0b99f58d58b71b4f0ef8aa677293ea65dd44b603a21c4ae829fa1674b9dffb8b82b18da3f8d7ed19178189d3415101e7c180ebdb79d5d6cd7e59cb9707f39540bdaeac20cd44c5f14b370bfc4f7406905ae74cfe359837714fc3a35653c981c656d15ddde996785c43f0050a0dab8a493340b2a78398a079ac4238210e6c6b75ed0c15c226efbb52bbdd36750dbc6b1635e73322195baf64b07aaeb7d48dc4a18ef7977439959252ac19fe63d32cd2de92bc89a8277a58f3d2eaba8e202e6ad289be81068", &(0x7f0000000280)="40246c4e6f4ce7ec23fdaeb8f5b12b42485e1637722a675e23cfd1420b17415194eaab04dc9d3c09eacc6d50667a0130cad3a9e3e96e617e9575cfedcd5c9ad4b038eea8344d71fe29250a2ea2664e33e73cd6f4c7567836be5ee60eaf", 0x9354f800, r0, 0x4}, 0x38)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={0xffffffffffffffff, r0}, 0xc)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, 0x3fa, 0x4, 0x70bd2c, 0x25dfdbfd, {0x1, 0x0, 0x1}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004095)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r0, 0x0, 0x0) (async)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000300)={&(0x7f00000000c0)="9fdd1cb738023c9c784009237c74329a702e4f6c9657dcadc47665bc67cc92072df848a9dee1258c21e59c9e0425189d85d95bee8006a28dc363287dbb1a0ec50d35403539edee8571a361c73dabdb6f05b38c93280cb2aa851fb02278ac1a6f14ea2154dc3fc8f08d1c6eebfd12a2214aa361b2712c287b24a23ac5303178e689b2", &(0x7f0000000040)=""/5, &(0x7f0000000180)="0cd4a7e0b99f58d58b71b4f0ef8aa677293ea65dd44b603a21c4ae829fa1674b9dffb8b82b18da3f8d7ed19178189d3415101e7c180ebdb79d5d6cd7e59cb9707f39540bdaeac20cd44c5f14b370bfc4f7406905ae74cfe359837714fc3a35653c981c656d15ddde996785c43f0050a0dab8a493340b2a78398a079ac4238210e6c6b75ed0c15c226efbb52bbdd36750dbc6b1635e73322195baf64b07aaeb7d48dc4a18ef7977439959252ac19fe63d32cd2de92bc89a8277a58f3d2eaba8e202e6ad289be81068", &(0x7f0000000280)="40246c4e6f4ce7ec23fdaeb8f5b12b42485e1637722a675e23cfd1420b17415194eaab04dc9d3c09eacc6d50667a0130cad3a9e3e96e617e9575cfedcd5c9ad4b038eea8344d71fe29250a2ea2664e33e73cd6f4c7567836be5ee60eaf", 0x9354f800, r0, 0x4}, 0x38) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={0xffffffffffffffff, r0}, 0xc) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, 0x3fa, 0x4, 0x70bd2c, 0x25dfdbfd, {0x1, 0x0, 0x1}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004095) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000))

02:11:37 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 28)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:37 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000440)=@nat={'nat\x00', 0x19, 0x2, 0x374, [0x200000c0, 0x0, 0x0, 0x200000f0, 0x2000022e], 0x0, &(0x7f0000000000), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x3ee)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x20000015)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_VLANID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c005}, 0x24000055)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000440)=@nat={'nat\x00', 0x19, 0x2, 0x374, [0x200000c0, 0x0, 0x0, 0x200000f0, 0x2000022e], 0x0, &(0x7f0000000000), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x3ee) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x20000015) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_VLANID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c005}, 0x24000055) (async)

02:11:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)) (async)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:37 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f00000000c0)={0x80000001, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e24, @multicast2}}}, 0x108)

02:11:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r3)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r3) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:37 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000440)=@nat={'nat\x00', 0x19, 0x2, 0x374, [0x200000c0, 0x0, 0x0, 0x200000f0, 0x2000022e], 0x0, &(0x7f0000000000), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]}, 0x3ee)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x20000015) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_VLANID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c005}, 0x24000055)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1324.042629][T30321] FAULT_INJECTION: forcing a failure.
[ 1324.042629][T30321] name failslab, interval 1, probability 0, space 0, times 0
[ 1324.090806][T30321] CPU: 0 PID: 30321 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1324.101493][T30321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1324.111535][T30321] Call Trace:
[ 1324.114819][T30321]  dump_stack+0x18e/0x1d5
[ 1324.119143][T30321]  should_fail+0x604/0x770
[ 1324.123558][T30321]  ? blk_alloc_flush_queue+0x70/0x230
[ 1324.128925][T30321]  should_failslab+0x5/0x20
[ 1324.133419][T30321]  kmem_cache_alloc_trace+0x28/0x240
[ 1324.138697][T30321]  blk_alloc_flush_queue+0x70/0x230
[ 1324.143882][T30321]  blk_mq_realloc_hw_ctxs+0x8b5/0x1450
[ 1324.149336][T30321]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 1324.155218][T30321]  ? blk_alloc_queue_node+0x4e7/0x580
[ 1324.160578][T30321]  blk_mq_init_queue+0x48/0xa0
[ 1324.165330][T30321]  loop_add+0x256/0x710
[ 1324.169500][T30321]  ? radix_tree_lookup+0x17a/0x1d0
[ 1324.175851][T30321]  loop_control_ioctl+0x465/0x600
[ 1324.180867][T30321]  ? loop_remove+0xa0/0xa0
[ 1324.185365][T30321]  do_vfs_ioctl+0x6d1/0x15b0
[ 1324.189949][T30321]  __x64_sys_ioctl+0xd4/0x110
[ 1324.194623][T30321]  do_syscall_64+0xcb/0x1c0
[ 1324.199122][T30321]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1324.205089][T30321] RIP: 0033:0x7f6fdf247109
[ 1324.209492][T30321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1324.229268][T30321] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async, rerun: 64)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88) (rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000))

02:11:37 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x480000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
r5 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1324.237666][T30321] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1324.245799][T30321] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1324.253763][T30321] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1324.261728][T30321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1324.269688][T30321] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:37 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 29)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:37 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x480000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
r5 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

02:11:37 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x8c000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:37 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f00000000c0)={0x80000001, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e24, @multicast2}}}, 0x108)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:37 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x8c000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x8c000, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:37 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x480000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) (async, rerun: 64)
r5 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (rerun: 64)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

02:11:37 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f00000000c0)={0x80000001, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e24, @multicast2}}}, 0x108)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f00000000c0)={0x80000001, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e24, @multicast2}}}, 0x108) (async)

02:11:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a00, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r2=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp={0x5, 0x0, 0xd}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1d, 0x4, 0x3, 0x100, 0x204, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1e, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="85100000ffffffff18000000000000000000000001000000852000000200000005b5f8ff0400000054b01000040000001800000008000000000000000104000085100000f9ffffff85200000030000008510000002000000183400000100"/104], &(0x7f00000000c0)='GPL\x00', 0x23, 0x0, 0x0, 0x40f00, 0x14, '\x00', r2, 0xf, r3, 0x8, &(0x7f0000000100)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x1, 0xb, 0xffff, 0x6a}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[r4, r5, r6, 0x1, 0xffffffffffffffff]}, 0x80)

[ 1324.423436][T30400] FAULT_INJECTION: forcing a failure.
[ 1324.423436][T30400] name failslab, interval 1, probability 0, space 0, times 0
02:11:37 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x8c000, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async, rerun: 32)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1324.515523][T30400] CPU: 0 PID: 30400 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1324.525861][T30400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1324.535908][T30400] Call Trace:
[ 1324.539197][T30400]  dump_stack+0x18e/0x1d5
[ 1324.543524][T30400]  should_fail+0x604/0x770
[ 1324.547942][T30400]  ? blk_alloc_flush_queue+0xd0/0x230
[ 1324.553309][T30400]  should_failslab+0x5/0x20
[ 1324.557813][T30400]  __kmalloc+0x51/0x2b0
[ 1324.561965][T30400]  ? kmem_cache_alloc_trace+0xd8/0x240
[ 1324.567409][T30400]  ? blk_alloc_flush_queue+0x70/0x230
[ 1324.572767][T30400]  blk_alloc_flush_queue+0xd0/0x230
[ 1324.577962][T30400]  blk_mq_realloc_hw_ctxs+0x8b5/0x1450
[ 1324.583409][T30400]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 1324.589291][T30400]  ? blk_alloc_queue_node+0x4e7/0x580
[ 1324.594646][T30400]  blk_mq_init_queue+0x48/0xa0
[ 1324.599396][T30400]  loop_add+0x256/0x710
[ 1324.603550][T30400]  ? radix_tree_lookup+0x17a/0x1d0
[ 1324.608655][T30400]  loop_control_ioctl+0x465/0x600
[ 1324.613666][T30400]  ? loop_remove+0xa0/0xa0
[ 1324.618067][T30400]  do_vfs_ioctl+0x6d1/0x15b0
[ 1324.622650][T30400]  __x64_sys_ioctl+0xd4/0x110
[ 1324.627312][T30400]  do_syscall_64+0xcb/0x1c0
[ 1324.631806][T30400]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1324.637684][T30400] RIP: 0033:0x7f6fdf247109
[ 1324.642088][T30400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:11:38 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 30)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a00, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r2=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp={0x5, 0x0, 0xd}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async, rerun: 64)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 64)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1d, 0x4, 0x3, 0x100, 0x204, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1e, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="85100000ffffffff18000000000000000000000001000000852000000200000005b5f8ff0400000054b01000040000001800000008000000000000000104000085100000f9ffffff85200000030000008510000002000000183400000100"/104], &(0x7f00000000c0)='GPL\x00', 0x23, 0x0, 0x0, 0x40f00, 0x14, '\x00', r2, 0xf, r3, 0x8, &(0x7f0000000100)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x1, 0xb, 0xffff, 0x6a}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[r4, r5, r6, 0x1, 0xffffffffffffffff]}, 0x80)

02:11:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000000c0)={0x200, {{0x2, 0x4e23, @empty}}, 0x0, 0x5, [{{0x2, 0x4e24, @broadcast}}, {{0x2, 0x4e22, @multicast2}}, {{0x2, 0x4e22, @loopback}}, {{0x2, 0x4e21, @rand_addr=0x64010101}}, {{0x2, 0x4e20, @multicast2}}]}, 0x310)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:38 executing program 0:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x81, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14c, r2, 0x20, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x400}]}, @TIPC_NLA_NODE={0x60, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10001}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "05ab0b17937d1ae8de9fa44b6e7d9a95734e01ca70d6ac20d2"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6e}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x244}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfba}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x536}, @TIPC_NLA_NET_ID={0x8}]}, @TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe71}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0x4}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x64f0}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)

[ 1324.661782][T30400] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1324.670186][T30400] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1324.678156][T30400] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1324.686119][T30400] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1324.694075][T30400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1324.702030][T30400] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:38 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f0000000040)=0x10)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 0:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x81, 0x4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) (rerun: 64)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14c, r2, 0x20, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x400}]}, @TIPC_NLA_NODE={0x60, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10001}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "05ab0b17937d1ae8de9fa44b6e7d9a95734e01ca70d6ac20d2"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6e}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x244}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfba}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x536}, @TIPC_NLA_NET_ID={0x8}]}, @TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe71}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0x4}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x64f0}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)

02:11:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000000c0)={0x200, {{0x2, 0x4e23, @empty}}, 0x0, 0x5, [{{0x2, 0x4e24, @broadcast}}, {{0x2, 0x4e22, @multicast2}}, {{0x2, 0x4e22, @loopback}}, {{0x2, 0x4e21, @rand_addr=0x64010101}}, {{0x2, 0x4e20, @multicast2}}]}, 0x310)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a00, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r2=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp={0x5, 0x0, 0xd}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1d, 0x4, 0x3, 0x100, 0x204, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1e, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="85100000ffffffff18000000000000000000000001000000852000000200000005b5f8ff0400000054b01000040000001800000008000000000000000104000085100000f9ffffff85200000030000008510000002000000183400000100"/104], &(0x7f00000000c0)='GPL\x00', 0x23, 0x0, 0x0, 0x40f00, 0x14, '\x00', r2, 0xf, r3, 0x8, &(0x7f0000000100)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x1, 0xb, 0xffff, 0x6a}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[r4, r5, r6, 0x1, 0xffffffffffffffff]}, 0x80)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1324.833021][T30441] FAULT_INJECTION: forcing a failure.
[ 1324.833021][T30441] name failslab, interval 1, probability 0, space 0, times 0
[ 1324.907081][T30441] CPU: 1 PID: 30441 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1324.917330][T30441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1324.927373][T30441] Call Trace:
[ 1324.930659][T30441]  dump_stack+0x18e/0x1d5
[ 1324.934980][T30441]  should_fail+0x604/0x770
[ 1324.939390][T30441]  ? blk_alloc_flush_queue+0xd0/0x230
[ 1324.944747][T30441]  should_failslab+0x5/0x20
[ 1324.949235][T30441]  __kmalloc+0x51/0x2b0
[ 1324.953385][T30441]  ? kmem_cache_alloc_trace+0xd8/0x240
[ 1324.958841][T30441]  ? blk_alloc_flush_queue+0x70/0x230
[ 1324.964199][T30441]  blk_alloc_flush_queue+0xd0/0x230
[ 1324.969389][T30441]  blk_mq_realloc_hw_ctxs+0x8b5/0x1450
[ 1324.974840][T30441]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 1324.980730][T30441]  ? blk_alloc_queue_node+0x4e7/0x580
[ 1324.986134][T30441]  blk_mq_init_queue+0x48/0xa0
[ 1324.990893][T30441]  loop_add+0x256/0x710
[ 1324.995035][T30441]  ? radix_tree_lookup+0x1bd/0x1d0
[ 1325.000134][T30441]  loop_control_ioctl+0x465/0x600
[ 1325.005157][T30441]  ? loop_remove+0xa0/0xa0
[ 1325.009696][T30441]  do_vfs_ioctl+0x6d1/0x15b0
[ 1325.014289][T30441]  __x64_sys_ioctl+0xd4/0x110
[ 1325.018957][T30441]  do_syscall_64+0xcb/0x1c0
[ 1325.023453][T30441]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1325.029337][T30441] RIP: 0033:0x7f6fdf247109
[ 1325.033744][T30441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1325.053355][T30441] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1325.061756][T30441] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1325.069715][T30441] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1325.077680][T30441] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1325.085645][T30441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1325.093703][T30441] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:38 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 31)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r2)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 0:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x81, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14c, r2, 0x20, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x400}]}, @TIPC_NLA_NODE={0x60, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10001}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "05ab0b17937d1ae8de9fa44b6e7d9a95734e01ca70d6ac20d2"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6e}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x244}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfba}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x536}, @TIPC_NLA_NET_ID={0x8}]}, @TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe71}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0x4}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x64f0}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r0, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0) (async)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x81, 0x4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14c, r2, 0x20, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x400}]}, @TIPC_NLA_NODE={0x60, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10001}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "05ab0b17937d1ae8de9fa44b6e7d9a95734e01ca70d6ac20d2"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6e}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x244}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfba}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x536}, @TIPC_NLA_NET_ID={0x8}]}, @TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe71}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0x4}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x64f0}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) (async)

02:11:38 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f0000000040)=0x10)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000000c0)={0x200, {{0x2, 0x4e23, @empty}}, 0x0, 0x5, [{{0x2, 0x4e24, @broadcast}}, {{0x2, 0x4e22, @multicast2}}, {{0x2, 0x4e22, @loopback}}, {{0x2, 0x4e21, @rand_addr=0x64010101}}, {{0x2, 0x4e20, @multicast2}}]}, 0x310) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (rerun: 32)

02:11:38 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xe0, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb1}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f04}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc87}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010)

02:11:38 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f0000000040)=0x10)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @broadcast}, &(0x7f0000000040)=0x10) (async)

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r2) (async)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfe00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1325.191203][T30492] FAULT_INJECTION: forcing a failure.
[ 1325.191203][T30492] name failslab, interval 1, probability 0, space 0, times 0
[ 1325.261270][T30492] CPU: 1 PID: 30492 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1325.271514][T30492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1325.281659][T30492] Call Trace:
[ 1325.284949][T30492]  dump_stack+0x18e/0x1d5
[ 1325.289275][T30492]  should_fail+0x604/0x770
[ 1325.293862][T30492]  ? find_next_bit+0xc6/0x110
[ 1325.298616][T30492]  ? disk_expand_part_tbl+0x195/0x3b0
[ 1325.303971][T30492]  should_failslab+0x5/0x20
[ 1325.308464][T30492]  __kmalloc+0x51/0x2b0
[ 1325.312608][T30492]  disk_expand_part_tbl+0x195/0x3b0
[ 1325.317796][T30492]  __alloc_disk_node+0x10b/0x380
[ 1325.322831][T30492]  loop_add+0x323/0x710
[ 1325.326992][T30492]  loop_control_ioctl+0x465/0x600
[ 1325.332012][T30492]  ? loop_remove+0xa0/0xa0
[ 1325.336418][T30492]  do_vfs_ioctl+0x6d1/0x15b0
[ 1325.341002][T30492]  __x64_sys_ioctl+0xd4/0x110
[ 1325.345667][T30492]  do_syscall_64+0xcb/0x1c0
[ 1325.350169][T30492]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1325.356050][T30492] RIP: 0033:0x7f6fdf247109
[ 1325.360544][T30492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1325.380264][T30492] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1325.388686][T30492] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1325.396661][T30492] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xff00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1325.404627][T30492] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1325.412586][T30492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1325.420552][T30492] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:38 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 32)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:38 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x440040c5)

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r2)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xffd7})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xe0, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb1}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f04}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc87}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfff0})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000000)={0x2, 'team_slave_1\x00', 0x4}, 0x18)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x1000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x440040c5)

02:11:38 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xe0, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb1}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f04}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc87}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xe0, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb1}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f04}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc87}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010) (async)

02:11:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x2000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x21c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8cf}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xbc10}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x10001, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x77cc, @local, 0x1f}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xa649, @mcast1, 0xfffff4c8}}, {0x14, 0x2, @in={0x2, 0x4e23, @empty}}}}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x8, @remote, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, 'wg0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @local}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4040044)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0x8, 0x80006, 0x7)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xa8, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7fff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x82f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb0e7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x40}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x24008840}, 0x24000804)

[ 1325.549098][T30546] FAULT_INJECTION: forcing a failure.
[ 1325.549098][T30546] name failslab, interval 1, probability 0, space 0, times 0
[ 1325.610768][T30546] CPU: 1 PID: 30546 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1325.621017][T30546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1325.631063][T30546] Call Trace:
[ 1325.634349][T30546]  dump_stack+0x18e/0x1d5
[ 1325.638676][T30546]  should_fail+0x604/0x770
[ 1325.643087][T30546]  ? rand_initialize_disk+0x4b/0xb0
[ 1325.648283][T30546]  should_failslab+0x5/0x20
[ 1325.652781][T30546]  kmem_cache_alloc_trace+0x28/0x240
[ 1325.658056][T30546]  rand_initialize_disk+0x4b/0xb0
[ 1325.663069][T30546]  __alloc_disk_node+0x2cd/0x380
[ 1325.668110][T30546]  loop_add+0x323/0x710
[ 1325.672343][T30546]  loop_control_ioctl+0x465/0x600
[ 1325.677451][T30546]  ? loop_remove+0xa0/0xa0
[ 1325.681882][T30546]  do_vfs_ioctl+0x6d1/0x15b0
[ 1325.686471][T30546]  __x64_sys_ioctl+0xd4/0x110
[ 1325.691142][T30546]  do_syscall_64+0xcb/0x1c0
[ 1325.695639][T30546]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1325.701519][T30546] RIP: 0033:0x7f6fdf247109
[ 1325.705925][T30546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1325.725532][T30546] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1325.734058][T30546] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1325.742033][T30546] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1325.750094][T30546] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
02:11:39 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 33)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x5000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x8000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1325.758057][T30546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1325.766106][T30546] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000000)={0x2, 'team_slave_1\x00', 0x4}, 0x18)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000000)={0x2, 'team_slave_1\x00', 0x4}, 0x18) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xa000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x10000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x40000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x21c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8cf}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xbc10}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x10001, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x77cc, @local, 0x1f}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xa649, @mcast1, 0xfffff4c8}}, {0x14, 0x2, @in={0x2, 0x4e23, @empty}}}}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x8, @remote, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, 'wg0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @local}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4040044)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0x8, 0x80006, 0x7)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xa8, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7fff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x82f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb0e7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x40}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x24008840}, 0x24000804)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x21c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8cf}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xbc10}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x10001, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x77cc, @local, 0x1f}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xa649, @mcast1, 0xfffff4c8}}, {0x14, 0x2, @in={0x2, 0x4e23, @empty}}}}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x8, @remote, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, 'wg0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @local}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4040044) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket(0x8, 0x80006, 0x7) (async)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xa8, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7fff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x82f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb0e7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x40}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x24008840}, 0x24000804) (async)

02:11:39 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x440040c5)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x440040c5) (async)

[ 1325.852585][T30569] FAULT_INJECTION: forcing a failure.
[ 1325.852585][T30569] name failslab, interval 1, probability 0, space 0, times 0
[ 1325.902535][T30569] CPU: 1 PID: 30569 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1325.912783][T30569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1325.922833][T30569] Call Trace:
[ 1325.926123][T30569]  dump_stack+0x18e/0x1d5
[ 1325.930446][T30569]  should_fail+0x604/0x770
[ 1325.934854][T30569]  ? rand_initialize_disk+0x4b/0xb0
[ 1325.940136][T30569]  should_failslab+0x5/0x20
[ 1325.944633][T30569]  kmem_cache_alloc_trace+0x28/0x240
[ 1325.949908][T30569]  rand_initialize_disk+0x4b/0xb0
[ 1325.954927][T30569]  __alloc_disk_node+0x2cd/0x380
[ 1325.959854][T30569]  loop_add+0x323/0x710
[ 1325.963996][T30569]  loop_control_ioctl+0x465/0x600
[ 1325.969015][T30569]  ? loop_remove+0xa0/0xa0
[ 1325.973427][T30569]  do_vfs_ioctl+0x6d1/0x15b0
[ 1325.978013][T30569]  __x64_sys_ioctl+0xd4/0x110
[ 1325.982683][T30569]  do_syscall_64+0xcb/0x1c0
[ 1325.987183][T30569]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1325.993061][T30569] RIP: 0033:0x7f6fdf247109
[ 1325.997555][T30569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1326.017150][T30569] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1326.025555][T30569] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1326.033514][T30569] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1326.041477][T30569] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1326.049469][T30569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1326.057432][T30569] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:39 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
read$hidraw(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000000)={0x2, 'team_slave_1\x00', 0x4}, 0x18) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xd7ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 34)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:39 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$AUDIT_GET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x3e8, 0x2, 0x70bd2a, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_USER_TTY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x8c, 0x464, 0x200, 0x70bd26, 0x25dfdbfe, "1128e0bfa8f2d19902785dc149c25972cd0974a72cd6be9bbc6a190f4bea0fd762f13f16388357ffb1502d2f60aedfd159a4892c2b4dd6d2f35bb00103ccec2002b10006a2de366c9db9b6d43577c2b0e88d418aebe58fc198797913a7ee7971463181888f704cb77beff260f0a3a4763b4a15055cf849627c18", ["", "", "", "", "", "", "", "", ""]}, 0x8c}, 0x1, 0x0, 0x0, 0x4080}, 0x1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x21c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8cf}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xbc10}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x10001, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x77cc, @local, 0x1f}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xa649, @mcast1, 0xfffff4c8}}, {0x14, 0x2, @in={0x2, 0x4e23, @empty}}}}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x8, @remote, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, 'wg0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @local}}}}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4040044) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = socket(0x8, 0x80006, 0x7)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0xa8, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7fff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x82f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb0e7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x40}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x24008840}, 0x24000804)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xf0ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$AUDIT_GET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x3e8, 0x2, 0x70bd2a, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async, rerun: 64)
sendmsg$AUDIT_USER_TTY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x8c, 0x464, 0x200, 0x70bd26, 0x25dfdbfe, "1128e0bfa8f2d19902785dc149c25972cd0974a72cd6be9bbc6a190f4bea0fd762f13f16388357ffb1502d2f60aedfd159a4892c2b4dd6d2f35bb00103ccec2002b10006a2de366c9db9b6d43577c2b0e88d418aebe58fc198797913a7ee7971463181888f704cb77beff260f0a3a4763b4a15055cf849627c18", ["", "", "", "", "", "", "", "", ""]}, 0x8c}, 0x1, 0x0, 0x0, 0x4080}, 0x1) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfd000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfdffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfe000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
read$hidraw(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r0, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
read$hidraw(r0, &(0x7f00000000c0)=""/4096, 0x1000) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r4)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfeffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1326.238832][T30644] FAULT_INJECTION: forcing a failure.
[ 1326.238832][T30644] name failslab, interval 1, probability 0, space 0, times 0
[ 1326.282329][T30644] CPU: 0 PID: 30644 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1326.292578][T30644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1326.302914][T30644] Call Trace:
[ 1326.306202][T30644]  dump_stack+0x18e/0x1d5
[ 1326.310529][T30644]  should_fail+0x604/0x770
[ 1326.314968][T30644]  ? blk_mq_init_tags+0x74/0x290
[ 1326.319899][T30644]  should_failslab+0x5/0x20
[ 1326.324396][T30644]  kmem_cache_alloc_trace+0x28/0x240
[ 1326.329676][T30644]  blk_mq_init_tags+0x74/0x290
[ 1326.334430][T30644]  ? blk_mq_hw_queue_to_node+0xeb/0x100
[ 1326.339970][T30644]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 1326.345075][T30644]  blk_mq_init_sched+0x1f2/0xaf0
[ 1326.350006][T30644]  elevator_init_mq+0x2cd/0x3f0
[ 1326.354844][T30644]  __device_add_disk+0x87/0x1210
[ 1326.359776][T30644]  ? loop_add+0x3e0/0x710
[ 1326.364093][T30644]  loop_add+0x554/0x710
[ 1326.368236][T30644]  loop_control_ioctl+0x465/0x600
[ 1326.373247][T30644]  ? loop_remove+0xa0/0xa0
[ 1326.377653][T30644]  do_vfs_ioctl+0x6d1/0x15b0
[ 1326.382232][T30644]  __x64_sys_ioctl+0xd4/0x110
[ 1326.386896][T30644]  do_syscall_64+0xcb/0x1c0
[ 1326.391387][T30644]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1326.397265][T30644] RIP: 0033:0x7f6fdf247109
[ 1326.401669][T30644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1326.421258][T30644] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1326.429660][T30644] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1326.437623][T30644] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1326.445583][T30644] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1326.453543][T30644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1326.461507][T30644] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1326.472061][T30644] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:39 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 35)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xff000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
read$hidraw(r0, &(0x7f00000000c0)=""/4096, 0x1000) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (rerun: 64)

02:11:39 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$AUDIT_GET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x3e8, 0x2, 0x70bd2a, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$AUDIT_USER_TTY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x8c, 0x464, 0x200, 0x70bd26, 0x25dfdbfe, "1128e0bfa8f2d19902785dc149c25972cd0974a72cd6be9bbc6a190f4bea0fd762f13f16388357ffb1502d2f60aedfd159a4892c2b4dd6d2f35bb00103ccec2002b10006a2de366c9db9b6d43577c2b0e88d418aebe58fc198797913a7ee7971463181888f704cb77beff260f0a3a4763b4a15055cf849627c18", ["", "", "", "", "", "", "", "", ""]}, 0x8c}, 0x1, 0x0, 0x0, 0x4080}, 0x1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfffffffd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfffffffe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r1 = socket$pppl2tp(0x18, 0x1, 0x1) (rerun: 32)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r4)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:40 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet(0x2, 0x1, 0x9)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000))

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x100000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1326.598108][T30687] FAULT_INJECTION: forcing a failure.
[ 1326.598108][T30687] name failslab, interval 1, probability 0, space 0, times 0
[ 1326.642246][T30687] CPU: 1 PID: 30687 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1326.652496][T30687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1326.662544][T30687] Call Trace:
[ 1326.665832][T30687]  dump_stack+0x18e/0x1d5
[ 1326.670158][T30687]  should_fail+0x604/0x770
[ 1326.674578][T30687]  ? sbitmap_queue_init_node+0x15e/0xf70
[ 1326.680199][T30687]  should_failslab+0x5/0x20
[ 1326.684710][T30687]  __kmalloc+0x51/0x2b0
[ 1326.688857][T30687]  sbitmap_queue_init_node+0x15e/0xf70
[ 1326.694310][T30687]  ? blk_mq_init_tags+0x74/0x290
[ 1326.699239][T30687]  blk_mq_init_tags+0xef/0x290
[ 1326.704000][T30687]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 1326.709010][T30687]  blk_mq_init_sched+0x1f2/0xaf0
[ 1326.713939][T30687]  elevator_init_mq+0x2cd/0x3f0
[ 1326.718776][T30687]  __device_add_disk+0x87/0x1210
[ 1326.723718][T30687]  ? loop_add+0x3e0/0x710
[ 1326.728302][T30687]  loop_add+0x554/0x710
[ 1326.732710][T30687]  loop_control_ioctl+0x465/0x600
[ 1326.737722][T30687]  ? loop_remove+0xa0/0xa0
[ 1326.742125][T30687]  do_vfs_ioctl+0x6d1/0x15b0
[ 1326.746711][T30687]  __x64_sys_ioctl+0xd4/0x110
[ 1326.751374][T30687]  do_syscall_64+0xcb/0x1c0
[ 1326.756387][T30687]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1326.762283][T30687] RIP: 0033:0x7f6fdf247109
[ 1326.766686][T30687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x200000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1326.786364][T30687] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1326.794765][T30687] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1326.802729][T30687] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1326.810692][T30687] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1326.818655][T30687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1326.826614][T30687] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1326.855427][T30687] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:40 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 36)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x500000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000140)={&(0x7f0000000000)="3b3cdea54e414de33c768af2a126ccf471c6d53576efe09f0aff67803cb9d61c264168c92dde37d4b3f6f615120756564c60c30169c0159fb978d4ca", &(0x7f0000000040), &(0x7f0000000040)="a45a", &(0x7f0000000100), 0x4, 0xffffffffffffffff, 0x4}, 0x38)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:40 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000140)={&(0x7f0000000000)="3b3cdea54e414de33c768af2a126ccf471c6d53576efe09f0aff67803cb9d61c264168c92dde37d4b3f6f615120756564c60c30169c0159fb978d4ca", &(0x7f0000000040), &(0x7f0000000040)="a45a", &(0x7f0000000100), 0x4, 0xffffffffffffffff, 0x4}, 0x38)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:40 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = socket$inet(0x2, 0x1, 0x9)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000))

