurrency Sanitizer on:
[  159.252407][ T3315] CPU: 1 UID: 0 PID: 3315 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00266-g3f31a806a62e #0 PREEMPT(voluntary) 
[  159.265996][ T3315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.276695][ T3315] ==================================================================
[  159.336121][ T8710] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.366752][ T8714] EXT4-fs error (device loop6): ext4_find_extent:939: inode #2: comm syz.6.1521: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  159.435151][ T8710] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  159.466523][ T8714] lo speed is unknown, defaulting to 1000
[  159.473820][ T8714] lo speed is unknown, defaulting to 1000
[  160.006194][ T5595] bond0 (unregistering): Released all slaves
[  160.147954][ T5595] hsr_slave_0: left promiscuous mode
[  160.154384][ T5595] hsr_slave_1: left promiscuous mode
[  160.568130][ T5595] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.636603][ T5595] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.686195][ T5595] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.746629][ T5595] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.800433][ T5595] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.826151][ T5595] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.837385][ T8710] EXT4-fs unmount: 3 callbacks suppressed
[  160.837399][ T8710] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.886405][ T5595] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.936117][ T5595] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.007943][ T5595] bridge_slave_1: left allmulticast mode
[  161.013901][ T5595] bridge_slave_1: left promiscuous mode
[  161.019854][ T5595] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.029068][ T5595] bridge_slave_0: left allmulticast mode
[  161.034897][ T5595] bridge_slave_0: left promiscuous mode
[  161.040677][ T5595] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.049699][ T5595] bridge_slave_1: left allmulticast mode
[  161.055720][ T5595] bridge_slave_1: left promiscuous mode
[  161.061449][ T5595] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.069786][ T5595] bridge_slave_0: left allmulticast mode
[  161.075567][ T5595] bridge_slave_0: left promiscuous mode
[  161.081452][ T5595] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.196111][ T5595] team0: Port device bridge1 removed
[  161.246803][ T5595] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.257450][ T5595] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.267298][ T5595] bond0 (unregistering): Released all slaves
[  161.289235][ T5595] dvmrp0 (unregistering): left allmulticast mode
[  161.368940][ T5595] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.377834][ T5595] bond_slave_0: left allmulticast mode
[  161.384487][ T5595] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.393706][ T5595] bond_slave_1: left allmulticast mode
[  161.400440][ T5595] bond0 (unregistering): Released all slaves
[  161.462324][ T5595] hsr_slave_0: left promiscuous mode
[  161.468087][ T5595] hsr_slave_1: left promiscuous mode
[  161.473839][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.481471][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.489163][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.496810][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.507911][ T5595] hsr_slave_0: left promiscuous mode
[  161.515742][ T5595] hsr_slave_1: left promiscuous mode
[  161.522145][ T5595] batman_adv: batadv0: Removing interface: team0
[  161.529852][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.538114][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.546082][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.553605][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.566892][ T5595] veth1_macvtap: left promiscuous mode
[  161.572508][ T5595] veth0_macvtap: left promiscuous mode
[  161.578095][ T5595] veth1_vlan: left promiscuous mode
[  161.584368][ T5595] veth0_vlan: left promiscuous mode
[  161.590399][ T5595] veth1_macvtap: left promiscuous mode
[  161.596667][ T5595] veth0_macvtap: left promiscuous mode
[  161.603755][ T5595] veth1_vlan: left promiscuous mode
[  161.610704][ T5595] veth0_vlan: left promiscuous mode
[  161.702637][ T5595] team0 (unregistering): Port device team_slave_1 removed
[  161.713278][ T5595] team0 (unregistering): Port device team_slave_0 removed
[  161.773059][ T5595] team0 (unregistering): Port device team_slave_1 removed
[  161.784586][ T5595] team0 (unregistering): Port device team_slave_0 removed
[  161.828200][ T3416] lo speed is unknown, defaulting to 1000
[  161.833979][ T3416] infiniband syz2: ib_query_port failed (-19)
[  162.230963][ T5595] IPVS: stop unused estimator thread 0...
[  162.288434][ T5595] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.337304][ T5595] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.397219][ T5595] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.457335][ T5595] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.508928][ T5595] bridge_slave_1: left allmulticast mode
[  162.518842][ T5595] bridge_slave_1: left promiscuous mode
[  162.525539][ T5595] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.533734][ T5595] bridge_slave_0: left allmulticast mode
[  162.539721][ T5595] bridge_slave_0: left promiscuous mode
[  162.545735][ T5595] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.616640][ T5595] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  162.627215][ T5595] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  162.636972][ T5595] bond0 (unregistering): Released all slaves
[  162.678269][ T5595] hsr_slave_0: left promiscuous mode
[  162.684486][ T5595] hsr_slave_1: left promiscuous mode
[  162.690876][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.698605][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.706524][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.714464][ T5595] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.724892][ T5595] veth1_macvtap: left promiscuous mode
[  162.731238][ T5595] veth0_macvtap: left promiscuous mode
[  162.736849][ T5595] veth1_vlan: left promiscuous mode
[  162.742135][ T5595] veth0_vlan: left promiscuous mode
[  162.804703][ T5595] team0 (unregistering): Port device team_slave_1 removed
[  162.816132][ T5595] team0 (unregistering): Port device team_slave_0 removed