02:11:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r4) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x800000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xe8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4000000}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000280)={'ip6_vti0\x00', <r5=>0x0, 0x29, 0x4, 0xc7, 0x7, 0x18, @local, @local, 0x7, 0x20, 0x7fffffff, 0x2}})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xa00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xe8}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async, rerun: 64)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4000000}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) (rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0) (async)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000280)={'ip6_vti0\x00', <r5=>0x0, 0x29, 0x4, 0xc7, 0x7, 0x18, @local, @local, 0x7, 0x20, 0x7fffffff, 0x2}})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1327.047680][T30724] FAULT_INJECTION: forcing a failure.
[ 1327.047680][T30724] name failslab, interval 1, probability 0, space 0, times 0
[ 1327.100934][T30724] CPU: 0 PID: 30724 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1327.111179][T30724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1327.121235][T30724] Call Trace:
[ 1327.124523][T30724]  dump_stack+0x18e/0x1d5
[ 1327.128849][T30724]  should_fail+0x604/0x770
[ 1327.133260][T30724]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 1327.138885][T30724]  should_failslab+0x5/0x20
[ 1327.143380][T30724]  kmem_cache_alloc_trace+0x28/0x240
[ 1327.148656][T30724]  sbitmap_queue_init_node+0x69c/0xf70
[ 1327.154103][T30724]  blk_mq_init_tags+0xef/0x290
[ 1327.158854][T30724]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 1327.163867][T30724]  blk_mq_init_sched+0x1f2/0xaf0
[ 1327.168885][T30724]  elevator_init_mq+0x2cd/0x3f0
[ 1327.173744][T30724]  __device_add_disk+0x87/0x1210
[ 1327.178680][T30724]  ? loop_add+0x3e0/0x710
[ 1327.183003][T30724]  loop_add+0x554/0x710
[ 1327.187151][T30724]  loop_control_ioctl+0x465/0x600
[ 1327.192272][T30724]  ? loop_remove+0xa0/0xa0
[ 1327.196680][T30724]  do_vfs_ioctl+0x6d1/0x15b0
[ 1327.201266][T30724]  __x64_sys_ioctl+0xd4/0x110
[ 1327.205932][T30724]  do_syscall_64+0xcb/0x1c0
[ 1327.210429][T30724]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1327.216311][T30724] RIP: 0033:0x7f6fdf247109
[ 1327.220712][T30724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1327.241182][T30724] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x1000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xe8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4000000}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0) (async, rerun: 64)
r3 = socket$inet_udplite(0x2, 0x2, 0x88) (rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000280)={'ip6_vti0\x00', <r5=>0x0, 0x29, 0x4, 0xc7, 0x7, 0x18, @local, @local, 0x7, 0x20, 0x7fffffff, 0x2}})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1327.249585][T30724] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1327.257549][T30724] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1327.265512][T30724] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1327.273467][T30724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1327.281428][T30724] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:40 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 37)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x4000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0xc000)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@private, @private, <r5=>0x0}, &(0x7f0000000040)=0xc)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r6, 0x1, 0x1, &(0x7f0000000100)={0x800}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1327.357707][T30724] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:40 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000140)={&(0x7f0000000000)="3b3cdea54e414de33c768af2a126ccf471c6d53576efe09f0aff67803cb9d61c264168c92dde37d4b3f6f615120756564c60c30169c0159fb978d4ca", &(0x7f0000000040), &(0x7f0000000040)="a45a", &(0x7f0000000100), 0x4, 0xffffffffffffffff, 0x4}, 0x38)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000140)={&(0x7f0000000000)="3b3cdea54e414de33c768af2a126ccf471c6d53576efe09f0aff67803cb9d61c264168c92dde37d4b3f6f615120756564c60c30169c0159fb978d4ca", &(0x7f0000000040), &(0x7f0000000040)="a45a", &(0x7f0000000100), 0x4, 0xffffffffffffffff, 0x4}, 0x38) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:40 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x4000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r2 = socket$inet(0x2, 0x1, 0x9)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000))

02:11:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xd7ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$HIDIOCGRDESC(r1, 0x90044802, &(0x7f0000000b40)={0x901, "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"})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1327.452590][T30764] FAULT_INJECTION: forcing a failure.
[ 1327.452590][T30764] name failslab, interval 1, probability 0, space 0, times 0
[ 1327.489666][T30764] CPU: 0 PID: 30764 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1327.499909][T30764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1327.509955][T30764] Call Trace:
[ 1327.513240][T30764]  dump_stack+0x18e/0x1d5
[ 1327.517564][T30764]  should_fail+0x604/0x770
[ 1327.521974][T30764]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 1327.527592][T30764]  should_failslab+0x5/0x20
[ 1327.532126][T30764]  kmem_cache_alloc_trace+0x28/0x240
[ 1327.537400][T30764]  sbitmap_queue_init_node+0x69c/0xf70
[ 1327.542850][T30764]  blk_mq_init_tags+0x153/0x290
[ 1327.547686][T30764]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 1327.552699][T30764]  blk_mq_init_sched+0x1f2/0xaf0
[ 1327.557719][T30764]  elevator_init_mq+0x2cd/0x3f0
[ 1327.562562][T30764]  __device_add_disk+0x87/0x1210
[ 1327.567487][T30764]  ? loop_add+0x3e0/0x710
[ 1327.571802][T30764]  loop_add+0x554/0x710
[ 1327.575946][T30764]  loop_control_ioctl+0x465/0x600
[ 1327.580965][T30764]  ? loop_remove+0xa0/0xa0
[ 1327.585371][T30764]  do_vfs_ioctl+0x6d1/0x15b0
[ 1327.589955][T30764]  __x64_sys_ioctl+0xd4/0x110
[ 1327.594618][T30764]  do_syscall_64+0xcb/0x1c0
[ 1327.599128][T30764]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1327.605018][T30764] RIP: 0033:0x7f6fdf247109
[ 1327.609419][T30764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1327.629096][T30764] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1327.637498][T30764] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1327.645458][T30764] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xf0ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfd00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfdffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfe00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1327.653419][T30764] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1327.661377][T30764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1327.669366][T30764] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1327.688455][T30764] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0xc000)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@private, @private, <r5=>0x0}, &(0x7f0000000040)=0xc)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r6, 0x1, 0x1, &(0x7f0000000100)={0x800}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00'}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0xc000) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@private, @private}, &(0x7f0000000040)=0xc) (async)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
setsockopt$inet6_icmp_ICMP_FILTER(r6, 0x1, 0x1, &(0x7f0000000100)={0x800}, 0x4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:41 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 38)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:41 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000500), 0x42, 0x0)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xa)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cc030000", @ANYRES16=0x0, @ANYBLOB="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"/965], 0x3cc}, 0x1, 0x0, 0x0, 0x801}, 0x801)

02:11:41 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$nl_xfrm(r1, &(0x7f0000001340)={&(0x7f0000000040), 0xc, &(0x7f0000001300)={&(0x7f00000012c0)=@getspdinfo={0x14, 0x25, 0x800, 0x70bd28, 0x25dfdbfb, 0x7f, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x40811)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000000)={&(0x7f00000000c0)="8a8bdbfb8a2c8be06939ae382d40d76a3619c84cda38ff60b138c76441463e7ac0920b446ebaecfa6dd0edcd7d5a0e232aeffff55cd7789da01e9df0b5d8e89c12b492dbe452d968cb8ec133d9ea27db8d5eacb38a9889ce1cacfab44f6f135a4690451f05dea7fc2c8d93d7308c3d203eaa00e8c67fde37c2cca982fd0b1518a9ac033a9270d4ecd9dfe375fd63439cc85a4c4fbd95b7d5b276d54a5ef44b44b6d5c02d24255c604271f23b360fb25fa1927c7aeee2948f071b6b132faccb80801d00e8396ea6911203e6e805", &(0x7f00000001c0)=""/219, &(0x7f00000002c0)="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", &(0x7f0000001380)="3fe4ccc7433efbf561a408b39f78d8a0859b775c80ac33aebc385e4164ba58828b634fcad12357bedf5eed85c6203beb9d1929cf03f68fe492462e166e33f7137f8ffedc19b14fb6148c309dcc2692033bc987537d97384bb598811a7919df56e40618a224db58b6f298ad273d80038985ef651ccc8c5dc0f6711ff56a3f9c97fd4ed8b352d020e4e0caba9b119760ee06b22b93bb56d9203955743ee1616022b98217ecf95f5892", 0x5}, 0x38)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xfeffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xff00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0xffffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$HIDIOCGRDESC(r1, 0x90044802, &(0x7f0000000b40)={0x901, "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"}) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1) (async)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$nl_xfrm(r1, &(0x7f0000001340)={&(0x7f0000000040), 0xc, &(0x7f0000001300)={&(0x7f00000012c0)=@getspdinfo={0x14, 0x25, 0x800, 0x70bd28, 0x25dfdbfb, 0x7f, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x40811)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000000)={&(0x7f00000000c0)="8a8bdbfb8a2c8be06939ae382d40d76a3619c84cda38ff60b138c76441463e7ac0920b446ebaecfa6dd0edcd7d5a0e232aeffff55cd7789da01e9df0b5d8e89c12b492dbe452d968cb8ec133d9ea27db8d5eacb38a9889ce1cacfab44f6f135a4690451f05dea7fc2c8d93d7308c3d203eaa00e8c67fde37c2cca982fd0b1518a9ac033a9270d4ecd9dfe375fd63439cc85a4c4fbd95b7d5b276d54a5ef44b44b6d5c02d24255c604271f23b360fb25fa1927c7aeee2948f071b6b132faccb80801d00e8396ea6911203e6e805", &(0x7f00000001c0)=""/219, &(0x7f00000002c0)="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", &(0x7f0000001380)="3fe4ccc7433efbf561a408b39f78d8a0859b775c80ac33aebc385e4164ba58828b634fcad12357bedf5eed85c6203beb9d1929cf03f68fe492462e166e33f7137f8ffedc19b14fb6148c309dcc2692033bc987537d97384bb598811a7919df56e40618a224db58b6f298ad273d80038985ef651ccc8c5dc0f6711ff56a3f9c97fd4ed8b352d020e4e0caba9b119760ee06b22b93bb56d9203955743ee1616022b98217ecf95f5892", 0x5}, 0x38)

02:11:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0xc000)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@private, @private, <r5=>0x0}, &(0x7f0000000040)=0xc)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r6, 0x1, 0x1, &(0x7f0000000100)={0x800}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00'}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0xc000) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@private, @private}, &(0x7f0000000040)=0xc) (async)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={r5, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
setsockopt$inet6_icmp_ICMP_FILTER(r6, 0x1, 0x1, &(0x7f0000000100)={0x800}, 0x4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1327.841229][T30800] FAULT_INJECTION: forcing a failure.
[ 1327.841229][T30800] name failslab, interval 1, probability 0, space 0, times 0
[ 1327.894484][T30800] CPU: 0 PID: 30800 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1327.904734][T30800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1327.914787][T30800] Call Trace:
[ 1327.918075][T30800]  dump_stack+0x18e/0x1d5
[ 1327.922399][T30800]  should_fail+0x604/0x770
[ 1327.926805][T30800]  ? blk_mq_alloc_rq_map+0xb3/0x1a0
[ 1327.931993][T30800]  should_failslab+0x5/0x20
[ 1327.936484][T30800]  __kmalloc+0x51/0x2b0
[ 1327.940627][T30800]  blk_mq_alloc_rq_map+0xb3/0x1a0
[ 1327.945638][T30800]  blk_mq_init_sched+0x1f2/0xaf0
[ 1327.950571][T30800]  elevator_init_mq+0x2cd/0x3f0
[ 1327.955408][T30800]  __device_add_disk+0x87/0x1210
[ 1327.960423][T30800]  ? loop_add+0x3e0/0x710
[ 1327.964747][T30800]  loop_add+0x554/0x710
[ 1327.968893][T30800]  loop_control_ioctl+0x465/0x600
[ 1327.973904][T30800]  ? loop_remove+0xa0/0xa0
[ 1327.978306][T30800]  do_vfs_ioctl+0x6d1/0x15b0
[ 1327.982886][T30800]  __x64_sys_ioctl+0xd4/0x110
[ 1327.987556][T30800]  do_syscall_64+0xcb/0x1c0
[ 1327.992051][T30800]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1327.997928][T30800] RIP: 0033:0x7f6fdf247109
[ 1328.002327][T30800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1328.022007][T30800] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1328.030499][T30800] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1328.038465][T30800] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1328.046429][T30800] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1328.054477][T30800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.062527][T30800] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:41 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 39)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:41 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000500), 0x42, 0x0)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xa)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cc030000", @ANYRES16=0x0, @ANYBLOB="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"/965], 0x3cc}, 0x1, 0x0, 0x0, 0x801}, 0x801)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000500), 0x42, 0x0) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xa) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cc030000", @ANYRES16=0x0, @ANYBLOB="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"/965], 0x3cc}, 0x1, 0x0, 0x0, 0x801}, 0x801) (async)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1328.090022][T30800] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async, rerun: 64)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$HIDIOCGRDESC(r1, 0x90044802, &(0x7f0000000b40)={0x901, "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"}) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async, rerun: 32)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1) (async, rerun: 32)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$nl_xfrm(r1, &(0x7f0000001340)={&(0x7f0000000040), 0xc, &(0x7f0000001300)={&(0x7f00000012c0)=@getspdinfo={0x14, 0x25, 0x800, 0x70bd28, 0x25dfdbfb, 0x7f, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x40811)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000000)={&(0x7f00000000c0)="8a8bdbfb8a2c8be06939ae382d40d76a3619c84cda38ff60b138c76441463e7ac0920b446ebaecfa6dd0edcd7d5a0e232aeffff55cd7789da01e9df0b5d8e89c12b492dbe452d968cb8ec133d9ea27db8d5eacb38a9889ce1cacfab44f6f135a4690451f05dea7fc2c8d93d7308c3d203eaa00e8c67fde37c2cca982fd0b1518a9ac033a9270d4ecd9dfe375fd63439cc85a4c4fbd95b7d5b276d54a5ef44b44b6d5c02d24255c604271f23b360fb25fa1927c7aeee2948f071b6b132faccb80801d00e8396ea6911203e6e805", &(0x7f00000001c0)=""/219, &(0x7f00000002c0)="31d0095d2b52d7d2f5a3bb7b8800c5d50cd0d8172223b48fe25667a8db352e214f0c2c34f4ca0ebcbee8233b31b9bcbff2d82894000eeaaf0c4e34de9eb7ae62bd48e7c3ba0924b95d1a2275fe5afa5f195e066db5fd9c326811e294dc468ea258a85abc425f2d272e84235eb3bf02ef8248af302cfe914bfb854b9f313ec0a2eb4e4f2fb0df589d64c272aaf54eeda73933b423d661220e3cbeb14f6195eb7c7feb6f74cdaeb65d44387148c0eccf65039ba9d481e9e4a60a8183cd8ab659dbd923aa4700f7b001793e56ded67713fab9b3e4e4e97911752fd3f9e7abffad2caf82df2ae0a0aabf0f1f89b34793f7a1d680041a521f19cffce18899e70b2f914502fffb3d294e3e23c6aab72a38cbe386bcc3aa83f7464898cad8326a699fcfd5745014d0f940dad14a2095861309e11846223e3b4b205a1c81e98cfb47587637c6a301c02e8cccb0c553378dc22c877d6019b689acb62d90be3614aebdc905bab96edc0c3c74c6acfd651974b3d9c7e293be257c4779fd38b85a8ea999faf4930622969383bf945aa7d11929bd19bc2c17da2f98ea8e90cba499dde10f163a81723314d50e28864f83fd2b0ff4a030eb39d76ae19e9b84db9f469473afebc4c1da144775a086d45ce3691fdf3e4934c02cfc12128fb8e4da6465316b3524c684513cb2009574c6c59ee6542e3b45cd328d2adc576e3482ef9b5ca9f2f294df67565e3cdc1ec89bcd08f7a142930f6a24b5d6ebd51c0dc33b860a478084851aa11c73985cf9cd91a78d161de84029ccf4fbd0b15742ec7b11e0fd7f36188f83d0fadbb24657b63389c94d6a0d194740afa56d3513c31575d21aae3e1e34d35e5886bd4408607eabd04c39bf147392d5d692d091ffc1cb561d13a5414ea2d529d40fc8b3f08a0438e55bf38b486559eccdbb9b22a47d32cbe38e8670d0d820d70514db9538bca4ebabed1a9837db6f309888e0e812724090983117d9719e96f8d845f61aca0fc6c909fefdfa54759f6e0c700a414506eb825aa7829b5e9fe135830f5badf26a2d1da64c0f5a8058dd5dfa3975131323a3b18476ee48e91ab7c4b8a202f78a0dcc78bb60e31c96c157977b112ae025c0c4d21d50d581579c6ee98dcefdd7e3851d86019265e1bf937e3ece85005c126d6ffc65a174c21c966dd94ed325b1510201fb9a9a9444122eb96603d4152dd15f27b315126234763dab8d43afa1aa5e6101383b7cd2d877e9175a1a1b30413c4fa91776a87ea428b343674a27a7a18b409b9ca13da92b545784ed70f74d03fe10e421b9cfe8efd2a0db90b370bc5b513149e29137c61433fd609e371eca6442eeea34a9e102c85501e129e90764ec248638ec8dfe4b8b8c4b66798b976b7262430cfe81638da7944e6932752e069dc4049b462a2cc0ac58785b0d4d5d3ff49780fbf8c23f29f06a96935fcf2d4e4a213ca9f33481a1fd3d894aa2fe900ce4962591a71802f557cc828518718f58a080ac9520b68670b5c0a1d02e1689e110669c69f8eb67c3d017e35a03900a3801f28634349a4bf5a3fd61639f6778af7d1f8685f097f7448637a70e21bc6211f24b99fbf4bb0cb3a5c886a7cf42199b76c76b253dbf46c4525dfc04b9768db48d3b09e150a48dc567e5528038631bd8ffe377bbad7d9ebde044e4da54e84ba9935bb5446eea0739f5091ae18b3620a5d01f66a61bfc4075e448065bb824f563d3c5c19abb81e3a0163ce8d7b8bcba9864adf0dd55003340992e62753a88534a5bfd667bf15a75efd50cee3b36ee1151ab1bf6d07ed5b09c9084794f602128f378b13c6ba7e6dcd861ccd9c72be7af1660bc62cd42254c5a139cd48123e8f4aad6f35cef9aa615fd4acc6cf091897bd19ea76c2ef0c73822cf54a1d6543e7137d37b94b90f44fac24329f440543d051d4c249637b8aa8894debdb5261c4169703a8aecfe40517b14da478e3e8932e74237b2106c1845918e0b41376f349e40f07ffce5f226cf242783e5dc3bd33e77eac6fbaa0646f1194fe2fd522bce0b89cc2a02e473564811e3d00efd4ade29fd787af3826859814c3cb033b4a7243bd8cb0431209fe298ce18edce606075d455369f236ed81164ff88c8ca7f5021df635b23a4498d7e92aa5e94f0b24fe531d657496ce28835c14264c176e87feea7ab6ca2dc65d962b69bc5cf8de417877eec8c35679b711588e8a52d62ae02b0324c9c3ae7f44f5b4070d8e75f024d0dba53670c1aff5a71fe33bc9298369f66bf8f1995a343b2581c87e47b48afaf23b27e66cf53768d7c4f6eeb2cdabc5310828c4f3f89ce896c3a4b86d168085724ac4e4d06601c93164246d2e15ccca7af198b87c3e34830229fb6464eac126685be7f50571b66dddd8e92f43f6640dfcbdd7779dd4c2fdea092e7bc4d4461f29247bb06ecb087d40a4d8c981b771c1e07403af0c414ee77246634f10436da84ea3ed64e9370575d5e285c2076ead319d70388e371a905bf7d9e2a676d1b4ab7b33cb7633e9b5ff60a1d4f8ba279cb063830db6ab3feb050723cfb386ddc5873b50f4d7b8b098280d6a22b800ed5e89d3c7ce1bf51f60157f2f829ffe1153a66be6acbb0492bc449508e80090649d43dd66105af647395f1b4e6ed09c980d46d8e77113b358c73c28709b81869f49710d14ca5f6170bbf1d735828d0b705a1e83bc098ed0ca25611afb8945f23a5ea2b4019572440624fb7392c3f919f4d4d5d302bea292f2f1238f85bc2869af08366a4f7f552cbebd57621d850d61e33a7951dd1fbc49e7384e8892927c67a026a7d33fbb7f590d8afc826856267dfa9b5a651ef8371a2d48106bdb5f440333ba60f222b2e564b78627e2c8250df065225a6584eed4ede1baf4cb096ee0c64bf4619c33c08e265220eb63f1c01209aa0c4a92f36a9555d366709d1bf79ab6b22847daf8edb52adaca86519a5bb194e6e365e7191b281e3c0ce13bbf280f2c961655b4522c6ef5493b843dcfbed15fab899b96facb94f1b47fbcbb2f74aaf80b1ffc31439e4b4179a65d67823ce87a64d0c1f8fbdd9da5db37dd4a65cfd55336508521b875cd3d400f1b15220917cbe25f3f7e69380633e3fbcc1b56de9d129d5ecb31dc0457fcc72e26b5480403dce4a9fa718225dc5a5427851c690c37cb1da87b817a9213b4d6cfdf122d5b0f82e825a8e2a8148be55ad6bc60a6c5743c4ac5064bfdc774655eb05a4a674fc43ec45a12bcda17b8571b155400cbf768f464732f184d0c7cb9b0efa50de98533b51c6b1d8617f42f592ecf71804cbb51c97b7bfcbea6a266d6a4bae8c7006b17de246a66ebb86dc6ec2040a068d76c6310321880d61fa75242be87f4bb1e559ed0d14191998fd86048ab48ac3612c86908ec5bfd2ea4a176c4ecb976d08ad2fb88bd925b5d262b570bd9a1b3b78a3a3dc5d8feb489b707d2ad15f0a70cccf5bdf6b6dcbc7bde638a6fe984a4140d32997c69263c959eb42e5d6d43071a7a377b252fe437a2a2ffb7a0b40346a740c99a932665b70f3be1975d16460ecaaee607a8153c3c378b0962ddda37dadaab734d39e18ae9aa781a68920a564a5f24afdf790110a8190aa05a6766723feff68fa973470ac4623c3f44771462877195c9695c3eedd4fc38094653e20f6847a065ecd3dbb44e5d41874d3cd42b41d9e663394c64c5d11bb6ddcc942eb526b426546e4b98855c999e9dc28e625833788de55cd8329c7e15b4f485340db3430e2a0f2bead542ddd55a0e0eb27986ac9e0624c2031526fef08939f75a2b5d5692d81599bda1056d543adb4631c65ff34e133bdf14b93ed5dda4ef260eba072c5624dc22440d1c911ea83d58c39b7dc273c2de824505f4cd276123a5d2cd29fe368f252f86452c158b40fe312147116ac8d439440f63e85ea2ecc9976284e380748a84494e08aa5de4bd4836b2ecf55d0cd3b33f2f89110942e28e5e4c8dd661a13dc1c27cc7dc52741d52ad21858d3777f3fa5c8e2d318c4698088998ae998ee08dcd847704ba6f4f9e4bbe1d23c1119592afe8d50974a6e671dd7ca803908bf8af5a9f74117b11ded32b331b4488ff9e03ea833295bb3226b156f4dda3c668ff7ff6e9c14b51b4bb1231ae4613a2c13c935db43845f2d8e5c979673d81fb16f95957fe4d7f01e59592f0009c050414570deff3be1817e115b201c7768276c8daaa765c013d4a04f574f721e486bec24abbc3ad0395aea610f70875f41c47a3d53c3bd77ea1032361c8d7f8929c440a89097abded18a0793ba697fa1ad2fad8f503020f2cfe286215babf76ad633be05d7a387b001ac5162c4837b8104791195a3f7d2f9855b5b6a80700dbcb9f94f0ebd8b8f6f2610f8f0573c4f35124dc3478418e8d72f3d440c8382f65afeead542dd69575a9a330e1ea59012998450e9bbd08efd9da6fe31f2f00da6f76fe4dffb0a88ed3a094b9841c7f2d92a99d7468e61dad5dda4d5a1d7e65f5de09402b47feb8d94318af104decb4688590458bfa619270318ffc84501a7d16a64b58c3c4fd5c82a45303501dac636f843f513bc83aab6c2b8c3364a18fb3748039ceb5ef46b0074e8e9dbb6fc9e9fa3b2f97d9ccec49d7ae82466374002ef5baff8ac8d5a9fa0e4eeca5aff3acabb02223efe2d6d29ea3385ee275f4b416fcd9c07ad648ec20d226c85bd3f606f4d0ce30b48f9215299c8c882cabe3ce59910b539e0a04dc28b1b2359d12ed17dbace3a8e59dcb7011083f4c1e768acff3a4f64a729f9508b1958df16b42773d91cf81ea836f11dea21fd38e5401159f328fb4068da20b6f60481f62eb692601ad5f26fd5d6fef3d726b0b9b8ce73d917f1c5f2826d4fc5ce07a3b7b1bc9a0a586ff9e7ca2df0bc5cc4d5047d30e6fec387275b96157219d018b453b04937ac1f7e9beb9dbd4cc7457fbf6b5ce252ef0d7a68ac8b840c9cc253eaec137759b62d6a85233f027a55f4da9d899d0527681fb98305ed259065049fe1ff4851f593d8986233ceaa1b22f01f84bbdfe8b35969cbc5c37380449d4b282514066d39ba6c5de635c3733a0e3527cd3640250c96b0e26c554ef76da4dd8d6901226c2bcdac6df95179b31df411800306338b084a5ffd44f7fece016d4facee547ec97b23167fdbfc9454b84981ab0b28c19cd6821fd187ce52663cc9c172d2ffe437a2d6dd6eaaffb9796fc3aec9fe0652892112d02891ab6824e5bc7e6796d6cab0bfca156727d73f45b4d4deb6dfd3f4f6c81e8c4ec9f7d29f6fce25b41f70388c4e8c8ed520acab7fd142a7cdb55a52e23c28b9c5760bcf7db9564f32b9c8b7f4231ae2e6a40184d1136e7797318ec2b54e40168a4b1a25f48266e3880b277ba2e3f2aea812885daccca98c07b8e0c88d539d6443fc17c00bfaf0ea1a64b5f1e1c27a8f620ebbd72f04ef540ee1e94b518534f2b56083202167a60fa910b711f621ab36539465d2eac5314258768d6859ad2dbd081cf2fd060ebd95f56fcd6033c6d206621f82f62b3b2b578232dd7cdd14bc92e41be3a9f8e27a56a41790e501fd45d02bb492174b878e628a3a54caa3738870ed23e3e05ac7324fc9ed58d8805b9ecd9f62200445dce6cc015b57be325dbe0564cbce01389640ee3696f5871c69a13b856d722ec4bd5aef23ec04b049e642b48a158987cc36c84728c4e411e44256fdab354ce1ce70917d00ec71972ace3b0ba7d9276fd497e2761b4fe24a5dbfa7af0f72164716b0de2ab88d895862a1a67ad603a89dcfc59cc2415b692aff3a721cff2e9ad50cd2406faa86c19743d0cff4", &(0x7f0000001380)="3fe4ccc7433efbf561a408b39f78d8a0859b775c80ac33aebc385e4164ba58828b634fcad12357bedf5eed85c6203beb9d1929cf03f68fe492462e166e33f7137f8ffedc19b14fb6148c309dcc2692033bc987537d97384bb598811a7919df56e40618a224db58b6f298ad273d80038985ef651ccc8c5dc0f6711ff56a3f9c97fd4ed8b352d020e4e0caba9b119760ee06b22b93bb56d9203955743ee1616022b98217ecf95f5892", 0x5}, 0x38)

02:11:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1328.234000][T30869] FAULT_INJECTION: forcing a failure.
[ 1328.234000][T30869] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1328.268675][T30869] CPU: 1 PID: 30869 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1328.278943][T30869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1328.288991][T30869] Call Trace:
[ 1328.292280][T30869]  dump_stack+0x18e/0x1d5
[ 1328.296623][T30869]  should_fail+0x604/0x770
[ 1328.301032][T30869]  __alloc_pages_nodemask+0x12a/0x6f0
[ 1328.306392][T30869]  blk_mq_alloc_rqs+0x252/0x6d0
[ 1328.311230][T30869]  blk_mq_init_sched+0x256/0xaf0
[ 1328.316159][T30869]  elevator_init_mq+0x2cd/0x3f0
[ 1328.321004][T30869]  __device_add_disk+0x87/0x1210
[ 1328.325944][T30869]  ? loop_add+0x3e0/0x710
[ 1328.330399][T30869]  loop_add+0x554/0x710
[ 1328.334548][T30869]  loop_control_ioctl+0x465/0x600
[ 1328.339571][T30869]  ? loop_remove+0xa0/0xa0
[ 1328.343975][T30869]  do_vfs_ioctl+0x6d1/0x15b0
[ 1328.348562][T30869]  __x64_sys_ioctl+0xd4/0x110
[ 1328.353242][T30869]  do_syscall_64+0xcb/0x1c0
[ 1328.357740][T30869]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1328.363620][T30869] RIP: 0033:0x7f6fdf247109
[ 1328.368045][T30869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1328.387637][T30869] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1328.396037][T30869] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1328.403998][T30869] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1328.411959][T30869] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1328.419918][T30869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000500), 0x42, 0x0) (async)
r2 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xa)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cc030000", @ANYRES16=0x0, @ANYBLOB="000129bd7000fddbdf250d0000003400038008000200000001000801000400000008000100000001000800010002000000080001000600000008000300f6000000540009800800010000000000080002000400000008000200faffffff08000100060000000800010091000000080002000000000008000100060000000800010001010000080001000100000008000100ffffff7f54000980088434bf21ba4cdb8000010001030000080001004608000008000100070000000800010003000000080012b05865d6c4c2ab0100020000000800020081000000080001009205000008000200060000005400078008000200e10000000c0004000800000000000000080001003f0000000c000400e3000000000000000c00030008000000000000000c000300020000000000000008000200810000000800020080000000440104801c0007800800040000fcffff0800030005000000080001001b00000034000780080001000e0000000800030000000000080002000010000008000400d00d00000800010006000000080001001d00000054000780080002000600000008000400080000000800010001000000080001000e000000080008000200000400000800040005000000080004000800000008000300000000000c00078008000400a83f35422c0007800800020007000000080003008c8400000800040001000000080001001d000000080004001067e5db2400078008000400000000000800020003000000080001001d0000000800030006000000340007800800030006000000080001000100000008000300ff0700000800010017000000080004003f00000008000400010000000900010073797a3000000000980004801400078008000300e160000008000100160000000900010073797a31000000001300010062726f6164636173742d6c696e6b00000900010073797a30000000000900010073797a31000000000c00078008000400770100001c0007800800040002000000080001000900000008000400810000000900010073797a3000000000140007800800020003000000080001000a00000064000280080002003f000000340003800800020008000000080002000900000008000200cda60000080001003f000000080001000008000008000200060000000800010000000020080002007f00000004000400040004000400040008000100010100002c0004801300010062726f6164636173742d6c696e6b00001300010062726f6164636173742d6c696e6b00001c000580080001007564700007000100696200000800010065746800"/965], 0x3cc}, 0x1, 0x0, 0x0, 0x801}, 0x801)

02:11:41 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 40)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

[ 1328.427875][T30869] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:41 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x101141, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a1c1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, r1)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1328.569555][T30915] FAULT_INJECTION: forcing a failure.
[ 1328.569555][T30915] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1328.594364][T30915] CPU: 0 PID: 30915 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1328.604602][T30915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1328.614645][T30915] Call Trace:
[ 1328.617930][T30915]  dump_stack+0x18e/0x1d5
[ 1328.622250][T30915]  should_fail+0x604/0x770
[ 1328.626654][T30915]  __alloc_pages_nodemask+0x12a/0x6f0
[ 1328.632061][T30915]  blk_mq_alloc_rqs+0x252/0x6d0
[ 1328.636900][T30915]  blk_mq_init_sched+0x256/0xaf0
[ 1328.641822][T30915]  elevator_init_mq+0x2cd/0x3f0
[ 1328.646657][T30915]  __device_add_disk+0x87/0x1210
[ 1328.651576][T30915]  ? loop_add+0x3e0/0x710
[ 1328.655893][T30915]  loop_add+0x554/0x710
[ 1328.660035][T30915]  loop_control_ioctl+0x465/0x600
[ 1328.665056][T30915]  ? loop_remove+0xa0/0xa0
[ 1328.669458][T30915]  do_vfs_ioctl+0x6d1/0x15b0
[ 1328.674076][T30915]  __x64_sys_ioctl+0xd4/0x110
[ 1328.678745][T30915]  do_syscall_64+0xcb/0x1c0
[ 1328.683236][T30915]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1328.689210][T30915] RIP: 0033:0x7f6fdf247109
[ 1328.693608][T30915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfe00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0xffcc582ec261b0c0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x120, r1, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}]}]}, @TIPC_NLA_BEARER={0x90, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @private2, 0x6}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4d4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'pim6reg\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x90b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}]}, 0x120}}, 0x40000d0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x10, 0x70bd2c, 0x25dfdbff, {0x1, 0x0, 0x0, 0x1}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x4000008)

[ 1328.713289][T30915] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1328.721690][T30915] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1328.729655][T30915] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1328.737613][T30915] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1328.745571][T30915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.753531][T30915] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xff00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 41)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0xffcc582ec261b0c0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x120, r1, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}]}]}, @TIPC_NLA_BEARER={0x90, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @private2, 0x6}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4d4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'pim6reg\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x90b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}]}, 0x120}}, 0x40000d0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x10, 0x70bd2c, 0x25dfdbff, {0x1, 0x0, 0x0, 0x1}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x4000008)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0xffcc582ec261b0c0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x120, r1, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}]}]}, @TIPC_NLA_BEARER={0x90, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @private2, 0x6}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4d4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'pim6reg\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x90b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}]}, 0x120}}, 0x40000d0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x10, 0x70bd2c, 0x25dfdbff, {0x1, 0x0, 0x0, 0x1}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x4000008) (async)

02:11:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x1, 0x8000, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x100}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffffff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x101141, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xffd7})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a1c1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, r1)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a1c1, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, r1) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x1, 0x8000, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x100}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffffff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x1, 0x8000, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x100}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffffff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x101141, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x101141, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfff0})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0xffcc582ec261b0c0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x120, r1, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}]}]}, @TIPC_NLA_BEARER={0x90, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @private2, 0x6}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4d4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'pim6reg\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x90b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}]}, 0x120}}, 0x40000d0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmallocinfo\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x10, 0x70bd2c, 0x25dfdbff, {0x1, 0x0, 0x0, 0x1}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x4000008)

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x1000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1328.911345][T30949] FAULT_INJECTION: forcing a failure.
[ 1328.911345][T30949] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.971566][T30949] CPU: 1 PID: 30949 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1328.981810][T30949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1328.991940][T30949] Call Trace:
[ 1328.995227][T30949]  dump_stack+0x18e/0x1d5
[ 1328.999557][T30949]  should_fail+0x604/0x770
[ 1329.003975][T30949]  ? lo_complete_rq+0x2a0/0x2a0
[ 1329.008815][T30949]  ? elevator_alloc+0x4b/0xc0
[ 1329.013488][T30949]  should_failslab+0x5/0x20
[ 1329.017983][T30949]  kmem_cache_alloc_trace+0x28/0x240
[ 1329.023273][T30949]  elevator_alloc+0x4b/0xc0
[ 1329.027768][T30949]  dd_init_queue+0x1f/0x330
[ 1329.032257][T30949]  blk_mq_init_sched+0x45c/0xaf0
[ 1329.037177][T30949]  elevator_init_mq+0x2cd/0x3f0
[ 1329.042017][T30949]  __device_add_disk+0x87/0x1210
[ 1329.046942][T30949]  ? loop_add+0x3e0/0x710
[ 1329.051259][T30949]  loop_add+0x554/0x710
[ 1329.055403][T30949]  loop_control_ioctl+0x465/0x600
[ 1329.060414][T30949]  ? loop_remove+0xa0/0xa0
[ 1329.064819][T30949]  do_vfs_ioctl+0x6d1/0x15b0
[ 1329.069398][T30949]  __x64_sys_ioctl+0xd4/0x110
[ 1329.074065][T30949]  do_syscall_64+0xcb/0x1c0
[ 1329.078562][T30949]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1329.084436][T30949] RIP: 0033:0x7f6fdf247109
[ 1329.088840][T30949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1329.108522][T30949] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4)
connect$pppl2tp(r1, 0x0, 0xffffffffffffff7c)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1329.116927][T30949] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1329.124887][T30949] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1329.132869][T30949] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1329.140835][T30949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1329.148796][T30949] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1329.193270][T30949] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:42 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 42)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x1, 0x8000, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x100}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffffff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000844}, 0x8000) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x2000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a1c1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async, rerun: 32)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 32)
syz_genetlink_get_family_id$batadv(0x0, r1)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4) (async)
connect$pppl2tp(r1, 0x0, 0xffffffffffffff7c) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$AUDIT_TRIM(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x3f6, 0x300, 0x70bd2d, 0x25dfdbfb, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x40080c0)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_GET(r1, &(0x7f0000000200)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x3f8, 0x20, 0x70bd27, 0x25dfdbff, "", [""]}, 0x6a}, 0x1, 0x0, 0x0, 0x804}, 0x4000001)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$AUDIT_TRIM(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x3f6, 0x300, 0x70bd2d, 0x25dfdbfb, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x40080c0)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_GET(r1, &(0x7f0000000200)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x3f8, 0x20, 0x70bd27, 0x25dfdbff, "", [""]}, 0x6a}, 0x1, 0x0, 0x0, 0x804}, 0x4000001)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:42 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4) (async)
connect$pppl2tp(r1, 0x0, 0xffffffffffffff7c) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async, rerun: 64)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1329.303939][T31025] FAULT_INJECTION: forcing a failure.
[ 1329.303939][T31025] name failslab, interval 1, probability 0, space 0, times 0
[ 1329.327231][T31025] CPU: 0 PID: 31025 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1329.337478][T31025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1329.347527][T31025] Call Trace:
[ 1329.350813][T31025]  dump_stack+0x18e/0x1d5
[ 1329.355140][T31025]  should_fail+0x604/0x770
[ 1329.359547][T31025]  ? dd_init_queue+0x69/0x330
[ 1329.364214][T31025]  should_failslab+0x5/0x20
[ 1329.368709][T31025]  kmem_cache_alloc_trace+0x28/0x240
[ 1329.373992][T31025]  dd_init_queue+0x69/0x330
[ 1329.378486][T31025]  blk_mq_init_sched+0x45c/0xaf0
[ 1329.383415][T31025]  elevator_init_mq+0x2cd/0x3f0
[ 1329.388278][T31025]  __device_add_disk+0x87/0x1210
[ 1329.393229][T31025]  ? loop_add+0x3e0/0x710
[ 1329.397552][T31025]  loop_add+0x554/0x710
[ 1329.401874][T31025]  loop_control_ioctl+0x465/0x600
[ 1329.406886][T31025]  ? loop_remove+0xa0/0xa0
[ 1329.411289][T31025]  do_vfs_ioctl+0x6d1/0x15b0
[ 1329.415872][T31025]  __x64_sys_ioctl+0xd4/0x110
[ 1329.420538][T31025]  do_syscall_64+0xcb/0x1c0
[ 1329.425037][T31025]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1329.430919][T31025] RIP: 0033:0x7f6fdf247109
02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x5000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1329.435323][T31025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1329.455089][T31025] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1329.463490][T31025] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1329.471452][T31025] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1329.479415][T31025] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1329.487377][T31025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1329.495335][T31025] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x8000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xa000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x10000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1329.515496][T31025] "mq-deadline" elevator initialization failed, falling back to "none"
02:11:43 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 43)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x32b880, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)="875b64c169dac3d93a92ee7b06aa0a96e9fc858f307f532732e1692ac5372092fbad797f20c24137c72f6926138575c4057ab3cac4f5d4b185c107b145c6d1401af622345d2cafad2f6a9f2b4bc44b72d05beb38b15b3dedcdcac58c71718909736c2cdc240508143dbb4d142b9ff06ba037797e4337961562edf2eefc7662c3554f9ccc6be85805a2a8ea854e715370b0543328241c539fb6191e61645c02dd6fc3c3255885ea91a6b353f4ed", &(0x7f0000000100)=@udp, 0x1}, 0x20)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x4e22, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x40, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, 'syz_tun\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x8, 0x70bd2d, 0x25dfdbfb, {0x1, 0x0, 0x1, 0x1}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0xc800)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x40000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket(0x23, 0x4, 0x1)
ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000000)={'vlan1\x00'})

02:11:43 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$AUDIT_TRIM(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x3f6, 0x300, 0x70bd2d, 0x25dfdbfb, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x40080c0)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_GET(r1, &(0x7f0000000200)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x3f8, 0x20, 0x70bd27, 0x25dfdbff, "", [""]}, 0x6a}, 0x1, 0x0, 0x0, 0x804}, 0x4000001) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x32b880, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)="875b64c169dac3d93a92ee7b06aa0a96e9fc858f307f532732e1692ac5372092fbad797f20c24137c72f6926138575c4057ab3cac4f5d4b185c107b145c6d1401af622345d2cafad2f6a9f2b4bc44b72d05beb38b15b3dedcdcac58c71718909736c2cdc240508143dbb4d142b9ff06ba037797e4337961562edf2eefc7662c3554f9ccc6be85805a2a8ea854e715370b0543328241c539fb6191e61645c02dd6fc3c3255885ea91a6b353f4ed", &(0x7f0000000100)=@udp, 0x1}, 0x20)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x4e22, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x40, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, 'syz_tun\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x32b880, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)="875b64c169dac3d93a92ee7b06aa0a96e9fc858f307f532732e1692ac5372092fbad797f20c24137c72f6926138575c4057ab3cac4f5d4b185c107b145c6d1401af622345d2cafad2f6a9f2b4bc44b72d05beb38b15b3dedcdcac58c71718909736c2cdc240508143dbb4d142b9ff06ba037797e4337961562edf2eefc7662c3554f9ccc6be85805a2a8ea854e715370b0543328241c539fb6191e61645c02dd6fc3c3255885ea91a6b353f4ed", &(0x7f0000000100)=@udp, 0x1}, 0x20) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x4e22, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x40, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, 'syz_tun\x00'}) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xd7ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async, rerun: 64)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r1 = socket(0x23, 0x4, 0x1) (rerun: 32)
ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000000)={'vlan1\x00'})

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xf0ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r5, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r2)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r6, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4005800)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc06fa84a87895b09}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c0c5}, 0x4000)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x41)

[ 1329.667976][T31062] FAULT_INJECTION: forcing a failure.
[ 1329.667976][T31062] name failslab, interval 1, probability 0, space 0, times 0
02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x32b880, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)="875b64c169dac3d93a92ee7b06aa0a96e9fc858f307f532732e1692ac5372092fbad797f20c24137c72f6926138575c4057ab3cac4f5d4b185c107b145c6d1401af622345d2cafad2f6a9f2b4bc44b72d05beb38b15b3dedcdcac58c71718909736c2cdc240508143dbb4d142b9ff06ba037797e4337961562edf2eefc7662c3554f9ccc6be85805a2a8ea854e715370b0543328241c539fb6191e61645c02dd6fc3c3255885ea91a6b353f4ed", &(0x7f0000000100)=@udp, 0x1}, 0x20)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (rerun: 64)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x4e22, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x40, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, 'syz_tun\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (rerun: 32)

[ 1329.720597][T31062] CPU: 1 PID: 31062 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1329.730847][T31062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1329.740931][T31062] Call Trace:
[ 1329.744219][T31062]  dump_stack+0x18e/0x1d5
[ 1329.748544][T31062]  should_fail+0x604/0x770
[ 1329.752968][T31062]  ? device_create_vargs+0x7d/0x210
[ 1329.758156][T31062]  should_failslab+0x5/0x20
[ 1329.762737][T31062]  kmem_cache_alloc_trace+0x28/0x240
[ 1329.768020][T31062]  device_create_vargs+0x7d/0x210
[ 1329.773040][T31062]  device_create+0x86/0xb0
[ 1329.777449][T31062]  bdi_register_va+0x89/0x5e0
[ 1329.782193][T31062]  bdi_register+0x80/0xa0
[ 1329.786510][T31062]  ? __device_add_disk+0x50a/0x1210
[ 1329.791695][T31062]  bdi_register_owner+0x56/0xf0
[ 1329.796536][T31062]  __device_add_disk+0x583/0x1210
[ 1329.801648][T31062]  loop_add+0x554/0x710
[ 1329.806082][T31062]  loop_control_ioctl+0x465/0x600
[ 1329.811097][T31062]  ? loop_remove+0xa0/0xa0
[ 1329.815591][T31062]  do_vfs_ioctl+0x6d1/0x15b0
[ 1329.820178][T31062]  __x64_sys_ioctl+0xd4/0x110
[ 1329.825106][T31062]  do_syscall_64+0xcb/0x1c0
[ 1329.829693][T31062]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1329.835583][T31062] RIP: 0033:0x7f6fdf247109
[ 1329.839988][T31062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1329.859589][T31062] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1329.868000][T31062] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1329.875966][T31062] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1329.884017][T31062] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1329.892071][T31062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1329.900120][T31062] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1329.928026][T31062] ------------[ cut here ]------------
[ 1329.933510][T31062] WARNING: CPU: 1 PID: 31062 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1329.942682][T31062] Modules linked in:
[ 1329.946575][T31062] CPU: 1 PID: 31062 Comm: syz-executor.5 Not tainted 5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1329.956805][T31062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1329.966868][T31062] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1329.972667][T31062] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1329.992669][T31062] RSP: 0018:ffff8881cd59fce8 EFLAGS: 00010246
[ 1329.998728][T31062] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1330.006697][T31062] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1330.014662][T31062] RBP: ffff8881ef1b2298 R08: ffffffff82114c4e R09: fffffbfff0b2c38b
[ 1330.022624][T31062] R10: fffffbfff0b2c38b R11: 1ffffffff0b2c38a R12: dffffc0000000000
[ 1330.030589][T31062] R13: 1ffff1103a408e01 R14: 1ffff1103a408e9d R15: ffff8881d2047000
[ 1330.038559][T31062] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1330.047477][T31062] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1330.054050][T31062] CR2: 00007f1202635505 CR3: 00000001d1c8b000 CR4: 00000000003406e0
[ 1330.062024][T31062] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1330.069987][T31062] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1330.078031][T31062] Call Trace:
[ 1330.081340][T31062]  loop_add+0x554/0x710
[ 1330.085485][T31062]  loop_control_ioctl+0x465/0x600
[ 1330.090498][T31062]  ? loop_remove+0xa0/0xa0
[ 1330.094903][T31062]  do_vfs_ioctl+0x6d1/0x15b0
[ 1330.099481][T31062]  __x64_sys_ioctl+0xd4/0x110
[ 1330.104142][T31062]  do_syscall_64+0xcb/0x1c0
[ 1330.108641][T31062]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1330.114517][T31062] RIP: 0033:0x7f6fdf247109
[ 1330.119017][T31062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1330.138705][T31062] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1330.147108][T31062] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1330.155069][T31062] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1330.163031][T31062] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1330.171078][T31062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1330.179036][T31062] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1330.187000][T31062] ---[ end trace 0360cad814872656 ]---
02:11:43 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 44)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfd000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x331280, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x8, 0x70bd2d, 0x25dfdbfb, {0x1, 0x0, 0x1, 0x1}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0xc800)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x8, 0x70bd2d, 0x25dfdbfb, {0x1, 0x0, 0x1, 0x1}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0xc800) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x331280, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x331280, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfdffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r5, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r2)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r6, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4005800)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc06fa84a87895b09}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c0c5}, 0x4000)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x41)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r5, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r2) (async)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r6, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4005800) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc06fa84a87895b09}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c0c5}, 0x4000) (async)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x41) (async)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfe000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:43 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = socket(0x23, 0x4, 0x1)
ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000000)={'vlan1\x00'})

02:11:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x331280, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x8, 0x70bd2d, 0x25dfdbfb, {0x1, 0x0, 0x1, 0x1}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0xc800) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 32)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (rerun: 32)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfeffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1330.383253][T31102] FAULT_INJECTION: forcing a failure.
[ 1330.383253][T31102] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.516178][T31102] CPU: 0 PID: 31102 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1330.527818][T31102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1330.537868][T31102] Call Trace:
[ 1330.541256][T31102]  dump_stack+0x18e/0x1d5
[ 1330.545655][T31102]  should_fail+0x604/0x770
[ 1330.550067][T31102]  ? kobject_set_name_vargs+0x5d/0x110
[ 1330.555514][T31102]  should_failslab+0x5/0x20
[ 1330.560004][T31102]  __kmalloc_track_caller+0x4f/0x280
[ 1330.565275][T31102]  kstrdup_const+0x51/0x90
[ 1330.569857][T31102]  kobject_set_name_vargs+0x5d/0x110
[ 1330.575131][T31102]  device_create_vargs+0x182/0x210
[ 1330.580236][T31102]  device_create+0x86/0xb0
[ 1330.584640][T31102]  bdi_register_va+0x89/0x5e0
[ 1330.589301][T31102]  bdi_register+0x80/0xa0
[ 1330.593621][T31102]  ? __device_add_disk+0x50a/0x1210
[ 1330.598813][T31102]  bdi_register_owner+0x56/0xf0
[ 1330.603655][T31102]  __device_add_disk+0x583/0x1210
[ 1330.608675][T31102]  loop_add+0x554/0x710
[ 1330.612822][T31102]  loop_control_ioctl+0x465/0x600
[ 1330.617925][T31102]  ? loop_remove+0xa0/0xa0
[ 1330.622414][T31102]  do_vfs_ioctl+0x6d1/0x15b0
[ 1330.627088][T31102]  __x64_sys_ioctl+0xd4/0x110
[ 1330.631751][T31102]  do_syscall_64+0xcb/0x1c0
[ 1330.636240][T31102]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1330.642117][T31102] RIP: 0033:0x7f6fdf247109
[ 1330.646516][T31102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1330.666112][T31102] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1330.674512][T31102] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1330.682488][T31102] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1330.690449][T31102] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1330.698406][T31102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1330.706369][T31102] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1330.716479][T31102] ------------[ cut here ]------------
[ 1330.721955][T31102] WARNING: CPU: 0 PID: 31102 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1330.735647][T31102] Modules linked in:
[ 1330.739541][T31102] CPU: 0 PID: 31102 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1330.751143][T31102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1330.761203][T31102] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1330.766997][T31102] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1330.786678][T31102] RSP: 0018:ffff8881ccf4fce8 EFLAGS: 00010246
[ 1330.792744][T31102] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1330.800731][T31102] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1330.808695][T31102] RBP: ffff8881eb9f2298 R08: ffffffff82114c4e R09: ffffed10399e9eda
[ 1330.816653][T31102] R10: ffffed10399e9eda R11: 1ffff110399e9ed9 R12: dffffc0000000000
[ 1330.824621][T31102] R13: 1ffff1103e9ff801 R14: 1ffff1103e9ff89d R15: ffff8881f4ffc000
[ 1330.832842][T31102] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1330.841755][T31102] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1330.848325][T31102] CR2: 0000000000000000 CR3: 00000001e4a5f000 CR4: 00000000003406f0
[ 1330.856419][T31102] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1330.864379][T31102] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1330.872417][T31102] Call Trace:
[ 1330.875706][T31102]  loop_add+0x554/0x710
[ 1330.879851][T31102]  loop_control_ioctl+0x465/0x600
[ 1330.884861][T31102]  ? loop_remove+0xa0/0xa0
[ 1330.889265][T31102]  do_vfs_ioctl+0x6d1/0x15b0
[ 1330.893843][T31102]  __x64_sys_ioctl+0xd4/0x110
[ 1330.898507][T31102]  do_syscall_64+0xcb/0x1c0
[ 1330.903000][T31102]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1330.908966][T31102] RIP: 0033:0x7f6fdf247109
[ 1330.913376][T31102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1330.933144][T31102] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1330.941545][T31102] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1330.949508][T31102] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1330.957557][T31102] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
02:11:44 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 45)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:44 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x174, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xe3, 0x3, "ed0e772c66f1db170bd63a9bb282e4e4068fab86ca2768deb92b12e19ab687aa4f0ff54bcc13be1c97f2699210e89bb0992a907f2b923bd78ff7c78148e7dc55d26e4fa05fa52e13932ffe657de70859a01afb9f0f13f8525f917393a0012990c13914ece500f201449cce4154ae6d5f8e9171248994b405fd0f41bbbdf639f950c16703bebe294f32b423880b5f6a2ad4adad8b8b218d3ce8fc7ea8a114bf2dee4d59cdf77037da0f9d6f7608187d25dbf1019ab1fe07ccb2a9b8b9912147995b09c3bcca834cb2ef7288b9290f2e81a7f6619a7486c87ab14de3883a2b6d"}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "bb4daa6009296ae114ffdf4311e0216e5f22b9ff2c0ed16f9279a43535f6cf0c3f9a"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ID={0x24, 0x3, "be70bd9faf5739f9ca50b5d52b6d52a5c523daa76065a1758854ca0bfa99531b"}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x80}, 0x10000011)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, 0x0, 0x4008891)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x6, 0xaee7, 0x1, 0x947, r5, 0x3f, '\x00', 0x0, r2, 0x5, 0x3, 0x2, 0x7}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x5, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYRES32=r4, @ANYBLOB="78c0a6fe5a4c63f5"], &(0x7f00000003c0)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000400)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x8, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000740)=[r4, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6]}, 0x80)
r7 = syz_genetlink_get_family_id$tipc2(0x0, r4)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r8)
sendmsg$TIPC_NL_KEY_FLUSH(r8, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)={0xd4, r7, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x43}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x63}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xa, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x89ee}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x20000815)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/stat\x00', 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:44 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xff000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$RTC_PIE_ON(r1, 0x7005)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x330, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd787}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x586}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x87, 0x3, "e9529f6bd256ae08d0445b1310dee246873b439399057e2a909fc53458fff35058666d1df0ea533b7140c4996b47a7965e7448fc3b5cb8e0f612903a9dd6a795249c0b963a7c5e9c16612cbaf3efed7efa2f33bbd380a92813f3c7b23aae94b98358568159cec3a1d048b4cd5d8f34606de79611367e9cd36e801e79800367e236fb6b"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe6a3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x4f, 0x3, "adcb85cea29c7a7e42a8b982df7d1e349fcd43377b9cace0602cf1ee486105aba7d8c6597d5735a3e6b84c2bc4adee18f5e36e7d90205b008776746dafd45eccc03f6ce41a830c0bf8e620"}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "e81f804b8ed91e0e1c4d11d0022751135d0f57a16fe36d1fb5"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1760}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6b59}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}]}, 0x330}, 0x1, 0x0, 0x0, 0x4}, 0xb27b02ae4d959990)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000b40)={0x2c0, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x32}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3049}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x12}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x564, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000000000000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xec}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3149}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x89}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc354}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000800))

02:11:44 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r5, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r2)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r6, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4005800)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc06fa84a87895b09}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c0c5}, 0x4000)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x41)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r5, @ANYBLOB="0024ccbe4b90030429bd7000ffdbdf2505000000180005800c000280080001000200000008000100657468002c000980080001001f00000008000100ff07000008000200ff01000008000200050000000800020002000000d400048024000780080004000001000008000300080000000800010000000000080001001b0000000c00078008000200570000001300010062726f6164636173742d6c696e6b00000900010073797a31000000001400078008000200e50b954b080001001b0000000900010073797a31000000002c000780080002006a0f00000800040001000100080002000900000008000400810000000800020004000000340007800800010009000000080002006c000000080003001f00000008000200434a000008000300dc080000080003000100008030000580080001006574680007000100696200000c000280080001001e00000008000100756470000800010075647000440004801300010062726f6164636173742d6c696e6b00000900010073797a31000000000900010073797a31000000001300010062726f6164636173742d"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r2) (async)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r6, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4005800) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc06fa84a87895b09}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c0c5}, 0x4000) (async)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x41) (async)

02:11:44 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfffffffd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1330.965519][T31102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1330.973479][T31102] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1330.981448][T31102] ---[ end trace 0360cad814872657 ]---
02:11:44 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfffffffe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000))

02:11:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$RTC_PIE_ON(r1, 0x7005)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x330, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd787}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x586}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x87, 0x3, "e9529f6bd256ae08d0445b1310dee246873b439399057e2a909fc53458fff35058666d1df0ea533b7140c4996b47a7965e7448fc3b5cb8e0f612903a9dd6a795249c0b963a7c5e9c16612cbaf3efed7efa2f33bbd380a92813f3c7b23aae94b98358568159cec3a1d048b4cd5d8f34606de79611367e9cd36e801e79800367e236fb6b"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe6a3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x4f, 0x3, "adcb85cea29c7a7e42a8b982df7d1e349fcd43377b9cace0602cf1ee486105aba7d8c6597d5735a3e6b84c2bc4adee18f5e36e7d90205b008776746dafd45eccc03f6ce41a830c0bf8e620"}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "e81f804b8ed91e0e1c4d11d0022751135d0f57a16fe36d1fb5"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1760}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6b59}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}]}, 0x330}, 0x1, 0x0, 0x0, 0x4}, 0xb27b02ae4d959990)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000b40)={0x2c0, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x32}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3049}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x12}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x564, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000000000000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xec}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3149}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x89}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc354}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000800))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
ioctl$RTC_PIE_ON(r1, 0x7005) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x330, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd787}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x586}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x87, 0x3, "e9529f6bd256ae08d0445b1310dee246873b439399057e2a909fc53458fff35058666d1df0ea533b7140c4996b47a7965e7448fc3b5cb8e0f612903a9dd6a795249c0b963a7c5e9c16612cbaf3efed7efa2f33bbd380a92813f3c7b23aae94b98358568159cec3a1d048b4cd5d8f34606de79611367e9cd36e801e79800367e236fb6b"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe6a3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x4f, 0x3, "adcb85cea29c7a7e42a8b982df7d1e349fcd43377b9cace0602cf1ee486105aba7d8c6597d5735a3e6b84c2bc4adee18f5e36e7d90205b008776746dafd45eccc03f6ce41a830c0bf8e620"}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "e81f804b8ed91e0e1c4d11d0022751135d0f57a16fe36d1fb5"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1760}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6b59}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}]}, 0x330}, 0x1, 0x0, 0x0, 0x4}, 0xb27b02ae4d959990) (async)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000b40)={0x2c0, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x32}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3049}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x12}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x564, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000000000000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xec}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3149}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x89}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc354}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x1}, 0x4) (async)
openat$rtc(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) (async)
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000800)) (async)

02:11:44 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x174, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xe3, 0x3, "ed0e772c66f1db170bd63a9bb282e4e4068fab86ca2768deb92b12e19ab687aa4f0ff54bcc13be1c97f2699210e89bb0992a907f2b923bd78ff7c78148e7dc55d26e4fa05fa52e13932ffe657de70859a01afb9f0f13f8525f917393a0012990c13914ece500f201449cce4154ae6d5f8e9171248994b405fd0f41bbbdf639f950c16703bebe294f32b423880b5f6a2ad4adad8b8b218d3ce8fc7ea8a114bf2dee4d59cdf77037da0f9d6f7608187d25dbf1019ab1fe07ccb2a9b8b9912147995b09c3bcca834cb2ef7288b9290f2e81a7f6619a7486c87ab14de3883a2b6d"}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "bb4daa6009296ae114ffdf4311e0216e5f22b9ff2c0ed16f9279a43535f6cf0c3f9a"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ID={0x24, 0x3, "be70bd9faf5739f9ca50b5d52b6d52a5c523daa76065a1758854ca0bfa99531b"}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x80}, 0x10000011)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, 0x0, 0x4008891)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x6, 0xaee7, 0x1, 0x947, r5, 0x3f, '\x00', 0x0, r2, 0x5, 0x3, 0x2, 0x7}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x5, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYRES32=r4, @ANYBLOB="78c0a6fe5a4c63f5"], &(0x7f00000003c0)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000400)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x8, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000740)=[r4, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6]}, 0x80)
r7 = syz_genetlink_get_family_id$tipc2(0x0, r4)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r8)
sendmsg$TIPC_NL_KEY_FLUSH(r8, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)={0xd4, r7, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x43}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x63}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xa, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x89ee}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x20000815)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/stat\x00', 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x174, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xe3, 0x3, "ed0e772c66f1db170bd63a9bb282e4e4068fab86ca2768deb92b12e19ab687aa4f0ff54bcc13be1c97f2699210e89bb0992a907f2b923bd78ff7c78148e7dc55d26e4fa05fa52e13932ffe657de70859a01afb9f0f13f8525f917393a0012990c13914ece500f201449cce4154ae6d5f8e9171248994b405fd0f41bbbdf639f950c16703bebe294f32b423880b5f6a2ad4adad8b8b218d3ce8fc7ea8a114bf2dee4d59cdf77037da0f9d6f7608187d25dbf1019ab1fe07ccb2a9b8b9912147995b09c3bcca834cb2ef7288b9290f2e81a7f6619a7486c87ab14de3883a2b6d"}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "bb4daa6009296ae114ffdf4311e0216e5f22b9ff2c0ed16f9279a43535f6cf0c3f9a"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ID={0x24, 0x3, "be70bd9faf5739f9ca50b5d52b6d52a5c523daa76065a1758854ca0bfa99531b"}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x80}, 0x10000011) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, 0x0, 0x4008891) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x6, 0xaee7, 0x1, 0x947, r5, 0x3f, '\x00', 0x0, r2, 0x5, 0x3, 0x2, 0x7}, 0x48) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x5, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYRES32=r4, @ANYBLOB="78c0a6fe5a4c63f5"], &(0x7f00000003c0)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000400)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x8, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000740)=[r4, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6]}, 0x80) (async)
syz_genetlink_get_family_id$tipc2(0x0, r4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r8) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r8, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)={0xd4, r7, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x43}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x63}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xa, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x89ee}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x20000815) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/stat\x00', 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:44 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x100000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1331.102165][T31178] FAULT_INJECTION: forcing a failure.
[ 1331.102165][T31178] name failslab, interval 1, probability 0, space 0, times 0
02:11:44 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x71406a8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000004}, 0x1)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x81}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x14000000}, 0x40080c0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
socket$inet(0x2, 0x5, 0x1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x80)

[ 1331.185262][T31178] CPU: 1 PID: 31178 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1331.197097][T31178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1331.207761][T31178] Call Trace:
[ 1331.211051][T31178]  dump_stack+0x18e/0x1d5
[ 1331.215380][T31178]  should_fail+0x604/0x770
[ 1331.219788][T31178]  ? device_add+0xb6/0xbc0
[ 1331.224193][T31178]  should_failslab+0x5/0x20
[ 1331.228687][T31178]  kmem_cache_alloc_trace+0x28/0x240
[ 1331.233964][T31178]  device_add+0xb6/0xbc0
[ 1331.238195][T31178]  device_create_vargs+0x1b8/0x210
[ 1331.243296][T31178]  device_create+0x86/0xb0
[ 1331.247701][T31178]  bdi_register_va+0x89/0x5e0
[ 1331.252367][T31178]  bdi_register+0x80/0xa0
[ 1331.256684][T31178]  ? __device_add_disk+0x50a/0x1210
[ 1331.261875][T31178]  bdi_register_owner+0x56/0xf0
[ 1331.266714][T31178]  __device_add_disk+0x583/0x1210
[ 1331.271731][T31178]  loop_add+0x554/0x710
[ 1331.275881][T31178]  loop_control_ioctl+0x465/0x600
[ 1331.280894][T31178]  ? loop_remove+0xa0/0xa0
[ 1331.285299][T31178]  do_vfs_ioctl+0x6d1/0x15b0
[ 1331.289883][T31178]  __x64_sys_ioctl+0xd4/0x110
[ 1331.294548][T31178]  do_syscall_64+0xcb/0x1c0
[ 1331.299036][T31178]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1331.304910][T31178] RIP: 0033:0x7f6fdf247109
[ 1331.309311][T31178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1331.328904][T31178] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1331.337340][T31178] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1331.345327][T31178] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1331.353300][T31178] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1331.361273][T31178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1331.369782][T31178] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1331.397650][T31178] ------------[ cut here ]------------
[ 1331.403138][T31178] WARNING: CPU: 1 PID: 31178 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1331.412224][T31178] Modules linked in:
[ 1331.416117][T31178] CPU: 1 PID: 31178 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1331.427810][T31178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1331.437875][T31178] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1331.443693][T31178] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1331.463282][T31178] RSP: 0018:ffff8881e6707ce8 EFLAGS: 00010246
[ 1331.469341][T31178] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1331.477304][T31178] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1331.485272][T31178] RBP: ffff8881eb9f44d8 R08: ffffffff82114c4e R09: ffffed103cce0ee0
[ 1331.493333][T31178] R10: ffffed103cce0ee0 R11: 1ffff1103cce0edf R12: dffffc0000000000
[ 1331.501302][T31178] R13: 1ffff1103c918e01 R14: 1ffff1103c918e9d R15: ffff8881e48c7000
[ 1331.509269][T31178] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1331.518191][T31178] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1331.524766][T31178] CR2: 0000555555d3ab38 CR3: 00000001f26fb000 CR4: 00000000003406e0
[ 1331.532729][T31178] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1331.540692][T31178] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1331.548650][T31178] Call Trace:
[ 1331.551936][T31178]  loop_add+0x554/0x710
[ 1331.556082][T31178]  loop_control_ioctl+0x465/0x600
[ 1331.561090][T31178]  ? loop_remove+0xa0/0xa0
[ 1331.565494][T31178]  do_vfs_ioctl+0x6d1/0x15b0
[ 1331.570084][T31178]  __x64_sys_ioctl+0xd4/0x110
[ 1331.574755][T31178]  do_syscall_64+0xcb/0x1c0
[ 1331.579253][T31178]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1331.585137][T31178] RIP: 0033:0x7f6fdf247109
[ 1331.589535][T31178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1331.609126][T31178] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1331.617525][T31178] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1331.625504][T31178] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1331.633467][T31178] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
02:11:45 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 46)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x200000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x174, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xe3, 0x3, "ed0e772c66f1db170bd63a9bb282e4e4068fab86ca2768deb92b12e19ab687aa4f0ff54bcc13be1c97f2699210e89bb0992a907f2b923bd78ff7c78148e7dc55d26e4fa05fa52e13932ffe657de70859a01afb9f0f13f8525f917393a0012990c13914ece500f201449cce4154ae6d5f8e9171248994b405fd0f41bbbdf639f950c16703bebe294f32b423880b5f6a2ad4adad8b8b218d3ce8fc7ea8a114bf2dee4d59cdf77037da0f9d6f7608187d25dbf1019ab1fe07ccb2a9b8b9912147995b09c3bcca834cb2ef7288b9290f2e81a7f6619a7486c87ab14de3883a2b6d"}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "bb4daa6009296ae114ffdf4311e0216e5f22b9ff2c0ed16f9279a43535f6cf0c3f9a"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ID={0x24, 0x3, "be70bd9faf5739f9ca50b5d52b6d52a5c523daa76065a1758854ca0bfa99531b"}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x80}, 0x10000011)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, 0x0, 0x4008891)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x6, 0xaee7, 0x1, 0x947, r5, 0x3f, '\x00', 0x0, r2, 0x5, 0x3, 0x2, 0x7}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x5, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYRES32=r4, @ANYBLOB="78c0a6fe5a4c63f5"], &(0x7f00000003c0)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000400)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x8, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000740)=[r4, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6]}, 0x80)
r7 = syz_genetlink_get_family_id$tipc2(0x0, r4)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r8)
sendmsg$TIPC_NL_KEY_FLUSH(r8, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)={0xd4, r7, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x43}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x63}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xa, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x89ee}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x20000815)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/stat\x00', 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x174, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xe3, 0x3, "ed0e772c66f1db170bd63a9bb282e4e4068fab86ca2768deb92b12e19ab687aa4f0ff54bcc13be1c97f2699210e89bb0992a907f2b923bd78ff7c78148e7dc55d26e4fa05fa52e13932ffe657de70859a01afb9f0f13f8525f917393a0012990c13914ece500f201449cce4154ae6d5f8e9171248994b405fd0f41bbbdf639f950c16703bebe294f32b423880b5f6a2ad4adad8b8b218d3ce8fc7ea8a114bf2dee4d59cdf77037da0f9d6f7608187d25dbf1019ab1fe07ccb2a9b8b9912147995b09c3bcca834cb2ef7288b9290f2e81a7f6619a7486c87ab14de3883a2b6d"}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "bb4daa6009296ae114ffdf4311e0216e5f22b9ff2c0ed16f9279a43535f6cf0c3f9a"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ID={0x24, 0x3, "be70bd9faf5739f9ca50b5d52b6d52a5c523daa76065a1758854ca0bfa99531b"}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x80}, 0x10000011) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, 0x0, 0x4008891) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x6, 0xaee7, 0x1, 0x947, r5, 0x3f, '\x00', 0x0, r2, 0x5, 0x3, 0x2, 0x7}, 0x48) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x5, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYRES32=r4, @ANYBLOB="78c0a6fe5a4c63f5"], &(0x7f00000003c0)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000400)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x8, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000740)=[r4, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6]}, 0x80) (async)
syz_genetlink_get_family_id$tipc2(0x0, r4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r8) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r8, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)={0xd4, r7, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x43}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x63}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xa, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x89ee}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'ib', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x20000815) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/stat\x00', 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:45 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$RTC_PIE_ON(r1, 0x7005)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x330, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd787}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x586}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x87, 0x3, "e9529f6bd256ae08d0445b1310dee246873b439399057e2a909fc53458fff35058666d1df0ea533b7140c4996b47a7965e7448fc3b5cb8e0f612903a9dd6a795249c0b963a7c5e9c16612cbaf3efed7efa2f33bbd380a92813f3c7b23aae94b98358568159cec3a1d048b4cd5d8f34606de79611367e9cd36e801e79800367e236fb6b"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe6a3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x4f, 0x3, "adcb85cea29c7a7e42a8b982df7d1e349fcd43377b9cace0602cf1ee486105aba7d8c6597d5735a3e6b84c2bc4adee18f5e36e7d90205b008776746dafd45eccc03f6ce41a830c0bf8e620"}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "e81f804b8ed91e0e1c4d11d0022751135d0f57a16fe36d1fb5"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1760}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6b59}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}]}, 0x330}, 0x1, 0x0, 0x0, 0x4}, 0xb27b02ae4d959990)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000b40)={0x2c0, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x32}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3049}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x12}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x564, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000000000000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xec}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3149}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x89}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc354}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000800))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
ioctl$RTC_PIE_ON(r1, 0x7005) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x330, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd787}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x586}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x87, 0x3, "e9529f6bd256ae08d0445b1310dee246873b439399057e2a909fc53458fff35058666d1df0ea533b7140c4996b47a7965e7448fc3b5cb8e0f612903a9dd6a795249c0b963a7c5e9c16612cbaf3efed7efa2f33bbd380a92813f3c7b23aae94b98358568159cec3a1d048b4cd5d8f34606de79611367e9cd36e801e79800367e236fb6b"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe6a3}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0x4f, 0x3, "adcb85cea29c7a7e42a8b982df7d1e349fcd43377b9cace0602cf1ee486105aba7d8c6597d5735a3e6b84c2bc4adee18f5e36e7d90205b008776746dafd45eccc03f6ce41a830c0bf8e620"}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "e81f804b8ed91e0e1c4d11d0022751135d0f57a16fe36d1fb5"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}]}, @TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1760}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6b59}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}]}]}]}, 0x330}, 0x1, 0x0, 0x0, 0x4}, 0xb27b02ae4d959990) (async)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000b40)={0x2c0, 0x0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x32}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3049}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x12}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x564, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000000000000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xec}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3149}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x89}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc354}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x101}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff7}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x20}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x1}, 0x4) (async)
openat$rtc(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) (async)
ioctl$RTC_PLL_GET(r3, 0x80207011, &(0x7f0000000800)) (async)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x500000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1331.641687][T31178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1331.649643][T31178] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1331.657605][T31178] ---[ end trace 0360cad814872658 ]---
02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x800000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000))

02:11:45 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x71406a8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000004}, 0x1) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async, rerun: 64)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x81}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x14000000}, 0x40080c0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
socket$inet(0x2, 0x5, 0x1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x80)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xa00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000)) (async)

02:11:45 executing program 4:
r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x2, [{}, {}]}, 0x48)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getegid()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000bc0)=@broute={'broute\x00', 0x20, 0x3, 0x7e2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0x0, 0x1, [{0x3, 0x1, 0x809b, 'erspan0\x00', 'gretap0\x00', 'vlan0\x00', 'rose0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], @multicast, [0xff, 0x1fe, 0xff, 0xff, 0xff, 0xff], 0x2d6, 0x326, 0x376, [@vlan={{'vlan\x00', 0x0, 0x8}, {{0x4, 0x4, 0x17, 0x1, 0x1}}}, @bpf0={{'bpf\x00', 0x0, 0x210}, {{0x2e, [{0x3, 0x6, 0x3f, 0x401}, {0x1, 0xff, 0x3, 0x7}, {0x6, 0x8, 0x2, 0x2}, {0x4, 0x70, 0x6, 0x5}, {0x8, 0x3d, 0x6, 0x1f}, {0xffff, 0x6c, 0x0, 0x9}, {0x8, 0x7f, 0x0, 0xd7a}, {0x100, 0x1f, 0x0, 0x2}, {0x1, 0x9, 0x6, 0x7fff}, {0x1f, 0x20, 0x9, 0x400}, {0x96, 0x1, 0x80, 0x8280}, {0x9, 0x8, 0x1, 0x4}, {0x40, 0x40, 0x7, 0x3}, {0x6, 0x3f}, {0x9, 0x0, 0x9, 0x6}, {0x2d, 0x5, 0x9, 0x1}, {0x1f, 0x5, 0x1}, {0x1, 0x7f, 0x3, 0x4}, {0x9, 0x7f, 0x7f, 0x2}, {0xb3d, 0x2, 0x1f}, {0x100, 0x5, 0xf2, 0x100000}, {0x6, 0x4, 0x1, 0x3}, {0x2, 0x9, 0x3, 0x3ff}, {0x4, 0x7f, 0x1, 0x3ff}, {0x7, 0x40, 0x4, 0x40}, {0x9, 0x3, 0x7f, 0x6}, {0x453e, 0x1, 0xbc, 0xb0}, {0x7107, 0x0, 0x4, 0x9}, {0x5, 0x3, 0x4, 0x8001}, {0x6, 0x40, 0x7f, 0x2}, {0xff, 0x4, 0xff, 0x2}, {0x1, 0x7, 0x40, 0xbba}, {0x81, 0x47, 0x40, 0x7fffffff}, {0x7, 0xb7, 0xdf, 0xd37}, {0x4, 0x3, 0xfc, 0x7fff}, {0x1f, 0x8, 0x40, 0x10000}, {0x8, 0x1f, 0x8, 0x1f}, {0x3ff, 0x1f, 0x1, 0x9a}, {0x2, 0x7c, 0x3, 0x7}, {0x8, 0x8, 0x6f}, {0x2e, 0x0, 0x5, 0x1}, {0x1, 0x2a, 0xcc, 0x400}, {0x1f, 0x68, 0x0, 0x1ff}, {0x4, 0x20, 0x70, 0xffff}, {0x81, 0x20, 0x1, 0x2}, {0x400, 0x20, 0x20, 0x5}, {0x8ba2, 0x37, 0xae, 0x3}, {0x8, 0x1f, 0x6, 0x3}, {0x3, 0xc, 0x80, 0x2a}, {0x3, 0x4, 0x8, 0x9}, {0x4, 0x5, 0x40, 0x6}, {0x7fff, 0x8, 0x2, 0x5}, {0x100, 0x4, 0x2, 0xfffffffd}, {0xf97, 0x2, 0x2, 0x19ca}, {0x2, 0x9, 0x20, 0x1000}, {0x20, 0x5, 0x6, 0x3ff}, {0x2400, 0x42, 0x0, 0x4579764e}, {0x3ff, 0x9, 0x0, 0x9}, {0x7, 0xfd, 0x4, 0x7}, {0x100, 0x0, 0x6, 0xc57}, {0x8, 0x1f, 0x22, 0x400}, {0x2, 0x1f, 0xfe, 0x3}, {0x7, 0x0, 0x7c, 0x800}, {0x3, 0xf9, 0x3}], {0x8}}}}], [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9e83, 'syz1\x00', {0x11}}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x8, {0x8}}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{0x5, 0x1, 0x8035, 'veth0_macvtap\x00', 'vcan0\x00', 'veth1_to_bond\x00', 'veth0_vlan\x00', @multicast, [0x0, 0xff, 0x0, 0xff, 0x0, 0xff], @empty, [0x80, 0x0, 0xff, 0xff], 0x6e, 0x1ee, 0x236, [], [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x2, 0x8, 'system_u:object_r:auditd_etc_t:s0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x0, 0x9, {0xffffffff}}}}], @common=@ERROR={'ERROR\x00', 0x20, {"70cccad91dc9d85f2d805db50fcb502b96b7b6888cccf9a5818176bc0ad8"}}}, {0x3, 0x75, 0x800, 'ip6_vti0\x00', 'batadv_slave_0\x00', 'nr0\x00', 'virt_wifi0\x00', @multicast, [0xff, 0xff, 0xff, 0xff], @remote, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], 0xae, 0x146, 0x176, [@mark_m={{'mark_m\x00', 0x0, 0x18}, {{0x1, 0x7943, 0x0, 0x1}}}], [@common=@ERROR={'ERROR\x00', 0x20, {"6a6144bd4a82e366a3c7ad715d716bf4b9a3dfaad8cdff35d3b4886bd7d0"}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0xffff, 'syz1\x00', {0x6}}}}], @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffe}}}}]}]}, 0x85a)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xc8, r3, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xb4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x712814a1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa0bf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x54}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x73741875}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}]}]}]}, 0xc8}}, 0x1011)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000140)={0x2, 'team0\x00'}, 0x18)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:45 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r2, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x20000004)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1331.794578][T31254] FAULT_INJECTION: forcing a failure.
[ 1331.794578][T31254] name failslab, interval 1, probability 0, space 0, times 0
[ 1331.825751][T31254] CPU: 0 PID: 31254 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1331.837391][T31254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1331.847442][T31254] Call Trace:
[ 1331.850735][T31254]  dump_stack+0x18e/0x1d5
[ 1331.855065][T31254]  should_fail+0x604/0x770
[ 1331.859480][T31254]  ? __kernfs_new_node+0x47/0x650
[ 1331.864494][T31254]  should_failslab+0x5/0x20
[ 1331.868991][T31254]  __kmalloc_track_caller+0x4f/0x280
[ 1331.874265][T31254]  kstrdup_const+0x51/0x90
[ 1331.878765][T31254]  __kernfs_new_node+0x47/0x650
[ 1331.883613][T31254]  ? __kasan_kmalloc+0x1a5/0x1e0
[ 1331.888800][T31254]  ? device_create+0x86/0xb0
[ 1331.893383][T31254]  ? __kasan_kmalloc+0x131/0x1e0
[ 1331.898310][T31254]  ? device_add+0xb6/0xbc0
[ 1331.902741][T31254]  ? device_create_vargs+0x1b8/0x210
[ 1331.908012][T31254]  ? device_create+0x86/0xb0
[ 1331.912590][T31254]  ? bdi_register_va+0x89/0x5e0
[ 1331.917453][T31254]  ? bdi_register+0x80/0xa0
[ 1331.921945][T31254]  ? bdi_register_owner+0x56/0xf0
[ 1331.926959][T31254]  ? __device_add_disk+0x583/0x1210
[ 1331.932145][T31254]  ? loop_add+0x554/0x710
[ 1331.936462][T31254]  ? loop_control_ioctl+0x465/0x600
[ 1331.941647][T31254]  ? do_vfs_ioctl+0x6d1/0x15b0
[ 1331.946501][T31254]  kernfs_create_dir_ns+0x90/0x220
[ 1331.951717][T31254]  sysfs_create_dir_ns+0x14e/0x2f0
[ 1331.956821][T31254]  kobject_add_internal+0x5b5/0xb20
[ 1331.962104][T31254]  kobject_add+0x100/0x1a0
[ 1331.966516][T31254]  device_add+0x3fc/0xbc0
[ 1331.970840][T31254]  device_create_vargs+0x1b8/0x210
[ 1331.976039][T31254]  device_create+0x86/0xb0
[ 1331.980449][T31254]  bdi_register_va+0x89/0x5e0
[ 1331.985124][T31254]  bdi_register+0x80/0xa0
[ 1331.989442][T31254]  ? __device_add_disk+0x50a/0x1210
[ 1331.994721][T31254]  bdi_register_owner+0x56/0xf0
[ 1331.999561][T31254]  __device_add_disk+0x583/0x1210
[ 1332.004583][T31254]  loop_add+0x554/0x710
[ 1332.008733][T31254]  loop_control_ioctl+0x465/0x600
[ 1332.013745][T31254]  ? loop_remove+0xa0/0xa0
[ 1332.018150][T31254]  do_vfs_ioctl+0x6d1/0x15b0
[ 1332.022748][T31254]  __x64_sys_ioctl+0xd4/0x110
[ 1332.027416][T31254]  do_syscall_64+0xcb/0x1c0
[ 1332.031939][T31254]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1332.037815][T31254] RIP: 0033:0x7f6fdf247109
[ 1332.042217][T31254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1332.061811][T31254] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1332.070213][T31254] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1332.078177][T31254] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1332.086139][T31254] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1332.094100][T31254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1332.102148][T31254] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1332.119750][T31254] kobject_add_internal failed for 7:12 (error: -12 parent: bdi)
[ 1332.127635][T31254] ------------[ cut here ]------------
[ 1332.133103][T31254] WARNING: CPU: 0 PID: 31254 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1332.142191][T31254] Modules linked in:
[ 1332.146179][T31254] CPU: 0 PID: 31254 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1332.157796][T31254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1332.167984][T31254] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1332.173788][T31254] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1332.193391][T31254] RSP: 0018:ffff8881ab9afce8 EFLAGS: 00010246
[ 1332.199458][T31254] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1332.207422][T31254] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1332.215478][T31254] RBP: ffff8881ef1b1178 R08: ffffffff82114c4e R09: 0000000000000010
[ 1332.223443][T31254] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1332.231492][T31254] R13: 1ffff1103a238401 R14: 1ffff1103a23849d R15: ffff8881d11c2000
[ 1332.239546][T31254] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1332.248640][T31254] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1332.255304][T31254] CR2: 0000001b2ee21000 CR3: 00000001f0d32000 CR4: 00000000003406f0
[ 1332.263270][T31254] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1332.271239][T31254] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1332.279197][T31254] Call Trace:
[ 1332.282491][T31254]  loop_add+0x554/0x710
[ 1332.286645][T31254]  loop_control_ioctl+0x465/0x600
[ 1332.291660][T31254]  ? loop_remove+0xa0/0xa0
[ 1332.296067][T31254]  do_vfs_ioctl+0x6d1/0x15b0
[ 1332.300793][T31254]  __x64_sys_ioctl+0xd4/0x110
[ 1332.305476][T31254]  do_syscall_64+0xcb/0x1c0
[ 1332.309977][T31254]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1332.315860][T31254] RIP: 0033:0x7f6fdf247109
[ 1332.320357][T31254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:11:45 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 47)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x1000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x511e01, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1332.340754][T31254] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1332.349161][T31254] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1332.357126][T31254] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1332.365090][T31254] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1332.373050][T31254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1332.381110][T31254] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1332.389074][T31254] ---[ end trace 0360cad814872659 ]---
02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x4000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 4:
r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x2, [{}, {}]}, 0x48)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
getegid() (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000bc0)=@broute={'broute\x00', 0x20, 0x3, 0x7e2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0x0, 0x1, [{0x3, 0x1, 0x809b, 'erspan0\x00', 'gretap0\x00', 'vlan0\x00', 'rose0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], @multicast, [0xff, 0x1fe, 0xff, 0xff, 0xff, 0xff], 0x2d6, 0x326, 0x376, [@vlan={{'vlan\x00', 0x0, 0x8}, {{0x4, 0x4, 0x17, 0x1, 0x1}}}, @bpf0={{'bpf\x00', 0x0, 0x210}, {{0x2e, [{0x3, 0x6, 0x3f, 0x401}, {0x1, 0xff, 0x3, 0x7}, {0x6, 0x8, 0x2, 0x2}, {0x4, 0x70, 0x6, 0x5}, {0x8, 0x3d, 0x6, 0x1f}, {0xffff, 0x6c, 0x0, 0x9}, {0x8, 0x7f, 0x0, 0xd7a}, {0x100, 0x1f, 0x0, 0x2}, {0x1, 0x9, 0x6, 0x7fff}, {0x1f, 0x20, 0x9, 0x400}, {0x96, 0x1, 0x80, 0x8280}, {0x9, 0x8, 0x1, 0x4}, {0x40, 0x40, 0x7, 0x3}, {0x6, 0x3f}, {0x9, 0x0, 0x9, 0x6}, {0x2d, 0x5, 0x9, 0x1}, {0x1f, 0x5, 0x1}, {0x1, 0x7f, 0x3, 0x4}, {0x9, 0x7f, 0x7f, 0x2}, {0xb3d, 0x2, 0x1f}, {0x100, 0x5, 0xf2, 0x100000}, {0x6, 0x4, 0x1, 0x3}, {0x2, 0x9, 0x3, 0x3ff}, {0x4, 0x7f, 0x1, 0x3ff}, {0x7, 0x40, 0x4, 0x40}, {0x9, 0x3, 0x7f, 0x6}, {0x453e, 0x1, 0xbc, 0xb0}, {0x7107, 0x0, 0x4, 0x9}, {0x5, 0x3, 0x4, 0x8001}, {0x6, 0x40, 0x7f, 0x2}, {0xff, 0x4, 0xff, 0x2}, {0x1, 0x7, 0x40, 0xbba}, {0x81, 0x47, 0x40, 0x7fffffff}, {0x7, 0xb7, 0xdf, 0xd37}, {0x4, 0x3, 0xfc, 0x7fff}, {0x1f, 0x8, 0x40, 0x10000}, {0x8, 0x1f, 0x8, 0x1f}, {0x3ff, 0x1f, 0x1, 0x9a}, {0x2, 0x7c, 0x3, 0x7}, {0x8, 0x8, 0x6f}, {0x2e, 0x0, 0x5, 0x1}, {0x1, 0x2a, 0xcc, 0x400}, {0x1f, 0x68, 0x0, 0x1ff}, {0x4, 0x20, 0x70, 0xffff}, {0x81, 0x20, 0x1, 0x2}, {0x400, 0x20, 0x20, 0x5}, {0x8ba2, 0x37, 0xae, 0x3}, {0x8, 0x1f, 0x6, 0x3}, {0x3, 0xc, 0x80, 0x2a}, {0x3, 0x4, 0x8, 0x9}, {0x4, 0x5, 0x40, 0x6}, {0x7fff, 0x8, 0x2, 0x5}, {0x100, 0x4, 0x2, 0xfffffffd}, {0xf97, 0x2, 0x2, 0x19ca}, {0x2, 0x9, 0x20, 0x1000}, {0x20, 0x5, 0x6, 0x3ff}, {0x2400, 0x42, 0x0, 0x4579764e}, {0x3ff, 0x9, 0x0, 0x9}, {0x7, 0xfd, 0x4, 0x7}, {0x100, 0x0, 0x6, 0xc57}, {0x8, 0x1f, 0x22, 0x400}, {0x2, 0x1f, 0xfe, 0x3}, {0x7, 0x0, 0x7c, 0x800}, {0x3, 0xf9, 0x3}], {0x8}}}}], [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9e83, 'syz1\x00', {0x11}}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x8, {0x8}}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{0x5, 0x1, 0x8035, 'veth0_macvtap\x00', 'vcan0\x00', 'veth1_to_bond\x00', 'veth0_vlan\x00', @multicast, [0x0, 0xff, 0x0, 0xff, 0x0, 0xff], @empty, [0x80, 0x0, 0xff, 0xff], 0x6e, 0x1ee, 0x236, [], [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x2, 0x8, 'system_u:object_r:auditd_etc_t:s0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x0, 0x9, {0xffffffff}}}}], @common=@ERROR={'ERROR\x00', 0x20, {"70cccad91dc9d85f2d805db50fcb502b96b7b6888cccf9a5818176bc0ad8"}}}, {0x3, 0x75, 0x800, 'ip6_vti0\x00', 'batadv_slave_0\x00', 'nr0\x00', 'virt_wifi0\x00', @multicast, [0xff, 0xff, 0xff, 0xff], @remote, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], 0xae, 0x146, 0x176, [@mark_m={{'mark_m\x00', 0x0, 0x18}, {{0x1, 0x7943, 0x0, 0x1}}}], [@common=@ERROR={'ERROR\x00', 0x20, {"6a6144bd4a82e366a3c7ad715d716bf4b9a3dfaad8cdff35d3b4886bd7d0"}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0xffff, 'syz1\x00', {0x6}}}}], @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffe}}}}]}]}, 0x85a)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xc8, r3, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xb4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x712814a1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa0bf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x54}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x73741875}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}]}]}]}, 0xc8}}, 0x1011) (async)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000140)={0x2, 'team0\x00'}, 0x18) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:45 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async, rerun: 64)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r2, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x20000004)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x511e01, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 64)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:45 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x71406a8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000004}, 0x1)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x81}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x14000000}, 0x40080c0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
socket$inet(0x2, 0x5, 0x1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x80)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xd7ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x511e01, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:45 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r2, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x20000004)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xf0ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1332.487976][T31335] FAULT_INJECTION: forcing a failure.
[ 1332.487976][T31335] name failslab, interval 1, probability 0, space 0, times 0
[ 1332.556598][T31335] CPU: 0 PID: 31335 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1332.568324][T31335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1332.578394][T31335] Call Trace:
[ 1332.581680][T31335]  dump_stack+0x18e/0x1d5
[ 1332.586007][T31335]  should_fail+0x604/0x770
[ 1332.590419][T31335]  ? __kernfs_new_node+0x8b/0x650
[ 1332.595430][T31335]  should_failslab+0x5/0x20
[ 1332.599935][T31335]  kmem_cache_alloc+0x24/0x210
[ 1332.604701][T31335]  __kernfs_new_node+0x8b/0x650
[ 1332.609540][T31335]  ? __kasan_kmalloc+0x1a5/0x1e0
[ 1332.614465][T31335]  ? device_create+0x86/0xb0
[ 1332.619042][T31335]  ? __kasan_kmalloc+0x131/0x1e0
[ 1332.624053][T31335]  ? device_add+0xb6/0xbc0
[ 1332.628458][T31335]  ? device_create_vargs+0x1b8/0x210
[ 1332.633733][T31335]  ? device_create+0x86/0xb0
[ 1332.638310][T31335]  ? bdi_register_va+0x89/0x5e0
[ 1332.643184][T31335]  ? bdi_register+0x80/0xa0
[ 1332.647674][T31335]  ? bdi_register_owner+0x56/0xf0
[ 1332.652686][T31335]  ? __device_add_disk+0x583/0x1210
[ 1332.657868][T31335]  ? loop_add+0x554/0x710
[ 1332.662188][T31335]  ? loop_control_ioctl+0x465/0x600
[ 1332.667377][T31335]  ? do_vfs_ioctl+0x6d1/0x15b0
[ 1332.672133][T31335]  kernfs_create_dir_ns+0x90/0x220
[ 1332.677238][T31335]  sysfs_create_dir_ns+0x14e/0x2f0
[ 1332.682338][T31335]  kobject_add_internal+0x5b5/0xb20
[ 1332.687613][T31335]  kobject_add+0x100/0x1a0
[ 1332.692023][T31335]  device_add+0x3fc/0xbc0
[ 1332.696344][T31335]  device_create_vargs+0x1b8/0x210
[ 1332.701443][T31335]  device_create+0x86/0xb0
[ 1332.705859][T31335]  bdi_register_va+0x89/0x5e0
[ 1332.710523][T31335]  bdi_register+0x80/0xa0
[ 1332.714987][T31335]  ? __device_add_disk+0x50a/0x1210
[ 1332.720173][T31335]  bdi_register_owner+0x56/0xf0
[ 1332.725015][T31335]  __device_add_disk+0x583/0x1210
[ 1332.730037][T31335]  loop_add+0x554/0x710
[ 1332.734984][T31335]  loop_control_ioctl+0x465/0x600
[ 1332.741057][T31335]  ? loop_remove+0xa0/0xa0
[ 1332.745470][T31335]  do_vfs_ioctl+0x6d1/0x15b0
[ 1332.750407][T31335]  __x64_sys_ioctl+0xd4/0x110
[ 1332.755127][T31335]  do_syscall_64+0xcb/0x1c0
[ 1332.759982][T31335]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1332.766572][T31335] RIP: 0033:0x7f6fdf247109
[ 1332.770984][T31335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1332.792578][T31335] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1332.801068][T31335] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1332.809215][T31335] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1332.817442][T31335] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1332.825417][T31335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1332.833392][T31335] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1332.868802][T31335] kobject_add_internal failed for 7:12 (error: -12 parent: bdi)
[ 1332.876761][T31335] ------------[ cut here ]------------
[ 1332.882244][T31335] WARNING: CPU: 0 PID: 31335 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1332.891328][T31335] Modules linked in:
[ 1332.895223][T31335] CPU: 0 PID: 31335 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1332.906854][T31335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1332.916917][T31335] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1332.922717][T31335] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1332.942398][T31335] RSP: 0018:ffff8881e5e77ce8 EFLAGS: 00010246
[ 1332.948455][T31335] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1332.956421][T31335] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1332.964395][T31335] RBP: ffff8881eb9f6718 R08: ffffffff82114c4e R09: 0000000000000010
[ 1332.972361][T31335] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1332.980323][T31335] R13: 1ffff1103ddab001 R14: 1ffff1103ddab09d R15: ffff8881eed58000
[ 1332.988288][T31335] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1332.997291][T31335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1333.003865][T31335] CR2: 00007f72848cf058 CR3: 00000001f0d32000 CR4: 00000000003406f0
[ 1333.011831][T31335] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1333.019797][T31335] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1333.027769][T31335] Call Trace:
[ 1333.031135][T31335]  loop_add+0x554/0x710
[ 1333.035279][T31335]  loop_control_ioctl+0x465/0x600
[ 1333.040300][T31335]  ? loop_remove+0xa0/0xa0
[ 1333.044707][T31335]  do_vfs_ioctl+0x6d1/0x15b0
[ 1333.049284][T31335]  __x64_sys_ioctl+0xd4/0x110
[ 1333.053949][T31335]  do_syscall_64+0xcb/0x1c0
[ 1333.058446][T31335]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1333.064323][T31335] RIP: 0033:0x7f6fdf247109
[ 1333.068747][T31335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1333.088429][T31335] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1333.096835][T31335] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1333.104811][T31335] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1333.112868][T31335] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1333.120831][T31335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1333.128842][T31335] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1333.136813][T31335] ---[ end trace 0360cad81487265a ]---
02:11:46 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 48)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:46 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xc)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$AUDIT_SIGNAL_INFO(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f2, 0x20, 0x70bd2d, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x4000002)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfd00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_BEARER_SET(r2, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:46 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket(0x15, 0x80000, 0x3)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@broadcast, 0x0, 0x0, 0x40, 0x0, [{@private}, {}, {}, {@multicast2}]}})
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000000)

02:11:46 executing program 4:
r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x2, [{}, {}]}, 0x48)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getegid()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000bc0)=@broute={'broute\x00', 0x20, 0x3, 0x7e2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0x0, 0x1, [{0x3, 0x1, 0x809b, 'erspan0\x00', 'gretap0\x00', 'vlan0\x00', 'rose0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], @multicast, [0xff, 0x1fe, 0xff, 0xff, 0xff, 0xff], 0x2d6, 0x326, 0x376, [@vlan={{'vlan\x00', 0x0, 0x8}, {{0x4, 0x4, 0x17, 0x1, 0x1}}}, @bpf0={{'bpf\x00', 0x0, 0x210}, {{0x2e, [{0x3, 0x6, 0x3f, 0x401}, {0x1, 0xff, 0x3, 0x7}, {0x6, 0x8, 0x2, 0x2}, {0x4, 0x70, 0x6, 0x5}, {0x8, 0x3d, 0x6, 0x1f}, {0xffff, 0x6c, 0x0, 0x9}, {0x8, 0x7f, 0x0, 0xd7a}, {0x100, 0x1f, 0x0, 0x2}, {0x1, 0x9, 0x6, 0x7fff}, {0x1f, 0x20, 0x9, 0x400}, {0x96, 0x1, 0x80, 0x8280}, {0x9, 0x8, 0x1, 0x4}, {0x40, 0x40, 0x7, 0x3}, {0x6, 0x3f}, {0x9, 0x0, 0x9, 0x6}, {0x2d, 0x5, 0x9, 0x1}, {0x1f, 0x5, 0x1}, {0x1, 0x7f, 0x3, 0x4}, {0x9, 0x7f, 0x7f, 0x2}, {0xb3d, 0x2, 0x1f}, {0x100, 0x5, 0xf2, 0x100000}, {0x6, 0x4, 0x1, 0x3}, {0x2, 0x9, 0x3, 0x3ff}, {0x4, 0x7f, 0x1, 0x3ff}, {0x7, 0x40, 0x4, 0x40}, {0x9, 0x3, 0x7f, 0x6}, {0x453e, 0x1, 0xbc, 0xb0}, {0x7107, 0x0, 0x4, 0x9}, {0x5, 0x3, 0x4, 0x8001}, {0x6, 0x40, 0x7f, 0x2}, {0xff, 0x4, 0xff, 0x2}, {0x1, 0x7, 0x40, 0xbba}, {0x81, 0x47, 0x40, 0x7fffffff}, {0x7, 0xb7, 0xdf, 0xd37}, {0x4, 0x3, 0xfc, 0x7fff}, {0x1f, 0x8, 0x40, 0x10000}, {0x8, 0x1f, 0x8, 0x1f}, {0x3ff, 0x1f, 0x1, 0x9a}, {0x2, 0x7c, 0x3, 0x7}, {0x8, 0x8, 0x6f}, {0x2e, 0x0, 0x5, 0x1}, {0x1, 0x2a, 0xcc, 0x400}, {0x1f, 0x68, 0x0, 0x1ff}, {0x4, 0x20, 0x70, 0xffff}, {0x81, 0x20, 0x1, 0x2}, {0x400, 0x20, 0x20, 0x5}, {0x8ba2, 0x37, 0xae, 0x3}, {0x8, 0x1f, 0x6, 0x3}, {0x3, 0xc, 0x80, 0x2a}, {0x3, 0x4, 0x8, 0x9}, {0x4, 0x5, 0x40, 0x6}, {0x7fff, 0x8, 0x2, 0x5}, {0x100, 0x4, 0x2, 0xfffffffd}, {0xf97, 0x2, 0x2, 0x19ca}, {0x2, 0x9, 0x20, 0x1000}, {0x20, 0x5, 0x6, 0x3ff}, {0x2400, 0x42, 0x0, 0x4579764e}, {0x3ff, 0x9, 0x0, 0x9}, {0x7, 0xfd, 0x4, 0x7}, {0x100, 0x0, 0x6, 0xc57}, {0x8, 0x1f, 0x22, 0x400}, {0x2, 0x1f, 0xfe, 0x3}, {0x7, 0x0, 0x7c, 0x800}, {0x3, 0xf9, 0x3}], {0x8}}}}], [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9e83, 'syz1\x00', {0x11}}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x8, {0x8}}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{0x5, 0x1, 0x8035, 'veth0_macvtap\x00', 'vcan0\x00', 'veth1_to_bond\x00', 'veth0_vlan\x00', @multicast, [0x0, 0xff, 0x0, 0xff, 0x0, 0xff], @empty, [0x80, 0x0, 0xff, 0xff], 0x6e, 0x1ee, 0x236, [], [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x2, 0x8, 'system_u:object_r:auditd_etc_t:s0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x0, 0x9, {0xffffffff}}}}], @common=@ERROR={'ERROR\x00', 0x20, {"70cccad91dc9d85f2d805db50fcb502b96b7b6888cccf9a5818176bc0ad8"}}}, {0x3, 0x75, 0x800, 'ip6_vti0\x00', 'batadv_slave_0\x00', 'nr0\x00', 'virt_wifi0\x00', @multicast, [0xff, 0xff, 0xff, 0xff], @remote, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], 0xae, 0x146, 0x176, [@mark_m={{'mark_m\x00', 0x0, 0x18}, {{0x1, 0x7943, 0x0, 0x1}}}], [@common=@ERROR={'ERROR\x00', 0x20, {"6a6144bd4a82e366a3c7ad715d716bf4b9a3dfaad8cdff35d3b4886bd7d0"}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0xffff, 'syz1\x00', {0x6}}}}], @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffe}}}}]}]}, 0x85a)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xc8, r3, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xb4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x712814a1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa0bf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x54}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x73741875}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}]}]}]}, 0xc8}}, 0x1011)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000140)={0x2, 'team0\x00'}, 0x18)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10) (async)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x2, [{}, {}]}, 0x48) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
getegid() (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000bc0)=@broute={'broute\x00', 0x20, 0x3, 0x7e2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0x0, 0x1, [{0x3, 0x1, 0x809b, 'erspan0\x00', 'gretap0\x00', 'vlan0\x00', 'rose0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], @multicast, [0xff, 0x1fe, 0xff, 0xff, 0xff, 0xff], 0x2d6, 0x326, 0x376, [@vlan={{'vlan\x00', 0x0, 0x8}, {{0x4, 0x4, 0x17, 0x1, 0x1}}}, @bpf0={{'bpf\x00', 0x0, 0x210}, {{0x2e, [{0x3, 0x6, 0x3f, 0x401}, {0x1, 0xff, 0x3, 0x7}, {0x6, 0x8, 0x2, 0x2}, {0x4, 0x70, 0x6, 0x5}, {0x8, 0x3d, 0x6, 0x1f}, {0xffff, 0x6c, 0x0, 0x9}, {0x8, 0x7f, 0x0, 0xd7a}, {0x100, 0x1f, 0x0, 0x2}, {0x1, 0x9, 0x6, 0x7fff}, {0x1f, 0x20, 0x9, 0x400}, {0x96, 0x1, 0x80, 0x8280}, {0x9, 0x8, 0x1, 0x4}, {0x40, 0x40, 0x7, 0x3}, {0x6, 0x3f}, {0x9, 0x0, 0x9, 0x6}, {0x2d, 0x5, 0x9, 0x1}, {0x1f, 0x5, 0x1}, {0x1, 0x7f, 0x3, 0x4}, {0x9, 0x7f, 0x7f, 0x2}, {0xb3d, 0x2, 0x1f}, {0x100, 0x5, 0xf2, 0x100000}, {0x6, 0x4, 0x1, 0x3}, {0x2, 0x9, 0x3, 0x3ff}, {0x4, 0x7f, 0x1, 0x3ff}, {0x7, 0x40, 0x4, 0x40}, {0x9, 0x3, 0x7f, 0x6}, {0x453e, 0x1, 0xbc, 0xb0}, {0x7107, 0x0, 0x4, 0x9}, {0x5, 0x3, 0x4, 0x8001}, {0x6, 0x40, 0x7f, 0x2}, {0xff, 0x4, 0xff, 0x2}, {0x1, 0x7, 0x40, 0xbba}, {0x81, 0x47, 0x40, 0x7fffffff}, {0x7, 0xb7, 0xdf, 0xd37}, {0x4, 0x3, 0xfc, 0x7fff}, {0x1f, 0x8, 0x40, 0x10000}, {0x8, 0x1f, 0x8, 0x1f}, {0x3ff, 0x1f, 0x1, 0x9a}, {0x2, 0x7c, 0x3, 0x7}, {0x8, 0x8, 0x6f}, {0x2e, 0x0, 0x5, 0x1}, {0x1, 0x2a, 0xcc, 0x400}, {0x1f, 0x68, 0x0, 0x1ff}, {0x4, 0x20, 0x70, 0xffff}, {0x81, 0x20, 0x1, 0x2}, {0x400, 0x20, 0x20, 0x5}, {0x8ba2, 0x37, 0xae, 0x3}, {0x8, 0x1f, 0x6, 0x3}, {0x3, 0xc, 0x80, 0x2a}, {0x3, 0x4, 0x8, 0x9}, {0x4, 0x5, 0x40, 0x6}, {0x7fff, 0x8, 0x2, 0x5}, {0x100, 0x4, 0x2, 0xfffffffd}, {0xf97, 0x2, 0x2, 0x19ca}, {0x2, 0x9, 0x20, 0x1000}, {0x20, 0x5, 0x6, 0x3ff}, {0x2400, 0x42, 0x0, 0x4579764e}, {0x3ff, 0x9, 0x0, 0x9}, {0x7, 0xfd, 0x4, 0x7}, {0x100, 0x0, 0x6, 0xc57}, {0x8, 0x1f, 0x22, 0x400}, {0x2, 0x1f, 0xfe, 0x3}, {0x7, 0x0, 0x7c, 0x800}, {0x3, 0xf9, 0x3}], {0x8}}}}], [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9e83, 'syz1\x00', {0x11}}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x8, {0x8}}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{0x5, 0x1, 0x8035, 'veth0_macvtap\x00', 'vcan0\x00', 'veth1_to_bond\x00', 'veth0_vlan\x00', @multicast, [0x0, 0xff, 0x0, 0xff, 0x0, 0xff], @empty, [0x80, 0x0, 0xff, 0xff], 0x6e, 0x1ee, 0x236, [], [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x2, 0x8, 'system_u:object_r:auditd_etc_t:s0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x0, 0x9, {0xffffffff}}}}], @common=@ERROR={'ERROR\x00', 0x20, {"70cccad91dc9d85f2d805db50fcb502b96b7b6888cccf9a5818176bc0ad8"}}}, {0x3, 0x75, 0x800, 'ip6_vti0\x00', 'batadv_slave_0\x00', 'nr0\x00', 'virt_wifi0\x00', @multicast, [0xff, 0xff, 0xff, 0xff], @remote, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], 0xae, 0x146, 0x176, [@mark_m={{'mark_m\x00', 0x0, 0x18}, {{0x1, 0x7943, 0x0, 0x1}}}], [@common=@ERROR={'ERROR\x00', 0x20, {"6a6144bd4a82e366a3c7ad715d716bf4b9a3dfaad8cdff35d3b4886bd7d0"}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0xffff, 'syz1\x00', {0x6}}}}], @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffe}}}}]}]}, 0x85a) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xc8, r3, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xb4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x712814a1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa0bf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x54}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x73741875}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}]}]}]}, 0xc8}}, 0x1011) (async)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000140)={0x2, 'team0\x00'}, 0x18) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:46 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xc)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$AUDIT_SIGNAL_INFO(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f2, 0x20, 0x70bd2d, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x4000002)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xc) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$AUDIT_SIGNAL_INFO(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f2, 0x20, 0x70bd2d, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x4000002) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfdffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfe00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xfeffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async, rerun: 64)
sendmsg$TIPC_NL_BEARER_SET(r2, 0x0, 0x0) (async, rerun: 64)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async, rerun: 64)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:46 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket(0x15, 0x80000, 0x3)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@broadcast, 0x0, 0x0, 0x40, 0x0, [{@private}, {}, {}, {@multicast2}]}})
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
socket(0x15, 0x80000, 0x3) (async)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@broadcast, 0x0, 0x0, 0x40, 0x0, [{@private}, {}, {}, {@multicast2}]}}) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000000) (async)

[ 1333.328442][T31387] FAULT_INJECTION: forcing a failure.
[ 1333.328442][T31387] name failslab, interval 1, probability 0, space 0, times 0
[ 1333.341292][T31387] CPU: 0 PID: 31387 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1333.352923][T31387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1333.362974][T31387] Call Trace:
[ 1333.366267][T31387]  dump_stack+0x18e/0x1d5
[ 1333.370685][T31387]  should_fail+0x604/0x770
[ 1333.375272][T31387]  ? device_create_vargs+0x1b8/0x210
[ 1333.380555][T31387]  ? radix_tree_node_alloc+0x18c/0x370
[ 1333.386010][T31387]  should_failslab+0x5/0x20
[ 1333.390530][T31387]  kmem_cache_alloc+0x24/0x210
[ 1333.395314][T31387]  radix_tree_node_alloc+0x18c/0x370
[ 1333.400728][T31387]  idr_get_free+0x299/0x840
[ 1333.405239][T31387]  idr_alloc_cyclic+0x182/0x550
[ 1333.410087][T31387]  __kernfs_new_node+0xde/0x650
[ 1333.414932][T31387]  ? __kasan_kmalloc+0x1a5/0x1e0
[ 1333.419854][T31387]  ? device_add+0xb6/0xbc0
[ 1333.424340][T31387]  ? device_create_vargs+0x1b8/0x210
[ 1333.429612][T31387]  ? device_create+0x86/0xb0
[ 1333.434189][T31387]  ? bdi_register_va+0x89/0x5e0
[ 1333.439034][T31387]  ? bdi_register+0x80/0xa0
[ 1333.443537][T31387]  ? bdi_register_owner+0x56/0xf0
[ 1333.448636][T31387]  ? __device_add_disk+0x583/0x1210
[ 1333.453823][T31387]  ? loop_add+0x554/0x710
[ 1333.458138][T31387]  ? loop_control_ioctl+0x465/0x600
[ 1333.463344][T31387]  ? do_vfs_ioctl+0x6d1/0x15b0
[ 1333.468096][T31387]  kernfs_create_dir_ns+0x90/0x220
[ 1333.473199][T31387]  sysfs_create_dir_ns+0x14e/0x2f0
[ 1333.478305][T31387]  kobject_add_internal+0x5b5/0xb20
[ 1333.483489][T31387]  kobject_add+0x100/0x1a0
[ 1333.487894][T31387]  device_add+0x3fc/0xbc0
[ 1333.492223][T31387]  device_create_vargs+0x1b8/0x210
[ 1333.497323][T31387]  device_create+0x86/0xb0
[ 1333.501731][T31387]  bdi_register_va+0x89/0x5e0
[ 1333.506402][T31387]  bdi_register+0x80/0xa0
[ 1333.510726][T31387]  ? __device_add_disk+0x50a/0x1210
[ 1333.516012][T31387]  bdi_register_owner+0x56/0xf0
[ 1333.520861][T31387]  __device_add_disk+0x583/0x1210
[ 1333.525883][T31387]  loop_add+0x554/0x710
[ 1333.530036][T31387]  loop_control_ioctl+0x465/0x600
[ 1333.535051][T31387]  ? loop_remove+0xa0/0xa0
[ 1333.539628][T31387]  do_vfs_ioctl+0x6d1/0x15b0
[ 1333.544214][T31387]  __x64_sys_ioctl+0xd4/0x110
[ 1333.548884][T31387]  do_syscall_64+0xcb/0x1c0
[ 1333.553375][T31387]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1333.559256][T31387] RIP: 0033:0x7f6fdf247109
[ 1333.563659][T31387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1333.583250][T31387] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1333.591653][T31387] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1333.599618][T31387] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1333.607581][T31387] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1333.615721][T31387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1333.623686][T31387] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:47 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 49)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket(0x15, 0xa, 0x9)
sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="80010000", @ANYRES16=0x0, @ANYBLOB="08002cbd7000fcdbdf2510000000cc00018008000300060000002c000280080003000400000008000200890000000800020001f0ffff080001000c000000080003000101000044000400200001000a004e2000000007fe8000000000000000000000010000aaff010000200002000a004e2200000006fe800000000000000000000000000011060000000e0001006574683a776c616e3000000008000300090000002400028008000200040000000800040005000000080001000b0000000800020004000000110001006574683a6970365f7674693000000000700004800900010073797a3000000000340007800800040000020000080004000000000008000400f6000000080001001d000000080003000300000008000200000000000900010073797a310000000014000780080002002c33000008000300ffffff7f0c00078008000200ffff00003000078008000200060000000c00030077000000000000000c00030002000000000000000c000300f600000000000000"], 0x180}, 0x1, 0x0, 0x0, 0x4000}, 0x24004880)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(0xffffffffffffffff, 0x111, 0x1, 0x0, 0x4)
connect$pppl2tp(0xffffffffffffffff, &(0x7f00000008c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x1}}, 0x26)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x118, r3, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff801}]}, @TIPC_NLA_SOCK={0xf8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x800}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xe8d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x84}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x843c}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x100}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1ffe0}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6da}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffff5ec}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x41}, 0x24000880)
setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000280)={0x5}, 0x4)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_NL_NODE_GET(r2, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f0000000f40)=ANY=[@ANYBLOB="c8030000", @ANYRES16=r4, @ANYBLOB="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"], 0x3c8}, 0x1, 0x0, 0x0, 0x8044}, 0x20000000)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000780)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000540)={0x1f0, r3, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd83d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1a}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7fffffff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7b09}]}, @TIPC_NLA_BEARER={0x98, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'vlan1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x8, 0x1, @l2={'ib', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x61}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800000}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x36}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ba6}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffff54}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x82}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff416}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xaf05}]}, @TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x17}, 0x3f}}, {0x14, 0x2, @in={0x2, 0x4e23, @private=0xa010101}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3ff}]}]}, 0x1f0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xff00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 32)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xc) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$AUDIT_SIGNAL_INFO(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f2, 0x20, 0x70bd2d, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x4000002) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0xffffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket(0x15, 0x80000, 0x3)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@broadcast, 0x0, 0x0, 0x40, 0x0, [{@private}, {}, {}, {@multicast2}]}})
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
socket(0x15, 0x80000, 0x3) (async)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@broadcast, 0x0, 0x0, 0x40, 0x0, [{@private}, {}, {}, {@multicast2}]}}) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000000) (async)

02:11:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket(0x15, 0xa, 0x9)
sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="80010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x4000}, 0x24004880)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(0xffffffffffffffff, 0x111, 0x1, 0x0, 0x4) (async)
connect$pppl2tp(0xffffffffffffffff, &(0x7f00000008c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x1}}, 0x26) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x118, r3, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff801}]}, @TIPC_NLA_SOCK={0xf8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x800}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xe8d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x84}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x843c}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x100}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1ffe0}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6da}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffff5ec}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x41}, 0x24000880)
setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000280)={0x5}, 0x4) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_NL_NODE_GET(r2, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f0000000f40)=ANY=[@ANYBLOB="c8030000", @ANYRES16=r4, @ANYBLOB="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"], 0x3c8}, 0x1, 0x0, 0x0, 0x8044}, 0x20000000)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000780)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000540)={0x1f0, r3, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd83d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1a}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7fffffff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7b09}]}, @TIPC_NLA_BEARER={0x98, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'vlan1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x8, 0x1, @l2={'ib', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x61}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800000}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x36}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ba6}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffff54}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x82}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff416}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xaf05}]}, @TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x17}, 0x3f}}, {0x14, 0x2, @in={0x2, 0x4e23, @private=0xa010101}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3ff}]}]}, 0x1f0}}, 0x800) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_BEARER_SET(r2, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$TIPC_NL_BEARER_SET(r2, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1333.826770][T31440] FAULT_INJECTION: forcing a failure.
[ 1333.826770][T31440] name failslab, interval 1, probability 0, space 0, times 0
[ 1333.882309][T31440] CPU: 1 PID: 31440 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1333.893947][T31440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1333.903998][T31440] Call Trace:
[ 1333.907285][T31440]  dump_stack+0x18e/0x1d5
[ 1333.911611][T31440]  should_fail+0x604/0x770
[ 1333.916020][T31440]  ? mutex_lock+0x6c/0xc0
[ 1333.920387][T31440]  ? __kernfs_new_node+0x8b/0x650
[ 1333.925408][T31440]  should_failslab+0x5/0x20
[ 1333.929898][T31440]  kmem_cache_alloc+0x24/0x210
[ 1333.934657][T31440]  __kernfs_new_node+0x8b/0x650
[ 1333.939509][T31440]  ? kernfs_add_one+0x4a3/0x5c0
[ 1333.944348][T31440]  ? kernfs_create_dir_ns+0x1df/0x220
[ 1333.949712][T31440]  kernfs_new_node+0x95/0x160
[ 1333.954382][T31440]  __kernfs_create_file+0x45/0x260
[ 1333.959483][T31440]  sysfs_add_file_mode_ns+0x292/0x340
[ 1333.964847][T31440]  sysfs_create_file_ns+0x140/0x200
[ 1333.970035][T31440]  device_add+0x4c3/0xbc0
[ 1333.974393][T31440]  device_create_vargs+0x1b8/0x210
[ 1333.979525][T31440]  device_create+0x86/0xb0
[ 1333.983932][T31440]  bdi_register_va+0x89/0x5e0
[ 1333.988593][T31440]  bdi_register+0x80/0xa0
[ 1333.992912][T31440]  ? __device_add_disk+0x50a/0x1210
[ 1333.998181][T31440]  bdi_register_owner+0x56/0xf0
[ 1334.003030][T31440]  __device_add_disk+0x583/0x1210
[ 1334.008050][T31440]  loop_add+0x554/0x710
[ 1334.012194][T31440]  loop_control_ioctl+0x465/0x600
[ 1334.017205][T31440]  ? loop_remove+0xa0/0xa0
[ 1334.021621][T31440]  do_vfs_ioctl+0x6d1/0x15b0
[ 1334.026208][T31440]  __x64_sys_ioctl+0xd4/0x110
[ 1334.030882][T31440]  do_syscall_64+0xcb/0x1c0
[ 1334.035549][T31440]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1334.041428][T31440] RIP: 0033:0x7f6fdf247109
[ 1334.045916][T31440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1334.065865][T31440] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1334.074271][T31440] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1334.082320][T31440] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1334.090284][T31440] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1334.098246][T31440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1334.106313][T31440] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1334.133773][T31440] ------------[ cut here ]------------
[ 1334.139273][T31440] WARNING: CPU: 1 PID: 31440 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1334.148358][T31440] Modules linked in:
[ 1334.152251][T31440] CPU: 1 PID: 31440 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1334.163864][T31440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1334.174023][T31440] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1334.179937][T31440] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1334.199662][T31440] RSP: 0018:ffff8881e6e77ce8 EFLAGS: 00010246
[ 1334.205738][T31440] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1334.213798][T31440] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1334.221771][T31440] RBP: ffff8881ef1b1178 R08: ffffffff82114c4e R09: 0000000000000010
[ 1334.229739][T31440] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1334.237708][T31440] R13: 1ffff1103a2b9001 R14: 1ffff1103a2b909d R15: ffff8881d15c8000
[ 1334.245682][T31440] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1334.254607][T31440] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1334.261314][T31440] CR2: 00007ffed7377bd8 CR3: 00000001de921000 CR4: 00000000003406e0
[ 1334.269471][T31440] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1334.277445][T31440] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1334.285408][T31440] Call Trace:
[ 1334.288698][T31440]  loop_add+0x554/0x710
[ 1334.292846][T31440]  loop_control_ioctl+0x465/0x600
[ 1334.297867][T31440]  ? loop_remove+0xa0/0xa0
[ 1334.302273][T31440]  do_vfs_ioctl+0x6d1/0x15b0
[ 1334.306858][T31440]  __x64_sys_ioctl+0xd4/0x110
[ 1334.311525][T31440]  do_syscall_64+0xcb/0x1c0
[ 1334.316019][T31440]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1334.321902][T31440] RIP: 0033:0x7f6fdf247109
[ 1334.326304][T31440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1334.345903][T31440] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1334.354308][T31440] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1334.362270][T31440] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1334.370339][T31440] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1334.378307][T31440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1334.386273][T31440] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1334.394332][T31440] ---[ end trace 0360cad81487265b ]---
02:11:47 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 50)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x1, @multicast2}, {0x306, @local}, 0x0, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}, 'bond_slave_0\x00'})
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = socket$bt_hidp(0x1f, 0x3, 0x6)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x0, 0x4)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f00000000c0)={r2, 0xffffffffffffffff, 0x4457, 0x54, &(0x7f0000000000)="2357e3796fb837fd2e40acdc2b2099888641241aedd798d325acfbb806347780cdf9b327f331a972f71e5873e85d504b0a0c99e516961754c70a325cae0d68f7c75229f8067b83e2fd242b47fb1294309a5af852", 0x3, 0x0, 0x6, 0x1000, 0x5, 0x3, 0xfffffff8, 'syz0\x00'})
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:47 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r3 = socket(0x1e, 0x1, 0x8)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000040)={@private, @broadcast, <r5=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
sendmsg$TIPC_NL_NAME_TABLE_GET(r3, 0x0, 0x8800)

02:11:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = socket(0x15, 0xa, 0x9)
sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="80010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x4000}, 0x24004880)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(0xffffffffffffffff, 0x111, 0x1, 0x0, 0x4)
connect$pppl2tp(0xffffffffffffffff, &(0x7f00000008c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x1}}, 0x26)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x118, r3, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff801}]}, @TIPC_NLA_SOCK={0xf8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x800}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xe8d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x84}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x843c}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x100}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1ffe0}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6da}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffff5ec}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x41}, 0x24000880) (async)
setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000280)={0x5}, 0x4) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_NL_NODE_GET(r2, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f0000000f40)=ANY=[@ANYBLOB="c8030000", @ANYRES16=r4, @ANYBLOB="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"], 0x3c8}, 0x1, 0x0, 0x0, 0x8044}, 0x20000000) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000780)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000540)={0x1f0, r3, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x20}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd83d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1a}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7fffffff}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7b09}]}, @TIPC_NLA_BEARER={0x98, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'vlan1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x8, 0x1, @l2={'ib', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x61}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800000}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x36}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ba6}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffff54}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x82}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff416}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xaf05}]}, @TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x17}, 0x3f}}, {0x14, 0x2, @in={0x2, 0x4e23, @private=0xa010101}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3ff}]}]}, 0x1f0}}, 0x800) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:47 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r3 = socket(0x1e, 0x1, 0x8)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000040)={@private, @broadcast, <r5=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
sendmsg$TIPC_NL_NAME_TABLE_GET(r3, 0x0, 0x8800)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
socket(0x1e, 0x1, 0x8) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000040)={@private, @broadcast}, &(0x7f00000000c0)=0xc) (async)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(r3, 0x0, 0x8800) (async)

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1334.612683][T31500] FAULT_INJECTION: forcing a failure.
[ 1334.612683][T31500] name failslab, interval 1, probability 0, space 0, times 0
[ 1334.669179][T31500] CPU: 1 PID: 31500 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1334.680812][T31500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1334.690860][T31500] Call Trace:
[ 1334.694151][T31500]  dump_stack+0x18e/0x1d5
[ 1334.698478][T31500]  should_fail+0x604/0x770
[ 1334.702887][T31500]  ? __kernfs_new_node+0x8b/0x650
[ 1334.707896][T31500]  should_failslab+0x5/0x20
[ 1334.712390][T31500]  kmem_cache_alloc+0x24/0x210
[ 1334.717142][T31500]  __kernfs_new_node+0x8b/0x650
[ 1334.721983][T31500]  ? mutex_unlock+0x19/0x40
[ 1334.726477][T31500]  ? kernfs_add_one+0x4a3/0x5c0
[ 1334.731317][T31500]  kernfs_new_node+0x95/0x160
[ 1334.735979][T31500]  kernfs_create_link+0x9c/0x1f0
[ 1334.740904][T31500]  sysfs_do_create_link_sd+0x85/0x100
[ 1334.746354][T31500]  device_add_class_symlinks+0xd6/0x2a0
[ 1334.751885][T31500]  device_add+0x4e4/0xbc0
[ 1334.756203][T31500]  device_create_vargs+0x1b8/0x210
[ 1334.761298][T31500]  device_create+0x86/0xb0
[ 1334.765778][T31500]  bdi_register_va+0x89/0x5e0
[ 1334.770442][T31500]  bdi_register+0x80/0xa0
[ 1334.774762][T31500]  ? __device_add_disk+0x50a/0x1210
[ 1334.779950][T31500]  bdi_register_owner+0x56/0xf0
[ 1334.784786][T31500]  __device_add_disk+0x583/0x1210
[ 1334.789815][T31500]  loop_add+0x554/0x710
[ 1334.793962][T31500]  loop_control_ioctl+0x465/0x600
[ 1334.798972][T31500]  ? loop_remove+0xa0/0xa0
[ 1334.803375][T31500]  do_vfs_ioctl+0x6d1/0x15b0
[ 1334.807953][T31500]  __x64_sys_ioctl+0xd4/0x110
[ 1334.812617][T31500]  do_syscall_64+0xcb/0x1c0
[ 1334.817105][T31500]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1334.822985][T31500] RIP: 0033:0x7f6fdf247109
[ 1334.827411][T31500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1334.847122][T31500] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1334.855526][T31500] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1334.863501][T31500] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1334.871463][T31500] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1334.879425][T31500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1334.887388][T31500] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1334.896719][T31500] ------------[ cut here ]------------
[ 1334.902197][T31500] WARNING: CPU: 1 PID: 31500 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1334.911277][T31500] Modules linked in:
[ 1334.915163][T31500] CPU: 1 PID: 31500 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1334.926764][T31500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1334.936824][T31500] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1334.942616][T31500] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1334.962304][T31500] RSP: 0018:ffff8881e56c7ce8 EFLAGS: 00010246
[ 1334.968355][T31500] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1334.976329][T31500] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1334.984286][T31500] RBP: ffff8881ef1b3c48 R08: ffffffff82114c4e R09: 0000000000000010
[ 1334.992246][T31500] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1335.000206][T31500] R13: 1ffff11039ec4201 R14: 1ffff11039ec429d R15: ffff8881cf621000
[ 1335.008265][T31500] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1335.017186][T31500] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1335.023759][T31500] CR2: 00007ffed7377bd8 CR3: 00000001e5c46000 CR4: 00000000003406e0
[ 1335.031721][T31500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1335.039693][T31500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1335.047656][T31500] Call Trace:
[ 1335.051031][T31500]  loop_add+0x554/0x710
[ 1335.055176][T31500]  loop_control_ioctl+0x465/0x600
[ 1335.060284][T31500]  ? loop_remove+0xa0/0xa0
[ 1335.064736][T31500]  do_vfs_ioctl+0x6d1/0x15b0
[ 1335.069320][T31500]  __x64_sys_ioctl+0xd4/0x110
[ 1335.073985][T31500]  do_syscall_64+0xcb/0x1c0
[ 1335.078482][T31500]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1335.084363][T31500] RIP: 0033:0x7f6fdf247109
[ 1335.088766][T31500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1335.108364][T31500] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:48 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 51)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:48 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x1, @multicast2}, {0x306, @local}, 0x0, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}, 'bond_slave_0\x00'}) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:48 executing program 4:
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r3, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0x40, 0x0)
r5 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@filter={'filter\x00', 0xe, 0x4, 0x2d0, 0xffffffff, 0x100, 0x198, 0x198, 0xffffffff, 0xffffffff, 0x238, 0x238, 0x238, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@set={{0x40}, {{0x3, [0x1, 0x7, 0x1, 0x1], 0x1, 0x4}}}, @common=@icmp={{0x28}, {0xe, "bd9c"}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ip={@broadcast, @private=0xa010101, 0x0, 0xffffff00, 'dummy0\x00', 'geneve1\x00', {0xff}, {0xff}, 0x6, 0x2, 0xc}, 0x0, 0x70, 0x98}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7ff}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x3, 0x1}, {0x3, 0x6, 0x2}, 0x6, 0x8001}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x330)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

02:11:48 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = socket$bt_hidp(0x1f, 0x3, 0x6)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x0, 0x4) (async)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f00000000c0)={r2, 0xffffffffffffffff, 0x4457, 0x54, &(0x7f0000000000)="2357e3796fb837fd2e40acdc2b2099888641241aedd798d325acfbb806347780cdf9b327f331a972f71e5873e85d504b0a0c99e516961754c70a325cae0d68f7c75229f8067b83e2fd242b47fb1294309a5af852", 0x3, 0x0, 0x6, 0x1000, 0x5, 0x3, 0xfffffff8, 'syz0\x00'}) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:48 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r3 = socket(0x1e, 0x1, 0x8) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000040)={@private, @broadcast, <r5=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(r3, 0x0, 0x8800)

02:11:48 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1335.116764][T31500] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1335.124729][T31500] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1335.132691][T31500] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1335.140826][T31500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1335.148793][T31500] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1335.157104][T31500] ---[ end trace 0360cad81487265c ]---
02:11:48 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:48 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:48 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
r1 = socket$bt_hidp(0x1f, 0x3, 0x6) (async)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x0, 0x4) (async)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f00000000c0)={r2, 0xffffffffffffffff, 0x4457, 0x54, &(0x7f0000000000)="2357e3796fb837fd2e40acdc2b2099888641241aedd798d325acfbb806347780cdf9b327f331a972f71e5873e85d504b0a0c99e516961754c70a325cae0d68f7c75229f8067b83e2fd242b47fb1294309a5af852", 0x3, 0x0, 0x6, 0x1000, 0x5, 0x3, 0xfffffff8, 'syz0\x00'}) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:48 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:48 executing program 4:
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async, rerun: 64)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r3, @ANYBLOB="a7"], 0xe8}}, 0x0) (async, rerun: 64)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async, rerun: 64)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0x40, 0x0)
r5 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async, rerun: 64)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@filter={'filter\x00', 0xe, 0x4, 0x2d0, 0xffffffff, 0x100, 0x198, 0x198, 0xffffffff, 0xffffffff, 0x238, 0x238, 0x238, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@set={{0x40}, {{0x3, [0x1, 0x7, 0x1, 0x1], 0x1, 0x4}}}, @common=@icmp={{0x28}, {0xe, "bd9c"}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ip={@broadcast, @private=0xa010101, 0x0, 0xffffff00, 'dummy0\x00', 'geneve1\x00', {0xff}, {0xff}, 0x6, 0x2, 0xc}, 0x0, 0x70, 0x98}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7ff}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x3, 0x1}, {0x3, 0x6, 0x2}, 0x6, 0x8001}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x330) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

02:11:48 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x1, @multicast2}, {0x306, @local}, 0x0, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x44}}, 'bond_slave_0\x00'}) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1335.257156][T31547] FAULT_INJECTION: forcing a failure.
[ 1335.257156][T31547] name failslab, interval 1, probability 0, space 0, times 0
[ 1335.294770][T31547] CPU: 1 PID: 31547 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1335.306406][T31547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1335.316629][T31547] Call Trace:
[ 1335.321250][T31547]  dump_stack+0x18e/0x1d5
[ 1335.326243][T31547]  should_fail+0x604/0x770
[ 1335.330664][T31547]  ? selinux_kernfs_init_security+0xea/0x630
[ 1335.337019][T31547]  ? __kernfs_new_node+0x47/0x650
[ 1335.343168][T31547]  should_failslab+0x5/0x20
[ 1335.348185][T31547]  __kmalloc_track_caller+0x4f/0x280
[ 1335.353470][T31547]  kstrdup_const+0x51/0x90
[ 1335.357882][T31547]  __kernfs_new_node+0x47/0x650
[ 1335.362730][T31547]  ? mutex_lock+0x6c/0xc0
[ 1335.367053][T31547]  ? kernfs_activate+0x3fc/0x420
[ 1335.372151][T31547]  kernfs_new_node+0x95/0x160
[ 1335.376826][T31547]  kernfs_create_link+0x9c/0x1f0
[ 1335.381756][T31547]  sysfs_do_create_link_sd+0x85/0x100
[ 1335.387124][T31547]  device_add_class_symlinks+0x211/0x2a0
[ 1335.392744][T31547]  device_add+0x4e4/0xbc0
[ 1335.397064][T31547]  device_create_vargs+0x1b8/0x210
[ 1335.402165][T31547]  device_create+0x86/0xb0
[ 1335.406569][T31547]  bdi_register_va+0x89/0x5e0
[ 1335.411232][T31547]  bdi_register+0x80/0xa0
[ 1335.415557][T31547]  ? __device_add_disk+0x50a/0x1210
[ 1335.420743][T31547]  bdi_register_owner+0x56/0xf0
[ 1335.425581][T31547]  __device_add_disk+0x583/0x1210
[ 1335.430601][T31547]  loop_add+0x554/0x710
[ 1335.434748][T31547]  loop_control_ioctl+0x465/0x600
[ 1335.439758][T31547]  ? loop_remove+0xa0/0xa0
[ 1335.444161][T31547]  do_vfs_ioctl+0x6d1/0x15b0
[ 1335.448741][T31547]  __x64_sys_ioctl+0xd4/0x110
[ 1335.453405][T31547]  do_syscall_64+0xcb/0x1c0
[ 1335.457896][T31547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1335.463782][T31547] RIP: 0033:0x7f6fdf247109
[ 1335.468185][T31547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1335.487783][T31547] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1335.496300][T31547] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1335.504351][T31547] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1335.512311][T31547] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1335.520271][T31547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1335.528245][T31547] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1335.538268][T31547] ------------[ cut here ]------------
[ 1335.543739][T31547] WARNING: CPU: 1 PID: 31547 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1335.552930][T31547] Modules linked in:
[ 1335.556820][T31547] CPU: 1 PID: 31547 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1335.568512][T31547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1335.578609][T31547] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1335.584406][T31547] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1335.603997][T31547] RSP: 0018:ffff8881e36ffce8 EFLAGS: 00010246
[ 1335.610053][T31547] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1335.618015][T31547] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1335.625974][T31547] RBP: ffff8881ef1b6718 R08: ffffffff82114c4e R09: 0000000000000010
[ 1335.633928][T31547] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1335.641884][T31547] R13: 1ffff1103a2dfa01 R14: 1ffff1103a2dfa9d R15: ffff8881d16fd000
[ 1335.649848][T31547] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1335.658767][T31547] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1335.665338][T31547] CR2: 00007fb0f75b6cc0 CR3: 00000001edc0d000 CR4: 00000000003406e0
[ 1335.673300][T31547] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1335.681260][T31547] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1335.689215][T31547] Call Trace:
[ 1335.692501][T31547]  loop_add+0x554/0x710
[ 1335.696670][T31547]  loop_control_ioctl+0x465/0x600
[ 1335.701680][T31547]  ? loop_remove+0xa0/0xa0
[ 1335.706088][T31547]  do_vfs_ioctl+0x6d1/0x15b0
[ 1335.710674][T31547]  __x64_sys_ioctl+0xd4/0x110
[ 1335.715422][T31547]  do_syscall_64+0xcb/0x1c0
[ 1335.719914][T31547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1335.725794][T31547] RIP: 0033:0x7f6fdf247109
[ 1335.730197][T31547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1335.749792][T31547] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:49 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 52)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xfe00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1335.758196][T31547] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1335.770946][T31547] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1335.778999][T31547] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1335.786960][T31547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1335.794926][T31547] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1335.802887][T31547] ---[ end trace 0360cad81487265d ]---
02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xff00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xffd7})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x54, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffffff}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x8080}, 0x800)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000006c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x35c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}}}}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK={0x13c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe92}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xcd4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}]}, @TIPC_NLA_LINK={0x144, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb4e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd5c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x79d3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x35c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r2, 0x800, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fffffff}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008000)

02:11:49 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, 0x0, 0x14)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0xfff0})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 4:
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r3, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0x40, 0x0)
r5 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@filter={'filter\x00', 0xe, 0x4, 0x2d0, 0xffffffff, 0x100, 0x198, 0x198, 0xffffffff, 0xffffffff, 0x238, 0x238, 0x238, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@set={{0x40}, {{0x3, [0x1, 0x7, 0x1, 0x1], 0x1, 0x4}}}, @common=@icmp={{0x28}, {0xe, "bd9c"}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ip={@broadcast, @private=0xa010101, 0x0, 0xffffff00, 'dummy0\x00', 'geneve1\x00', {0xff}, {0xff}, 0x6, 0x2, 0xc}, 0x0, 0x70, 0x98}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7ff}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x3, 0x1}, {0x3, 0x6, 0x2}, 0x6, 0x8001}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x330)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r3, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0x40, 0x0) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@filter={'filter\x00', 0xe, 0x4, 0x2d0, 0xffffffff, 0x100, 0x198, 0x198, 0xffffffff, 0xffffffff, 0x238, 0x238, 0x238, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@set={{0x40}, {{0x3, [0x1, 0x7, 0x1, 0x1], 0x1, 0x4}}}, @common=@icmp={{0x28}, {0xe, "bd9c"}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ip={@broadcast, @private=0xa010101, 0x0, 0xffffff00, 'dummy0\x00', 'geneve1\x00', {0xff}, {0xff}, 0x6, 0x2, 0xc}, 0x0, 0x70, 0x98}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7ff}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x3, 0x1}, {0x3, 0x6, 0x2}, 0x6, 0x8001}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x330) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1335.944881][T31584] FAULT_INJECTION: forcing a failure.
[ 1335.944881][T31584] name failslab, interval 1, probability 0, space 0, times 0
[ 1335.993925][T31584] CPU: 0 PID: 31584 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1336.005560][T31584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1336.015608][T31584] Call Trace:
[ 1336.018896][T31584]  dump_stack+0x18e/0x1d5
[ 1336.023224][T31584]  should_fail+0x604/0x770
[ 1336.027630][T31584]  ? __kernfs_new_node+0x8b/0x650
[ 1336.032638][T31584]  should_failslab+0x5/0x20
[ 1336.037128][T31584]  kmem_cache_alloc+0x24/0x210
[ 1336.041876][T31584]  __kernfs_new_node+0x8b/0x650
[ 1336.046722][T31584]  ? mutex_lock+0x6c/0xc0
[ 1336.051132][T31584]  ? kernfs_activate+0x3fc/0x420
[ 1336.056149][T31584]  kernfs_new_node+0x95/0x160
[ 1336.060844][T31584]  kernfs_create_link+0x9c/0x1f0
[ 1336.065769][T31584]  sysfs_do_create_link_sd+0x85/0x100
[ 1336.071129][T31584]  device_add_class_symlinks+0x211/0x2a0
[ 1336.076752][T31584]  device_add+0x4e4/0xbc0
[ 1336.081070][T31584]  device_create_vargs+0x1b8/0x210
[ 1336.086170][T31584]  device_create+0x86/0xb0
[ 1336.090578][T31584]  bdi_register_va+0x89/0x5e0
[ 1336.095241][T31584]  bdi_register+0x80/0xa0
[ 1336.099558][T31584]  ? __device_add_disk+0x50a/0x1210
[ 1336.104744][T31584]  bdi_register_owner+0x56/0xf0
[ 1336.109581][T31584]  __device_add_disk+0x583/0x1210
[ 1336.114599][T31584]  loop_add+0x554/0x710
[ 1336.118765][T31584]  loop_control_ioctl+0x465/0x600
[ 1336.123775][T31584]  ? loop_remove+0xa0/0xa0
[ 1336.128176][T31584]  do_vfs_ioctl+0x6d1/0x15b0
[ 1336.132757][T31584]  __x64_sys_ioctl+0xd4/0x110
[ 1336.137518][T31584]  do_syscall_64+0xcb/0x1c0
[ 1336.142027][T31584]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1336.147913][T31584] RIP: 0033:0x7f6fdf247109
[ 1336.152323][T31584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1336.172093][T31584] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1336.180508][T31584] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1336.188471][T31584] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1336.196429][T31584] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.204396][T31584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1336.212365][T31584] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1336.239376][T31584] ------------[ cut here ]------------
[ 1336.244947][T31584] WARNING: CPU: 0 PID: 31584 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1336.254206][T31584] Modules linked in:
[ 1336.258190][T31584] CPU: 0 PID: 31584 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1336.269802][T31584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1336.279865][T31584] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1336.285747][T31584] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1336.306817][T31584] RSP: 0018:ffff8881e6d1fce8 EFLAGS: 00010246
[ 1336.312873][T31584] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1336.320833][T31584] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1336.328793][T31584] RBP: ffff8881ef1b55f8 R08: ffffffff82114c4e R09: 0000000000000010
[ 1336.336755][T31584] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1336.344809][T31584] R13: 1ffff1103a27a201 R14: 1ffff1103a27a29d R15: ffff8881d13d1000
[ 1336.352777][T31584] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1336.361703][T31584] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1336.368278][T31584] CR2: 00007f1201673dc0 CR3: 00000001f51e0000 CR4: 00000000003406f0
[ 1336.376368][T31584] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1336.384415][T31584] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1336.392374][T31584] Call Trace:
[ 1336.395668][T31584]  loop_add+0x554/0x710
[ 1336.399819][T31584]  loop_control_ioctl+0x465/0x600
[ 1336.404832][T31584]  ? loop_remove+0xa0/0xa0
[ 1336.409242][T31584]  do_vfs_ioctl+0x6d1/0x15b0
[ 1336.413824][T31584]  __x64_sys_ioctl+0xd4/0x110
[ 1336.418492][T31584]  do_syscall_64+0xcb/0x1c0
[ 1336.423000][T31584]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1336.429052][T31584] RIP: 0033:0x7f6fdf247109
[ 1336.433455][T31584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1336.453228][T31584] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1336.461750][T31584] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1336.469717][T31584] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1336.477780][T31584] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.485745][T31584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:49 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 53)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:49 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x3fa, 0x100, 0x70bd2b, 0x25dfdbfe, {}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x4814)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x1)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1336.493711][T31584] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1336.501678][T31584] ---[ end trace 0360cad81487265e ]---
02:11:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:50 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1336.663981][T31631] FAULT_INJECTION: forcing a failure.
[ 1336.663981][T31631] name failslab, interval 1, probability 0, space 0, times 0
[ 1336.679849][T31631] CPU: 1 PID: 31631 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1336.691480][T31631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1336.701531][T31631] Call Trace:
[ 1336.704922][T31631]  dump_stack+0x18e/0x1d5
[ 1336.709290][T31631]  should_fail+0x604/0x770
[ 1336.713703][T31631]  ? __kernfs_new_node+0x8b/0x650
[ 1336.718726][T31631]  should_failslab+0x5/0x20
[ 1336.723220][T31631]  kmem_cache_alloc+0x24/0x210
[ 1336.727975][T31631]  __kernfs_new_node+0x8b/0x650
[ 1336.732816][T31631]  ? mutex_unlock+0x19/0x40
[ 1336.737397][T31631]  ? kernfs_xattr_get+0x81/0x90
[ 1336.742235][T31631]  ? selinux_kernfs_init_security+0xea/0x630
[ 1336.748206][T31631]  kernfs_new_node+0x95/0x160
[ 1336.752878][T31631]  __kernfs_create_file+0x45/0x260
[ 1336.757980][T31631]  sysfs_add_file_mode_ns+0x292/0x340
[ 1336.763345][T31631]  internal_create_group+0x4a4/0xe00
[ 1336.768617][T31631]  sysfs_create_groups+0x5d/0x130
[ 1336.773632][T31631]  device_add_attrs+0x87/0x370
[ 1336.778389][T31631]  device_add+0x505/0xbc0
[ 1336.782714][T31631]  device_create_vargs+0x1b8/0x210
[ 1336.787812][T31631]  device_create+0x86/0xb0
[ 1336.792222][T31631]  bdi_register_va+0x89/0x5e0
[ 1336.796890][T31631]  bdi_register+0x80/0xa0
[ 1336.801212][T31631]  ? __device_add_disk+0x50a/0x1210
[ 1336.806398][T31631]  bdi_register_owner+0x56/0xf0
[ 1336.811240][T31631]  __device_add_disk+0x583/0x1210
[ 1336.816277][T31631]  loop_add+0x554/0x710
[ 1336.820423][T31631]  loop_control_ioctl+0x465/0x600
[ 1336.825433][T31631]  ? loop_remove+0xa0/0xa0
[ 1336.829837][T31631]  do_vfs_ioctl+0x6d1/0x15b0
[ 1336.834421][T31631]  __x64_sys_ioctl+0xd4/0x110
[ 1336.839084][T31631]  do_syscall_64+0xcb/0x1c0
[ 1336.843585][T31631]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1336.849475][T31631] RIP: 0033:0x7f6fdf247109
[ 1336.853881][T31631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1336.873475][T31631] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1336.881879][T31631] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1336.889927][T31631] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1336.897892][T31631] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.905853][T31631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, 0x0, 0x14)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r5, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, 0x0, 0x14) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:50 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 32)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x54, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffffff}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x8080}, 0x800)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 64)
connect$pppl2tp(r1, 0x0, 0x0) (async, rerun: 32)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (rerun: 32)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000006c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x35c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}}}}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK={0x13c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe92}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xcd4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}]}, @TIPC_NLA_LINK={0x144, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb4e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd5c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x79d3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x35c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r2, 0x800, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fffffff}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008000)

02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:50 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x3fa, 0x100, 0x70bd2b, 0x25dfdbfe, {}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x4814)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x1) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1336.913815][T31631] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1336.927691][T31631] ------------[ cut here ]------------
[ 1336.933172][T31631] WARNING: CPU: 1 PID: 31631 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1336.942251][T31631] Modules linked in:
[ 1336.946137][T31631] CPU: 1 PID: 31631 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1336.957752][T31631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1336.967814][T31631] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1336.973608][T31631] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1336.993201][T31631] RSP: 0018:ffff8881e5977ce8 EFLAGS: 00010246
[ 1336.999258][T31631] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1337.007219][T31631] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1337.015182][T31631] RBP: ffff8881ef1b2298 R08: ffffffff82114c4e R09: 0000000000000010
[ 1337.023143][T31631] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1337.031106][T31631] R13: 1ffff1103a4c9401 R14: 1ffff1103a4c949d R15: ffff8881d264a000
[ 1337.039070][T31631] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1337.048159][T31631] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1337.054731][T31631] CR2: 00007ffff991df38 CR3: 00000001e4a09000 CR4: 00000000003406e0
[ 1337.062697][T31631] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1337.070664][T31631] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1337.078625][T31631] Call Trace:
[ 1337.081915][T31631]  loop_add+0x554/0x710
[ 1337.086146][T31631]  loop_control_ioctl+0x465/0x600
[ 1337.091155][T31631]  ? loop_remove+0xa0/0xa0
[ 1337.095559][T31631]  do_vfs_ioctl+0x6d1/0x15b0
[ 1337.100157][T31631]  __x64_sys_ioctl+0xd4/0x110
[ 1337.104837][T31631]  do_syscall_64+0xcb/0x1c0
[ 1337.109331][T31631]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1337.115205][T31631] RIP: 0033:0x7f6fdf247109
[ 1337.119607][T31631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1337.139199][T31631] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1337.147602][T31631] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1337.155563][T31631] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1337.163557][T31631] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1337.171523][T31631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1337.179485][T31631] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1337.187448][T31631] ---[ end trace 0360cad81487265f ]---
02:11:50 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 54)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r5) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, 0x0, 0x14)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:50 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', <r1=>0x0, 0x2f, 0x6, 0x9, 0x1, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xff40, 0x8, 0x9, 0x4133f43a}})
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xc1d}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x154}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x348}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40005}, 0x8811)
r2 = socket(0x2b, 0x4, 0xff)
sendmsg$AUDIT_USER_AVC(r2, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x88, 0x453, 0x4, 0x70bd25, 0x25dfdbfb, "5ad318645cbcc09ba59612dcd1e2d56fb5278a2ea89b18dbd6adb8e2b9b1191767c0a712e32ace3350e7d0072884fea08a8826f115424f4eebd7428922962617f85402d50957d14a0816ba0f6f98982c26b48ba283ab921e26274c0f399b40615da8c7fd4572b2c0203b1db1fdf2f6fe03d691d855dfa39c", ["", "", "", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x4000004)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1000, 0x0)

02:11:50 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x3fa, 0x100, 0x70bd2b, 0x25dfdbfe, {}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x4814)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x1)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:50 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1337.363377][T31693] FAULT_INJECTION: forcing a failure.
[ 1337.363377][T31693] name failslab, interval 1, probability 0, space 0, times 0
[ 1337.384210][T31693] CPU: 0 PID: 31693 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1337.395841][T31693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1337.405886][T31693] Call Trace:
[ 1337.409174][T31693]  dump_stack+0x18e/0x1d5
[ 1337.413502][T31693]  should_fail+0x604/0x770
[ 1337.417917][T31693]  ? __kernfs_new_node+0x8b/0x650
[ 1337.422926][T31693]  should_failslab+0x5/0x20
[ 1337.427418][T31693]  kmem_cache_alloc+0x24/0x210
[ 1337.432168][T31693]  __kernfs_new_node+0x8b/0x650
[ 1337.437007][T31693]  ? mutex_lock+0x6c/0xc0
[ 1337.441329][T31693]  ? kernfs_activate+0x3fc/0x420
[ 1337.446258][T31693]  kernfs_new_node+0x95/0x160
[ 1337.451026][T31693]  __kernfs_create_file+0x45/0x260
[ 1337.456123][T31693]  sysfs_add_file_mode_ns+0x292/0x340
[ 1337.461501][T31693]  internal_create_group+0x4a4/0xe00
[ 1337.466776][T31693]  sysfs_create_groups+0x5d/0x130
[ 1337.471792][T31693]  device_add_attrs+0x87/0x370
[ 1337.476543][T31693]  device_add+0x505/0xbc0
[ 1337.480870][T31693]  device_create_vargs+0x1b8/0x210
[ 1337.485975][T31693]  device_create+0x86/0xb0
[ 1337.490389][T31693]  bdi_register_va+0x89/0x5e0
[ 1337.495056][T31693]  bdi_register+0x80/0xa0
[ 1337.499379][T31693]  ? __device_add_disk+0x50a/0x1210
[ 1337.504583][T31693]  bdi_register_owner+0x56/0xf0
[ 1337.509425][T31693]  __device_add_disk+0x583/0x1210
[ 1337.514450][T31693]  loop_add+0x554/0x710
[ 1337.518599][T31693]  loop_control_ioctl+0x465/0x600
[ 1337.523623][T31693]  ? loop_remove+0xa0/0xa0
[ 1337.528025][T31693]  do_vfs_ioctl+0x6d1/0x15b0
[ 1337.532602][T31693]  __x64_sys_ioctl+0xd4/0x110
[ 1337.537266][T31693]  do_syscall_64+0xcb/0x1c0
[ 1337.541757][T31693]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1337.547634][T31693] RIP: 0033:0x7f6fdf247109
[ 1337.552039][T31693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1337.571723][T31693] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1337.580125][T31693] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1337.588261][T31693] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1337.596229][T31693] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1337.604189][T31693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:51 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x54, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffffff}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x8080}, 0x800)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000006c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x35c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}}}}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK={0x13c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe92}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xcd4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}]}, @TIPC_NLA_LINK={0x144, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb4e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd5c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x79d3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x35c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r2, 0x800, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fffffff}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x54, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffffff}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x8080}, 0x800) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000006c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x35c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}}}}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK={0x13c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe92}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xcd4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}]}, @TIPC_NLA_LINK={0x144, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb4e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd5c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x79d3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x35c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r2, 0x800, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fffffff}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008000) (async)

02:11:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1337.612155][T31693] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1337.666025][T31693] ------------[ cut here ]------------
[ 1337.671558][T31693] WARNING: CPU: 0 PID: 31693 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1337.680638][T31693] Modules linked in:
[ 1337.684533][T31693] CPU: 0 PID: 31693 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1337.696228][T31693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1337.706290][T31693] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1337.712083][T31693] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1337.731674][T31693] RSP: 0018:ffff8881e5087ce8 EFLAGS: 00010246
[ 1337.737732][T31693] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1337.745695][T31693] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1337.753656][T31693] RBP: ffff8881eb9f0058 R08: ffffffff82114c4e R09: 0000000000000010
[ 1337.761737][T31693] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1337.769702][T31693] R13: 1ffff1103a23f201 R14: 1ffff1103a23f29d R15: ffff8881d11f9000
[ 1337.777668][T31693] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1337.786586][T31693] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1337.793156][T31693] CR2: 00007ffed7377bd8 CR3: 00000001e4a09000 CR4: 00000000003406f0
[ 1337.801117][T31693] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1337.809079][T31693] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1337.817036][T31693] Call Trace:
[ 1337.820324][T31693]  loop_add+0x554/0x710
[ 1337.824481][T31693]  loop_control_ioctl+0x465/0x600
[ 1337.829578][T31693]  ? loop_remove+0xa0/0xa0
[ 1337.833986][T31693]  do_vfs_ioctl+0x6d1/0x15b0
[ 1337.838566][T31693]  __x64_sys_ioctl+0xd4/0x110
[ 1337.843236][T31693]  do_syscall_64+0xcb/0x1c0
[ 1337.847724][T31693]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1337.853687][T31693] RIP: 0033:0x7f6fdf247109
[ 1337.858096][T31693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1337.877802][T31693] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1337.886204][T31693] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1337.894162][T31693] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1337.902267][T31693] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1337.910233][T31693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1337.918194][T31693] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1337.926169][T31693] ---[ end trace 0360cad814872660 ]---
02:11:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 55)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:51 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000040)=0x10, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e23, @loopback}, {0x306, @broadcast}, 0x10, {0x2, 0x4e22, @empty}, 'veth0_to_batadv\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:51 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0)
sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x3fa, 0x400, 0x70bd2e, 0x25dfdbfc, {0x1, 0x0, 0x0, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24000801}, 0x0)
r1 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a080, 0x0)
write$cgroup_type(r0, &(0x7f00000001c0), 0x9)

02:11:51 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', <r1=>0x0, 0x2f, 0x6, 0x9, 0x1, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xff40, 0x8, 0x9, 0x4133f43a}})
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xc1d}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x154}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x348}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40005}, 0x8811)
r2 = socket(0x2b, 0x4, 0xff)
sendmsg$AUDIT_USER_AVC(r2, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x88, 0x453, 0x4, 0x70bd25, 0x25dfdbfb, "5ad318645cbcc09ba59612dcd1e2d56fb5278a2ea89b18dbd6adb8e2b9b1191767c0a712e32ace3350e7d0072884fea08a8826f115424f4eebd7428922962617f85402d50957d14a0816ba0f6f98982c26b48ba283ab921e26274c0f399b40615da8c7fd4572b2c0203b1db1fdf2f6fe03d691d855dfa39c", ["", "", "", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x4000004)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1000, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x6, 0x9, 0x1, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xff40, 0x8, 0x9, 0x4133f43a}}) (async)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xc1d}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x154}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x348}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40005}, 0x8811) (async)
socket(0x2b, 0x4, 0xff) (async)
sendmsg$AUDIT_USER_AVC(r2, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x88, 0x453, 0x4, 0x70bd25, 0x25dfdbfb, "5ad318645cbcc09ba59612dcd1e2d56fb5278a2ea89b18dbd6adb8e2b9b1191767c0a712e32ace3350e7d0072884fea08a8826f115424f4eebd7428922962617f85402d50957d14a0816ba0f6f98982c26b48ba283ab921e26274c0f399b40615da8c7fd4572b2c0203b1db1fdf2f6fe03d691d855dfa39c", ["", "", "", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x4000004) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1000, 0x0) (async)

02:11:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:51 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000040)=0x10, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e23, @loopback}, {0x306, @broadcast}, 0x10, {0x2, 0x4e22, @empty}, 'veth0_to_batadv\x00'}) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (rerun: 32)

02:11:51 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', <r1=>0x0, 0x2f, 0x6, 0x9, 0x1, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xff40, 0x8, 0x9, 0x4133f43a}})
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xc1d}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x154}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x348}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40005}, 0x8811)
r2 = socket(0x2b, 0x4, 0xff)
sendmsg$AUDIT_USER_AVC(r2, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x88, 0x453, 0x4, 0x70bd25, 0x25dfdbfb, "5ad318645cbcc09ba59612dcd1e2d56fb5278a2ea89b18dbd6adb8e2b9b1191767c0a712e32ace3350e7d0072884fea08a8826f115424f4eebd7428922962617f85402d50957d14a0816ba0f6f98982c26b48ba283ab921e26274c0f399b40615da8c7fd4572b2c0203b1db1fdf2f6fe03d691d855dfa39c", ["", "", "", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x4000004)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1000, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip6_vti0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', 0x0, 0x2f, 0x6, 0x9, 0x1, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xff40, 0x8, 0x9, 0x4133f43a}}) (async)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x100}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xc1d}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x154}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x348}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40005}, 0x8811) (async)
socket(0x2b, 0x4, 0xff) (async)
sendmsg$AUDIT_USER_AVC(r2, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x88, 0x453, 0x4, 0x70bd25, 0x25dfdbfb, "5ad318645cbcc09ba59612dcd1e2d56fb5278a2ea89b18dbd6adb8e2b9b1191767c0a712e32ace3350e7d0072884fea08a8826f115424f4eebd7428922962617f85402d50957d14a0816ba0f6f98982c26b48ba283ab921e26274c0f399b40615da8c7fd4572b2c0203b1db1fdf2f6fe03d691d855dfa39c", ["", "", "", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x40000c0}, 0x4000004) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1000, 0x0) (async)

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffd7})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:51 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0)
sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x3fa, 0x400, 0x70bd2e, 0x25dfdbfc, {0x1, 0x0, 0x0, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24000801}, 0x0) (async)
r1 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a080, 0x0)
write$cgroup_type(r0, &(0x7f00000001c0), 0x9)

02:11:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff0})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:51 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0) (rerun: 32)
sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x3fa, 0x400, 0x70bd2e, 0x25dfdbfc, {0x1, 0x0, 0x0, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24000801}, 0x0)
r1 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20a080, 0x0) (async, rerun: 32)
write$cgroup_type(r0, &(0x7f00000001c0), 0x9) (rerun: 32)

[ 1338.054962][T31748] FAULT_INJECTION: forcing a failure.
[ 1338.054962][T31748] name failslab, interval 1, probability 0, space 0, times 0
[ 1338.097912][T31748] CPU: 0 PID: 31748 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1338.109551][T31748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1338.119612][T31748] Call Trace:
[ 1338.122906][T31748]  dump_stack+0x18e/0x1d5
[ 1338.127231][T31748]  should_fail+0x604/0x770
[ 1338.131728][T31748]  ? __kernfs_new_node+0x8b/0x650
[ 1338.136748][T31748]  should_failslab+0x5/0x20
[ 1338.141242][T31748]  kmem_cache_alloc+0x24/0x210
[ 1338.145994][T31748]  __kernfs_new_node+0x8b/0x650
[ 1338.150835][T31748]  ? mutex_lock+0x6c/0xc0
[ 1338.155155][T31748]  ? kernfs_activate+0x3fc/0x420
[ 1338.160081][T31748]  kernfs_new_node+0x95/0x160
[ 1338.164747][T31748]  __kernfs_create_file+0x45/0x260
[ 1338.169845][T31748]  sysfs_add_file_mode_ns+0x292/0x340
[ 1338.175204][T31748]  internal_create_group+0x4a4/0xe00
[ 1338.180482][T31748]  sysfs_create_groups+0x5d/0x130
[ 1338.185495][T31748]  device_add_attrs+0x87/0x370
[ 1338.190244][T31748]  device_add+0x505/0xbc0
[ 1338.194575][T31748]  device_create_vargs+0x1b8/0x210
[ 1338.199672][T31748]  device_create+0x86/0xb0
[ 1338.204080][T31748]  bdi_register_va+0x89/0x5e0
[ 1338.208743][T31748]  bdi_register+0x80/0xa0
[ 1338.213060][T31748]  ? __device_add_disk+0x50a/0x1210
[ 1338.218247][T31748]  bdi_register_owner+0x56/0xf0
[ 1338.223087][T31748]  __device_add_disk+0x583/0x1210
[ 1338.228166][T31748]  loop_add+0x554/0x710
[ 1338.232312][T31748]  loop_control_ioctl+0x465/0x600
[ 1338.237322][T31748]  ? loop_remove+0xa0/0xa0
[ 1338.241732][T31748]  do_vfs_ioctl+0x6d1/0x15b0
[ 1338.246406][T31748]  __x64_sys_ioctl+0xd4/0x110
[ 1338.251071][T31748]  do_syscall_64+0xcb/0x1c0
[ 1338.255572][T31748]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1338.261446][T31748] RIP: 0033:0x7f6fdf247109
[ 1338.265846][T31748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1338.285444][T31748] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1338.293847][T31748] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1338.301813][T31748] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1338.309776][T31748] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1338.317883][T31748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1338.325850][T31748] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1338.344755][T31748] ------------[ cut here ]------------
[ 1338.350236][T31748] WARNING: CPU: 0 PID: 31748 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1338.359320][T31748] Modules linked in:
[ 1338.363216][T31748] CPU: 0 PID: 31748 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1338.374830][T31748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1338.384920][T31748] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1338.390983][T31748] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1338.410584][T31748] RSP: 0018:ffff8881cfb6fce8 EFLAGS: 00010246
[ 1338.416647][T31748] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1338.424615][T31748] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1338.432727][T31748] RBP: ffff8881eb9f6718 R08: ffffffff82114c4e R09: 0000000000000010
[ 1338.440706][T31748] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1338.448674][T31748] R13: 1ffff11039ff9401 R14: 1ffff11039ff949d R15: ffff8881cffca000
[ 1338.456644][T31748] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1338.465564][T31748] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1338.472172][T31748] CR2: 0000000000000000 CR3: 00000001d09b7000 CR4: 00000000003406f0
[ 1338.480153][T31748] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1338.488306][T31748] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1338.496264][T31748] Call Trace:
[ 1338.499556][T31748]  loop_add+0x554/0x710
[ 1338.503705][T31748]  loop_control_ioctl+0x465/0x600
[ 1338.508722][T31748]  ? loop_remove+0xa0/0xa0
[ 1338.513156][T31748]  do_vfs_ioctl+0x6d1/0x15b0
[ 1338.517836][T31748]  __x64_sys_ioctl+0xd4/0x110
[ 1338.522509][T31748]  do_syscall_64+0xcb/0x1c0
[ 1338.527006][T31748]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1338.532971][T31748] RIP: 0033:0x7f6fdf247109
[ 1338.537405][T31748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1338.556998][T31748] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1338.565398][T31748] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1338.573384][T31748] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1338.581519][T31748] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1338.589475][T31748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1338.597523][T31748] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1338.605488][T31748] ---[ end trace 0360cad814872661 ]---
02:11:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 56)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/crypto\x00', 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x4)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x94004, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$RTC_WIE_OFF(r3, 0x7010)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x0, 0x0, 0x0, 0x4, 0x1}, 0x48)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x1, 0x4)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @broadcast}, 0x4, 0x2, 0x0, 0x2}}, 0x26)

02:11:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_ADD_RULE(r1, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x464, 0x3f3, 0x400, 0x70bd29, 0x25dfdbfd, {0x10, 0x2, 0x11, [0x400, 0xf1a, 0xb6893c5, 0x0, 0x3, 0x0, 0x7, 0x1, 0x8000, 0x2, 0x5, 0x0, 0x3, 0xfff, 0x0, 0x2, 0xfffffe00, 0x81, 0x80, 0x0, 0x3, 0xdfff, 0x5, 0x0, 0x5, 0x80000000, 0x8, 0xfffffffc, 0x9, 0x8, 0x401, 0xfffffff7, 0x1, 0xffff, 0x7fffffff, 0x2, 0x6, 0x26a, 0x3853, 0x57000000, 0x3, 0x80000001, 0x7fffffff, 0x0, 0x6, 0x1f, 0x4, 0xb5, 0x2, 0x6, 0x45c, 0x3, 0x9, 0xcd, 0x8, 0x0, 0x8a0, 0xca8, 0x1, 0x8, 0xfffffffe, 0x101, 0x5, 0xf833], [0x3ff, 0x5, 0x800, 0x1, 0x8, 0x0, 0x3, 0xffff, 0xfff, 0x0, 0xffffb5f8, 0x3, 0xfff, 0x1, 0x8001, 0x3, 0x10001, 0x1, 0x7c, 0x2, 0x1, 0x4, 0x1, 0x8001, 0x4947, 0x1, 0xe4d, 0x3, 0x20, 0x2, 0x1a7, 0x40, 0x7, 0x80, 0x63, 0x2, 0x1, 0x20, 0x787, 0x9, 0x81, 0xfffffffb, 0x4b1, 0x7fff, 0x8, 0x5, 0x0, 0x0, 0x1, 0x3f, 0xc7, 0x3, 0x0, 0x4, 0x80, 0x2, 0x80000000, 0x4, 0x2f5041e7, 0x3, 0xa7, 0x401, 0xffffffff, 0xa7], [0x96, 0x2, 0x1, 0x1ff, 0x8, 0x5, 0x1, 0x7fffffff, 0xffff, 0x3, 0x3, 0x101, 0x20, 0xcf6, 0x3ff, 0x80000001, 0x6d, 0xd688, 0x4, 0x7f, 0x81, 0x7, 0x1, 0x8, 0x1, 0x7f, 0xb60d, 0x3, 0x401, 0x8, 0x0, 0x7fff, 0xfffffffb, 0x7fffffff, 0x7fff, 0x1d65, 0x8, 0x0, 0x3ff, 0xfffffff9, 0xffff, 0xffffdecf, 0x6, 0x400, 0x0, 0xdf0, 0xe2a6, 0x401, 0x3f, 0x6, 0x10000, 0xfffffffa, 0x7fff, 0x5, 0x20, 0x5, 0x1, 0xff, 0x2, 0x2, 0x8, 0xfffffffb, 0x80, 0x101], [0x8000, 0x5, 0x34, 0x100, 0x5, 0xffff, 0x7f, 0x0, 0x200, 0x0, 0x69, 0x0, 0x5, 0xb632, 0xffffffbc, 0x2, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x3, 0x3, 0x8, 0x3, 0x10001, 0x6, 0x4, 0x200000, 0x7ff, 0x0, 0x4, 0x1, 0x1000, 0x80000001, 0x8d02, 0x7fffffff, 0x3e3, 0x9, 0x6, 0x4, 0x7, 0x7, 0x7, 0x800, 0x2, 0x400, 0x2, 0x3, 0xf8c2, 0x200, 0x2, 0xb7, 0xa734, 0x101, 0x10001, 0x4, 0x1, 0x8, 0x80000000, 0x100, 0x9, 0x3], 0x43, ['(}@$\x00', '/dev/loop-control\x00', 'a{{\'\x00', '/dev/loop-control\x00', '/dev/loop-control\x00', '\x00', '\xda\x00']}, ["", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10}, 0x20000800)

02:11:52 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000040)=0x10, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e23, @loopback}, {0x306, @broadcast}, 0x10, {0x2, 0x4e22, @empty}, 'veth0_to_batadv\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1) (async, rerun: 64)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/crypto\x00', 0x0, 0x0) (rerun: 64)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x4)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x94004, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async, rerun: 64)
ioctl$RTC_WIE_OFF(r3, 0x7010)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x0, 0x0, 0x0, 0x4, 0x1}, 0x48) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x1, 0x4) (async)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @broadcast}, 0x4, 0x2, 0x0, 0x2}}, 0x26)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_ADD_RULE(r1, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x464, 0x3f3, 0x400, 0x70bd29, 0x25dfdbfd, {0x10, 0x2, 0x11, [0x400, 0xf1a, 0xb6893c5, 0x0, 0x3, 0x0, 0x7, 0x1, 0x8000, 0x2, 0x5, 0x0, 0x3, 0xfff, 0x0, 0x2, 0xfffffe00, 0x81, 0x80, 0x0, 0x3, 0xdfff, 0x5, 0x0, 0x5, 0x80000000, 0x8, 0xfffffffc, 0x9, 0x8, 0x401, 0xfffffff7, 0x1, 0xffff, 0x7fffffff, 0x2, 0x6, 0x26a, 0x3853, 0x57000000, 0x3, 0x80000001, 0x7fffffff, 0x0, 0x6, 0x1f, 0x4, 0xb5, 0x2, 0x6, 0x45c, 0x3, 0x9, 0xcd, 0x8, 0x0, 0x8a0, 0xca8, 0x1, 0x8, 0xfffffffe, 0x101, 0x5, 0xf833], [0x3ff, 0x5, 0x800, 0x1, 0x8, 0x0, 0x3, 0xffff, 0xfff, 0x0, 0xffffb5f8, 0x3, 0xfff, 0x1, 0x8001, 0x3, 0x10001, 0x1, 0x7c, 0x2, 0x1, 0x4, 0x1, 0x8001, 0x4947, 0x1, 0xe4d, 0x3, 0x20, 0x2, 0x1a7, 0x40, 0x7, 0x80, 0x63, 0x2, 0x1, 0x20, 0x787, 0x9, 0x81, 0xfffffffb, 0x4b1, 0x7fff, 0x8, 0x5, 0x0, 0x0, 0x1, 0x3f, 0xc7, 0x3, 0x0, 0x4, 0x80, 0x2, 0x80000000, 0x4, 0x2f5041e7, 0x3, 0xa7, 0x401, 0xffffffff, 0xa7], [0x96, 0x2, 0x1, 0x1ff, 0x8, 0x5, 0x1, 0x7fffffff, 0xffff, 0x3, 0x3, 0x101, 0x20, 0xcf6, 0x3ff, 0x80000001, 0x6d, 0xd688, 0x4, 0x7f, 0x81, 0x7, 0x1, 0x8, 0x1, 0x7f, 0xb60d, 0x3, 0x401, 0x8, 0x0, 0x7fff, 0xfffffffb, 0x7fffffff, 0x7fff, 0x1d65, 0x8, 0x0, 0x3ff, 0xfffffff9, 0xffff, 0xffffdecf, 0x6, 0x400, 0x0, 0xdf0, 0xe2a6, 0x401, 0x3f, 0x6, 0x10000, 0xfffffffa, 0x7fff, 0x5, 0x20, 0x5, 0x1, 0xff, 0x2, 0x2, 0x8, 0xfffffffb, 0x80, 0x101], [0x8000, 0x5, 0x34, 0x100, 0x5, 0xffff, 0x7f, 0x0, 0x200, 0x0, 0x69, 0x0, 0x5, 0xb632, 0xffffffbc, 0x2, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x3, 0x3, 0x8, 0x3, 0x10001, 0x6, 0x4, 0x200000, 0x7ff, 0x0, 0x4, 0x1, 0x1000, 0x80000001, 0x8d02, 0x7fffffff, 0x3e3, 0x9, 0x6, 0x4, 0x7, 0x7, 0x7, 0x800, 0x2, 0x400, 0x2, 0x3, 0xf8c2, 0x200, 0x2, 0xb7, 0xa734, 0x101, 0x10001, 0x4, 0x1, 0x8, 0x80000000, 0x100, 0x9, 0x3], 0x43, ['(}@$\x00', '/dev/loop-control\x00', 'a{{\'\x00', '/dev/loop-control\x00', '/dev/loop-control\x00', '\x00', '\xda\x00']}, ["", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10}, 0x20000800)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$AUDIT_ADD_RULE(r1, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x464, 0x3f3, 0x400, 0x70bd29, 0x25dfdbfd, {0x10, 0x2, 0x11, [0x400, 0xf1a, 0xb6893c5, 0x0, 0x3, 0x0, 0x7, 0x1, 0x8000, 0x2, 0x5, 0x0, 0x3, 0xfff, 0x0, 0x2, 0xfffffe00, 0x81, 0x80, 0x0, 0x3, 0xdfff, 0x5, 0x0, 0x5, 0x80000000, 0x8, 0xfffffffc, 0x9, 0x8, 0x401, 0xfffffff7, 0x1, 0xffff, 0x7fffffff, 0x2, 0x6, 0x26a, 0x3853, 0x57000000, 0x3, 0x80000001, 0x7fffffff, 0x0, 0x6, 0x1f, 0x4, 0xb5, 0x2, 0x6, 0x45c, 0x3, 0x9, 0xcd, 0x8, 0x0, 0x8a0, 0xca8, 0x1, 0x8, 0xfffffffe, 0x101, 0x5, 0xf833], [0x3ff, 0x5, 0x800, 0x1, 0x8, 0x0, 0x3, 0xffff, 0xfff, 0x0, 0xffffb5f8, 0x3, 0xfff, 0x1, 0x8001, 0x3, 0x10001, 0x1, 0x7c, 0x2, 0x1, 0x4, 0x1, 0x8001, 0x4947, 0x1, 0xe4d, 0x3, 0x20, 0x2, 0x1a7, 0x40, 0x7, 0x80, 0x63, 0x2, 0x1, 0x20, 0x787, 0x9, 0x81, 0xfffffffb, 0x4b1, 0x7fff, 0x8, 0x5, 0x0, 0x0, 0x1, 0x3f, 0xc7, 0x3, 0x0, 0x4, 0x80, 0x2, 0x80000000, 0x4, 0x2f5041e7, 0x3, 0xa7, 0x401, 0xffffffff, 0xa7], [0x96, 0x2, 0x1, 0x1ff, 0x8, 0x5, 0x1, 0x7fffffff, 0xffff, 0x3, 0x3, 0x101, 0x20, 0xcf6, 0x3ff, 0x80000001, 0x6d, 0xd688, 0x4, 0x7f, 0x81, 0x7, 0x1, 0x8, 0x1, 0x7f, 0xb60d, 0x3, 0x401, 0x8, 0x0, 0x7fff, 0xfffffffb, 0x7fffffff, 0x7fff, 0x1d65, 0x8, 0x0, 0x3ff, 0xfffffff9, 0xffff, 0xffffdecf, 0x6, 0x400, 0x0, 0xdf0, 0xe2a6, 0x401, 0x3f, 0x6, 0x10000, 0xfffffffa, 0x7fff, 0x5, 0x20, 0x5, 0x1, 0xff, 0x2, 0x2, 0x8, 0xfffffffb, 0x80, 0x101], [0x8000, 0x5, 0x34, 0x100, 0x5, 0xffff, 0x7f, 0x0, 0x200, 0x0, 0x69, 0x0, 0x5, 0xb632, 0xffffffbc, 0x2, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x3, 0x3, 0x8, 0x3, 0x10001, 0x6, 0x4, 0x200000, 0x7ff, 0x0, 0x4, 0x1, 0x1000, 0x80000001, 0x8d02, 0x7fffffff, 0x3e3, 0x9, 0x6, 0x4, 0x7, 0x7, 0x7, 0x800, 0x2, 0x400, 0x2, 0x3, 0xf8c2, 0x200, 0x2, 0xb7, 0xa734, 0x101, 0x10001, 0x4, 0x1, 0x8, 0x80000000, 0x100, 0x9, 0x3], 0x43, ['(}@$\x00', '/dev/loop-control\x00', 'a{{\'\x00', '/dev/loop-control\x00', '/dev/loop-control\x00', '\x00', '\xda\x00']}, ["", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10}, 0x20000800) (async)

02:11:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, r2)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30000}, 0xc, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x14000000}, 0x4005085)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0000, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1338.790783][T31809] FAULT_INJECTION: forcing a failure.
[ 1338.790783][T31809] name failslab, interval 1, probability 0, space 0, times 0
[ 1338.844531][T31809] CPU: 0 PID: 31809 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1338.856166][T31809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1338.866214][T31809] Call Trace:
[ 1338.869630][T31809]  dump_stack+0x18e/0x1d5
[ 1338.873962][T31809]  should_fail+0x604/0x770
[ 1338.878387][T31809]  ? __kernfs_new_node+0x8b/0x650
[ 1338.883397][T31809]  should_failslab+0x5/0x20
[ 1338.887893][T31809]  kmem_cache_alloc+0x24/0x210
[ 1338.892730][T31809]  __kernfs_new_node+0x8b/0x650
[ 1338.897570][T31809]  ? mutex_lock+0x6c/0xc0
[ 1338.901898][T31809]  ? kernfs_activate+0x3fc/0x420
[ 1338.906829][T31809]  kernfs_new_node+0x95/0x160
[ 1338.911505][T31809]  __kernfs_create_file+0x45/0x260
[ 1338.916611][T31809]  sysfs_add_file_mode_ns+0x292/0x340
[ 1338.921971][T31809]  internal_create_group+0x4a4/0xe00
[ 1338.927246][T31809]  sysfs_create_groups+0x5d/0x130
[ 1338.932262][T31809]  device_add_attrs+0x87/0x370
[ 1338.937101][T31809]  device_add+0x505/0xbc0
[ 1338.941442][T31809]  device_create_vargs+0x1b8/0x210
[ 1338.946551][T31809]  device_create+0x86/0xb0
[ 1338.950956][T31809]  bdi_register_va+0x89/0x5e0
[ 1338.955623][T31809]  bdi_register+0x80/0xa0
[ 1338.959940][T31809]  ? __device_add_disk+0x50a/0x1210
[ 1338.965128][T31809]  bdi_register_owner+0x56/0xf0
[ 1338.969968][T31809]  __device_add_disk+0x583/0x1210
[ 1338.974980][T31809]  loop_add+0x554/0x710
[ 1338.979126][T31809]  loop_control_ioctl+0x465/0x600
[ 1338.984138][T31809]  ? loop_remove+0xa0/0xa0
[ 1338.988626][T31809]  do_vfs_ioctl+0x6d1/0x15b0
[ 1338.993226][T31809]  __x64_sys_ioctl+0xd4/0x110
[ 1338.997911][T31809]  do_syscall_64+0xcb/0x1c0
[ 1339.002413][T31809]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1339.008291][T31809] RIP: 0033:0x7f6fdf247109
[ 1339.012697][T31809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1339.032292][T31809] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1339.040703][T31809] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1339.048840][T31809] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1339.056802][T31809] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1339.064768][T31809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1339.072727][T31809] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1339.093462][T31809] ------------[ cut here ]------------
[ 1339.098960][T31809] WARNING: CPU: 0 PID: 31809 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1339.108041][T31809] Modules linked in:
[ 1339.111930][T31809] CPU: 0 PID: 31809 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1339.123534][T31809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1339.133592][T31809] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1339.139384][T31809] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1339.159064][T31809] RSP: 0018:ffff8881e68d7ce8 EFLAGS: 00010246
[ 1339.165145][T31809] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1339.173132][T31809] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1339.181279][T31809] RBP: ffff8881eb9f4d68 R08: ffffffff82114c4e R09: 0000000000000010
[ 1339.189249][T31809] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1339.197297][T31809] R13: 1ffff1103e91da01 R14: 1ffff1103e91da9d R15: ffff8881f48ed000
[ 1339.205266][T31809] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1339.214192][T31809] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1339.220765][T31809] CR2: 00005555567d9b38 CR3: 00000001ecea4000 CR4: 00000000003406f0
[ 1339.228728][T31809] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1339.236699][T31809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1339.244656][T31809] Call Trace:
[ 1339.248031][T31809]  loop_add+0x554/0x710
[ 1339.252189][T31809]  loop_control_ioctl+0x465/0x600
[ 1339.257209][T31809]  ? loop_remove+0xa0/0xa0
[ 1339.261612][T31809]  do_vfs_ioctl+0x6d1/0x15b0
[ 1339.266283][T31809]  __x64_sys_ioctl+0xd4/0x110
[ 1339.270952][T31809]  do_syscall_64+0xcb/0x1c0
[ 1339.275446][T31809]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1339.281328][T31809] RIP: 0033:0x7f6fdf247109
[ 1339.285727][T31809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1339.305328][T31809] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1339.313731][T31809] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1339.321689][T31809] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1339.329651][T31809] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1339.337614][T31809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 57)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/crypto\x00', 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x4) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x94004, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$RTC_WIE_OFF(r3, 0x7010) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x0, 0x0, 0x0, 0x4, 0x1}, 0x48) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x1, 0x4) (async)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @broadcast}, 0x4, 0x2, 0x0, 0x2}}, 0x26)

02:11:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$AUDIT_ADD_RULE(r1, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x464, 0x3f3, 0x400, 0x70bd29, 0x25dfdbfd, {0x10, 0x2, 0x11, [0x400, 0xf1a, 0xb6893c5, 0x0, 0x3, 0x0, 0x7, 0x1, 0x8000, 0x2, 0x5, 0x0, 0x3, 0xfff, 0x0, 0x2, 0xfffffe00, 0x81, 0x80, 0x0, 0x3, 0xdfff, 0x5, 0x0, 0x5, 0x80000000, 0x8, 0xfffffffc, 0x9, 0x8, 0x401, 0xfffffff7, 0x1, 0xffff, 0x7fffffff, 0x2, 0x6, 0x26a, 0x3853, 0x57000000, 0x3, 0x80000001, 0x7fffffff, 0x0, 0x6, 0x1f, 0x4, 0xb5, 0x2, 0x6, 0x45c, 0x3, 0x9, 0xcd, 0x8, 0x0, 0x8a0, 0xca8, 0x1, 0x8, 0xfffffffe, 0x101, 0x5, 0xf833], [0x3ff, 0x5, 0x800, 0x1, 0x8, 0x0, 0x3, 0xffff, 0xfff, 0x0, 0xffffb5f8, 0x3, 0xfff, 0x1, 0x8001, 0x3, 0x10001, 0x1, 0x7c, 0x2, 0x1, 0x4, 0x1, 0x8001, 0x4947, 0x1, 0xe4d, 0x3, 0x20, 0x2, 0x1a7, 0x40, 0x7, 0x80, 0x63, 0x2, 0x1, 0x20, 0x787, 0x9, 0x81, 0xfffffffb, 0x4b1, 0x7fff, 0x8, 0x5, 0x0, 0x0, 0x1, 0x3f, 0xc7, 0x3, 0x0, 0x4, 0x80, 0x2, 0x80000000, 0x4, 0x2f5041e7, 0x3, 0xa7, 0x401, 0xffffffff, 0xa7], [0x96, 0x2, 0x1, 0x1ff, 0x8, 0x5, 0x1, 0x7fffffff, 0xffff, 0x3, 0x3, 0x101, 0x20, 0xcf6, 0x3ff, 0x80000001, 0x6d, 0xd688, 0x4, 0x7f, 0x81, 0x7, 0x1, 0x8, 0x1, 0x7f, 0xb60d, 0x3, 0x401, 0x8, 0x0, 0x7fff, 0xfffffffb, 0x7fffffff, 0x7fff, 0x1d65, 0x8, 0x0, 0x3ff, 0xfffffff9, 0xffff, 0xffffdecf, 0x6, 0x400, 0x0, 0xdf0, 0xe2a6, 0x401, 0x3f, 0x6, 0x10000, 0xfffffffa, 0x7fff, 0x5, 0x20, 0x5, 0x1, 0xff, 0x2, 0x2, 0x8, 0xfffffffb, 0x80, 0x101], [0x8000, 0x5, 0x34, 0x100, 0x5, 0xffff, 0x7f, 0x0, 0x200, 0x0, 0x69, 0x0, 0x5, 0xb632, 0xffffffbc, 0x2, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x3, 0x3, 0x8, 0x3, 0x10001, 0x6, 0x4, 0x200000, 0x7ff, 0x0, 0x4, 0x1, 0x1000, 0x80000001, 0x8d02, 0x7fffffff, 0x3e3, 0x9, 0x6, 0x4, 0x7, 0x7, 0x7, 0x800, 0x2, 0x400, 0x2, 0x3, 0xf8c2, 0x200, 0x2, 0xb7, 0xa734, 0x101, 0x10001, 0x4, 0x1, 0x8, 0x80000000, 0x100, 0x9, 0x3], 0x43, ['(}@$\x00', '/dev/loop-control\x00', 'a{{\'\x00', '/dev/loop-control\x00', '/dev/loop-control\x00', '\x00', '\xda\x00']}, ["", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10}, 0x20000800)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$AUDIT_ADD_RULE(r1, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x464, 0x3f3, 0x400, 0x70bd29, 0x25dfdbfd, {0x10, 0x2, 0x11, [0x400, 0xf1a, 0xb6893c5, 0x0, 0x3, 0x0, 0x7, 0x1, 0x8000, 0x2, 0x5, 0x0, 0x3, 0xfff, 0x0, 0x2, 0xfffffe00, 0x81, 0x80, 0x0, 0x3, 0xdfff, 0x5, 0x0, 0x5, 0x80000000, 0x8, 0xfffffffc, 0x9, 0x8, 0x401, 0xfffffff7, 0x1, 0xffff, 0x7fffffff, 0x2, 0x6, 0x26a, 0x3853, 0x57000000, 0x3, 0x80000001, 0x7fffffff, 0x0, 0x6, 0x1f, 0x4, 0xb5, 0x2, 0x6, 0x45c, 0x3, 0x9, 0xcd, 0x8, 0x0, 0x8a0, 0xca8, 0x1, 0x8, 0xfffffffe, 0x101, 0x5, 0xf833], [0x3ff, 0x5, 0x800, 0x1, 0x8, 0x0, 0x3, 0xffff, 0xfff, 0x0, 0xffffb5f8, 0x3, 0xfff, 0x1, 0x8001, 0x3, 0x10001, 0x1, 0x7c, 0x2, 0x1, 0x4, 0x1, 0x8001, 0x4947, 0x1, 0xe4d, 0x3, 0x20, 0x2, 0x1a7, 0x40, 0x7, 0x80, 0x63, 0x2, 0x1, 0x20, 0x787, 0x9, 0x81, 0xfffffffb, 0x4b1, 0x7fff, 0x8, 0x5, 0x0, 0x0, 0x1, 0x3f, 0xc7, 0x3, 0x0, 0x4, 0x80, 0x2, 0x80000000, 0x4, 0x2f5041e7, 0x3, 0xa7, 0x401, 0xffffffff, 0xa7], [0x96, 0x2, 0x1, 0x1ff, 0x8, 0x5, 0x1, 0x7fffffff, 0xffff, 0x3, 0x3, 0x101, 0x20, 0xcf6, 0x3ff, 0x80000001, 0x6d, 0xd688, 0x4, 0x7f, 0x81, 0x7, 0x1, 0x8, 0x1, 0x7f, 0xb60d, 0x3, 0x401, 0x8, 0x0, 0x7fff, 0xfffffffb, 0x7fffffff, 0x7fff, 0x1d65, 0x8, 0x0, 0x3ff, 0xfffffff9, 0xffff, 0xffffdecf, 0x6, 0x400, 0x0, 0xdf0, 0xe2a6, 0x401, 0x3f, 0x6, 0x10000, 0xfffffffa, 0x7fff, 0x5, 0x20, 0x5, 0x1, 0xff, 0x2, 0x2, 0x8, 0xfffffffb, 0x80, 0x101], [0x8000, 0x5, 0x34, 0x100, 0x5, 0xffff, 0x7f, 0x0, 0x200, 0x0, 0x69, 0x0, 0x5, 0xb632, 0xffffffbc, 0x2, 0x2, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x3, 0x3, 0x8, 0x3, 0x10001, 0x6, 0x4, 0x200000, 0x7ff, 0x0, 0x4, 0x1, 0x1000, 0x80000001, 0x8d02, 0x7fffffff, 0x3e3, 0x9, 0x6, 0x4, 0x7, 0x7, 0x7, 0x800, 0x2, 0x400, 0x2, 0x3, 0xf8c2, 0x200, 0x2, 0xb7, 0xa734, 0x101, 0x10001, 0x4, 0x1, 0x8, 0x80000000, 0x100, 0x9, 0x3], 0x43, ['(}@$\x00', '/dev/loop-control\x00', 'a{{\'\x00', '/dev/loop-control\x00', '/dev/loop-control\x00', '\x00', '\xda\x00']}, ["", "", "", "", "", ""]}, 0x464}, 0x1, 0x0, 0x0, 0x10}, 0x20000800) (async)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1339.345578][T31809] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1339.353543][T31809] ---[ end trace 0360cad814872662 ]---
02:11:52 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc844}, 0x20040000)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xc8, r2, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ed}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ed9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x1}, 0x20000894)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x14c, r5, 0x10, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x70, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10000000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "c7434ce779aa1aaf76cb26e7d42773d1501457be07937bd2007c76"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x505}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4090}, 0x40)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, r2)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30000}, 0xc, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x14000000}, 0x4005085)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0000, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, r2) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30000}, 0xc, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x14000000}, 0x4005085) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0000, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000000)={0x400}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1339.468373][T31868] FAULT_INJECTION: forcing a failure.
[ 1339.468373][T31868] name failslab, interval 1, probability 0, space 0, times 0
02:11:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, r2) (async)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30000}, 0xc, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x14000000}, 0x4005085) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0000, 0x0) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1339.516504][T31868] CPU: 1 PID: 31868 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1339.528139][T31868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1339.538286][T31868] Call Trace:
[ 1339.541573][T31868]  dump_stack+0x18e/0x1d5
[ 1339.545897][T31868]  should_fail+0x604/0x770
[ 1339.550309][T31868]  ? __kernfs_new_node+0x8b/0x650
[ 1339.555323][T31868]  should_failslab+0x5/0x20
[ 1339.559814][T31868]  kmem_cache_alloc+0x24/0x210
[ 1339.564571][T31868]  __kernfs_new_node+0x8b/0x650
[ 1339.569413][T31868]  ? mutex_unlock+0x19/0x40
[ 1339.573988][T31868]  ? kernfs_add_one+0x4a3/0x5c0
[ 1339.578828][T31868]  kernfs_new_node+0x95/0x160
[ 1339.583496][T31868]  __kernfs_create_file+0x45/0x260
[ 1339.588599][T31868]  sysfs_add_file_mode_ns+0x292/0x340
[ 1339.593975][T31868]  sysfs_create_file_ns+0x140/0x200
[ 1339.599168][T31868]  device_add_attrs+0x2be/0x370
[ 1339.604022][T31868]  device_add+0x505/0xbc0
[ 1339.608351][T31868]  device_create_vargs+0x1b8/0x210
[ 1339.613456][T31868]  device_create+0x86/0xb0
[ 1339.617862][T31868]  bdi_register_va+0x89/0x5e0
[ 1339.622528][T31868]  bdi_register+0x80/0xa0
[ 1339.626843][T31868]  ? __device_add_disk+0x50a/0x1210
[ 1339.632033][T31868]  bdi_register_owner+0x56/0xf0
[ 1339.636959][T31868]  __device_add_disk+0x583/0x1210
[ 1339.641971][T31868]  loop_add+0x554/0x710
[ 1339.646118][T31868]  loop_control_ioctl+0x465/0x600
[ 1339.651131][T31868]  ? loop_remove+0xa0/0xa0
[ 1339.655530][T31868]  do_vfs_ioctl+0x6d1/0x15b0
[ 1339.660111][T31868]  __x64_sys_ioctl+0xd4/0x110
[ 1339.664779][T31868]  do_syscall_64+0xcb/0x1c0
[ 1339.669273][T31868]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1339.675151][T31868] RIP: 0033:0x7f6fdf247109
[ 1339.679563][T31868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1339.699332][T31868] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1339.707739][T31868] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1339.715701][T31868] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1339.723665][T31868] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1339.731719][T31868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1339.739682][T31868] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1339.774072][T31868] ------------[ cut here ]------------
[ 1339.779555][T31868] WARNING: CPU: 1 PID: 31868 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1339.788638][T31868] Modules linked in:
[ 1339.792532][T31868] CPU: 1 PID: 31868 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1339.804525][T31868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1339.814583][T31868] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1339.820379][T31868] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1339.839976][T31868] RSP: 0018:ffff8881e329fce8 EFLAGS: 00010246
[ 1339.846120][T31868] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1339.854181][T31868] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1339.862234][T31868] RBP: ffff8881eb9f2298 R08: ffffffff82114c4e R09: 0000000000000010
[ 1339.870203][T31868] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1339.878253][T31868] R13: 1ffff1103e6d8e01 R14: 1ffff1103e6d8e9d R15: ffff8881f36c7000
[ 1339.886221][T31868] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1339.895166][T31868] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1339.901827][T31868] CR2: 00007f72838fdcc0 CR3: 00000001ea7d3000 CR4: 00000000003406e0
[ 1339.909798][T31868] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
02:11:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 58)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:53 executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x3, 0x0, 0x2, 0x9, 0x102, 0xffffffffffffffff, 0xb4ab, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={&(0x7f00000000c0)="eeba9d60f3401c028680190bde743b235b1b3382a897e2c1c3c881b333ef396c830c7a1b5f8b1202ec8313e0e0382401da6ff9ffa8a7cb7fb3fa8d6687050440b978040318390c913bec61b277eecdf3f29a2291054438581f09ed3d81007d977e562dc45de6c99aeef00a66b92548e9b73a4c9c94745fe91f774279e5502b94dd771defcd6d531240f79cbe78f93cf3f03c7237be", &(0x7f0000000000)=""/107, &(0x7f0000000180)="35c3cba3562745472fc70c582dde039f7e804d4a63f69b0dc4d22559fadcac32c0b74ccd73850fb53cdd1f6f9acb2c5e7be44f94c2ba65877201ba9be6231ba7e29530807c90062ef3461a870551eb65b7c6c159a44bcaa35c1942c828c32781e170cac55bec055637cd581d196e029b77552fc69c283e5cfcc7ae8bd3ecd8eabd3122ee6120abdc55f225b92c11c4348b2b2873fd834c1be6cdb7dc9b7041d840ded3de378b091552946eb1b5", &(0x7f0000000240)="b4708e1d69bfc25f573785623c1aff73659cd521ff86f50657ffc10ad57a2a0fecc6ec27842e1216fa66960b1b2322dd9b69d43b407a4c85324851eaeb92fa2cf58179b86a3e46722285d2bdc48d49b6", 0x7, r0, 0x4}, 0x38)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000480)={r0, &(0x7f0000000380)="d5e2d651482de6df1841c70fecc8a665b549264216f8df1e9e6ac90a02044029e0b8070f6cd6a76c0ee5c035a6e55ac77e6e2952455f2e887de06ce449be36a72f4b988d9428831683e150dbaba49960ec952d1c8edf94cf3905d6c6b16b57aa2e58b25a8570173530322251556b46ea2227c12f7dfd712467f7e0cd5fb615b0234eee63d056b2caebd5248903c63c59912165374da0d3cb401ef3cb3c6c03f4d42c09398d6eae95ee7debf6f266e095be9b482ce293a139dd1dea9acf0fdcf8e51e3a07d02045bccc7bda2ff240"}, 0x20)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/meminfo\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/slabinfo\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:53 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_audit(0x10, 0x3, 0x9) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc844}, 0x20040000) (async, rerun: 32)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0) (rerun: 32)
r2 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xc8, r2, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ed}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ed9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x1}, 0x20000894) (async, rerun: 32)
connect$pppl2tp(r3, 0x0, 0x0) (rerun: 32)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (rerun: 64)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x14c, r5, 0x10, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x70, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10000000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "c7434ce779aa1aaf76cb26e7d42773d1501457be07937bd2007c76"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x505}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4090}, 0x40)

02:11:53 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000000)={0x400}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:53 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc844}, 0x20040000)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xc8, r2, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ed}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ed9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x1}, 0x20000894)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x14c, r5, 0x10, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x70, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10000000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "c7434ce779aa1aaf76cb26e7d42773d1501457be07937bd2007c76"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x505}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4090}, 0x40)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_audit(0x10, 0x3, 0x9) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc844}, 0x20040000) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xc8, r2, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ed}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ed9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x1}, 0x20000894) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x14c, r5, 0x10, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x70, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10000000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "c7434ce779aa1aaf76cb26e7d42773d1501457be07937bd2007c76"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x505}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4090}, 0x40) (async)

02:11:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1339.917759][T31868] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1339.925718][T31868] Call Trace:
[ 1339.929014][T31868]  loop_add+0x554/0x710
[ 1339.933160][T31868]  loop_control_ioctl+0x465/0x600
[ 1339.938175][T31868]  ? loop_remove+0xa0/0xa0
[ 1339.942577][T31868]  do_vfs_ioctl+0x6d1/0x15b0
[ 1339.947155][T31868]  __x64_sys_ioctl+0xd4/0x110
[ 1339.951817][T31868]  do_syscall_64+0xcb/0x1c0
[ 1339.956324][T31868]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1339.962204][T31868] RIP: 0033:0x7f6fdf247109
[ 1339.966613][T31868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1339.986207][T31868] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1339.994610][T31868] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1340.002581][T31868] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1340.010630][T31868] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1340.018596][T31868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1340.026559][T31868] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1340.034523][T31868] ---[ end trace 0360cad814872663 ]---
02:11:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="5803000028af8e9875cadc424ee6c3e38ceb59db26c93c8a12da2abe44035eaf68a13e9a22906bb17d91de8107b43a3bd0de16", @ANYRES16=r5, @ANYBLOB="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"], 0x358}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e23, @private=0xa010100}, {0xfaaa9b80f6e6a972, @multicast}, 0x8, {0x2, 0x4e23, @empty}, 'vxcan1\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1340.159331][T31925] FAULT_INJECTION: forcing a failure.
[ 1340.159331][T31925] name failslab, interval 1, probability 0, space 0, times 0
[ 1340.205564][T31925] CPU: 1 PID: 31925 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1340.217303][T31925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1340.228309][T31925] Call Trace:
[ 1340.231607][T31925]  dump_stack+0x18e/0x1d5
[ 1340.235954][T31925]  should_fail+0x604/0x770
[ 1340.240372][T31925]  ? __kernfs_new_node+0x8b/0x650
[ 1340.245401][T31925]  should_failslab+0x5/0x20
[ 1340.249893][T31925]  kmem_cache_alloc+0x24/0x210
[ 1340.254675][T31925]  __kernfs_new_node+0x8b/0x650
[ 1340.259522][T31925]  ? mutex_unlock+0x19/0x40
[ 1340.264025][T31925]  ? kernfs_add_one+0x4a3/0x5c0
[ 1340.268867][T31925]  kernfs_create_dir_ns+0x90/0x220
[ 1340.273964][T31925]  internal_create_group+0x227/0xe00
[ 1340.279240][T31925]  dpm_sysfs_add+0x59/0x260
[ 1340.283818][T31925]  device_add+0x547/0xbc0
[ 1340.288148][T31925]  device_create_vargs+0x1b8/0x210
[ 1340.293862][T31925]  device_create+0x86/0xb0
[ 1340.298489][T31925]  bdi_register_va+0x89/0x5e0
[ 1340.303256][T31925]  bdi_register+0x80/0xa0
[ 1340.308190][T31925]  ? __device_add_disk+0x50a/0x1210
[ 1340.313469][T31925]  bdi_register_owner+0x56/0xf0
[ 1340.319423][T31925]  __device_add_disk+0x583/0x1210
[ 1340.324448][T31925]  loop_add+0x554/0x710
[ 1340.328606][T31925]  loop_control_ioctl+0x465/0x600
[ 1340.333622][T31925]  ? loop_remove+0xa0/0xa0
[ 1340.338034][T31925]  do_vfs_ioctl+0x6d1/0x15b0
[ 1340.342616][T31925]  __x64_sys_ioctl+0xd4/0x110
[ 1340.347282][T31925]  do_syscall_64+0xcb/0x1c0
[ 1340.352147][T31925]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1340.358242][T31925] RIP: 0033:0x7f6fdf247109
[ 1340.362771][T31925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1340.382974][T31925] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1340.391381][T31925] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1340.399342][T31925] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1340.407392][T31925] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1340.415354][T31925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1340.423314][T31925] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1340.434533][T31925] ------------[ cut here ]------------
[ 1340.440016][T31925] WARNING: CPU: 0 PID: 31925 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1340.449159][T31925] Modules linked in:
[ 1340.453047][T31925] CPU: 0 PID: 31925 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1340.464654][T31925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1340.474714][T31925] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1340.480507][T31925] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1340.500106][T31925] RSP: 0018:ffff8881e53efce8 EFLAGS: 00010246
[ 1340.506161][T31925] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1340.514128][T31925] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1340.522098][T31925] RBP: ffff8881ef1b55f8 R08: ffffffff82114c4e R09: 0000000000000010
[ 1340.530062][T31925] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1340.538026][T31925] R13: 1ffff1103a36b201 R14: 1ffff1103a36b29d R15: ffff8881d1b59000
[ 1340.546081][T31925] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1340.555003][T31925] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1340.561579][T31925] CR2: 00007fb0f84f5505 CR3: 00000001ef68a000 CR4: 00000000003406f0
[ 1340.569543][T31925] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1340.577512][T31925] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1340.585477][T31925] Call Trace:
[ 1340.588765][T31925]  loop_add+0x554/0x710
[ 1340.592917][T31925]  loop_control_ioctl+0x465/0x600
[ 1340.597931][T31925]  ? loop_remove+0xa0/0xa0
[ 1340.602340][T31925]  do_vfs_ioctl+0x6d1/0x15b0
[ 1340.606925][T31925]  __x64_sys_ioctl+0xd4/0x110
[ 1340.611596][T31925]  do_syscall_64+0xcb/0x1c0
[ 1340.616092][T31925]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1340.621974][T31925] RIP: 0033:0x7f6fdf247109
[ 1340.626384][T31925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1340.646011][T31925] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1340.654587][T31925] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1340.662549][T31925] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1340.670601][T31925] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1340.678563][T31925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1340.686536][T31925] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1340.694504][T31925] ---[ end trace 0360cad814872664 ]---
02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 59)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:54 executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x3, 0x0, 0x2, 0x9, 0x102, 0xffffffffffffffff, 0xb4ab, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={&(0x7f00000000c0)="eeba9d60f3401c028680190bde743b235b1b3382a897e2c1c3c881b333ef396c830c7a1b5f8b1202ec8313e0e0382401da6ff9ffa8a7cb7fb3fa8d6687050440b978040318390c913bec61b277eecdf3f29a2291054438581f09ed3d81007d977e562dc45de6c99aeef00a66b92548e9b73a4c9c94745fe91f774279e5502b94dd771defcd6d531240f79cbe78f93cf3f03c7237be", &(0x7f0000000000)=""/107, &(0x7f0000000180)="35c3cba3562745472fc70c582dde039f7e804d4a63f69b0dc4d22559fadcac32c0b74ccd73850fb53cdd1f6f9acb2c5e7be44f94c2ba65877201ba9be6231ba7e29530807c90062ef3461a870551eb65b7c6c159a44bcaa35c1942c828c32781e170cac55bec055637cd581d196e029b77552fc69c283e5cfcc7ae8bd3ecd8eabd3122ee6120abdc55f225b92c11c4348b2b2873fd834c1be6cdb7dc9b7041d840ded3de378b091552946eb1b5", &(0x7f0000000240)="b4708e1d69bfc25f573785623c1aff73659cd521ff86f50657ffc10ad57a2a0fecc6ec27842e1216fa66960b1b2322dd9b69d43b407a4c85324851eaeb92fa2cf58179b86a3e46722285d2bdc48d49b6", 0x7, r0, 0x4}, 0x38) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000480)={r0, &(0x7f0000000380)="d5e2d651482de6df1841c70fecc8a665b549264216f8df1e9e6ac90a02044029e0b8070f6cd6a76c0ee5c035a6e55ac77e6e2952455f2e887de06ce449be36a72f4b988d9428831683e150dbaba49960ec952d1c8edf94cf3905d6c6b16b57aa2e58b25a8570173530322251556b46ea2227c12f7dfd712467f7e0cd5fb615b0234eee63d056b2caebd5248903c63c59912165374da0d3cb401ef3cb3c6c03f4d42c09398d6eae95ee7debf6f266e095be9b482ce293a139dd1dea9acf0fdcf8e51e3a07d02045bccc7bda2ff240"}, 0x20)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/meminfo\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/slabinfo\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="86d489ca", @ANYRES16=r2, @ANYBLOB="872c89d3c045871b79c56f78fa232d019315141d6f3e2a840c3af29ef766919065375572ca8a537109fd2f4f2e0a1068149f0700000000000000f89e96d6ea74662c4494abb1b7501b36eb88bb1947d2308c524cd55e"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0xc04434286f62ff87)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000000)={0x400}, 0x4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="5803000028af8e9875cadc424ee6c3e38ceb59db26c93c8a12da2abe44035eaf68a13e9a22906bb17d91de8107b43a3bd0de16", @ANYRES16=r5, @ANYBLOB="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"], 0x358}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e23, @private=0xa010100}, {0xfaaa9b80f6e6a972, @multicast}, 0x8, {0x2, 0x4e23, @empty}, 'vxcan1\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="5803000028af8e9875cadc424ee6c3e38ceb59db26c93c8a12da2abe44035eaf68a13e9a22906bb17d91de8107b43a3bd0de16", @ANYRES16=r5, @ANYBLOB="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"], 0x358}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e23, @private=0xa010100}, {0xfaaa9b80f6e6a972, @multicast}, 0x8, {0x2, 0x4e23, @empty}, 'vxcan1\x00'}) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:54 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="86d489ca", @ANYRES16=r2, @ANYBLOB="872c89d3c045871b79c56f78fa232d019315141d6f3e2a840c3af29ef766919065375572ca8a537109fd2f4f2e0a1068149f0700000000000000f89e96d6ea74662c4494abb1b7501b36eb88bb1947d2308c524cd55e"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0xc04434286f62ff87) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1340.875785][T31980] FAULT_INJECTION: forcing a failure.
[ 1340.875785][T31980] name failslab, interval 1, probability 0, space 0, times 0
[ 1340.925300][T31980] CPU: 1 PID: 31980 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1340.936939][T31980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1340.946995][T31980] Call Trace:
[ 1340.950289][T31980]  dump_stack+0x18e/0x1d5
[ 1340.954615][T31980]  should_fail+0x604/0x770
[ 1340.959032][T31980]  ? __kernfs_new_node+0x8b/0x650
[ 1340.964049][T31980]  should_failslab+0x5/0x20
[ 1340.968566][T31980]  kmem_cache_alloc+0x24/0x210
[ 1340.973325][T31980]  __kernfs_new_node+0x8b/0x650
[ 1340.978171][T31980]  ? mutex_lock+0x6c/0xc0
[ 1340.982616][T31980]  ? kernfs_activate+0x3fc/0x420
[ 1340.987899][T31980]  kernfs_new_node+0x95/0x160
[ 1340.992565][T31980]  __kernfs_create_file+0x45/0x260
[ 1340.997754][T31980]  sysfs_add_file_mode_ns+0x292/0x340
[ 1341.003120][T31980]  internal_create_group+0x4a4/0xe00
[ 1341.008396][T31980]  sysfs_create_groups+0x5d/0x130
[ 1341.013414][T31980]  device_add_attrs+0x87/0x370
[ 1341.018165][T31980]  device_add+0x505/0xbc0
[ 1341.022485][T31980]  device_create_vargs+0x1b8/0x210
[ 1341.027594][T31980]  device_create+0x86/0xb0
[ 1341.032003][T31980]  bdi_register_va+0x89/0x5e0
[ 1341.036776][T31980]  bdi_register+0x80/0xa0
[ 1341.041112][T31980]  ? __device_add_disk+0x50a/0x1210
[ 1341.046297][T31980]  bdi_register_owner+0x56/0xf0
[ 1341.051138][T31980]  __device_add_disk+0x583/0x1210
[ 1341.056155][T31980]  loop_add+0x554/0x710
[ 1341.060300][T31980]  loop_control_ioctl+0x465/0x600
[ 1341.065312][T31980]  ? loop_remove+0xa0/0xa0
[ 1341.069717][T31980]  do_vfs_ioctl+0x6d1/0x15b0
[ 1341.074298][T31980]  __x64_sys_ioctl+0xd4/0x110
[ 1341.078962][T31980]  do_syscall_64+0xcb/0x1c0
[ 1341.083464][T31980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1341.089434][T31980] RIP: 0033:0x7f6fdf247109
[ 1341.093839][T31980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1341.113619][T31980] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:11:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async, rerun: 32)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (rerun: 32)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="5803000028af8e9875cadc424ee6c3e38ceb59db26c93c8a12da2abe44035eaf68a13e9a22906bb17d91de8107b43a3bd0de16", @ANYRES16=r5, @ANYBLOB="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"], 0x358}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e23, @private=0xa010100}, {0xfaaa9b80f6e6a972, @multicast}, 0x8, {0x2, 0x4e23, @empty}, 'vxcan1\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1341.122021][T31980] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1341.130013][T31980] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1341.137982][T31980] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1341.145951][T31980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1341.154005][T31980] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1341.187886][T31980] ------------[ cut here ]------------
[ 1341.193459][T31980] WARNING: CPU: 1 PID: 31980 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1341.202553][T31980] Modules linked in:
[ 1341.206452][T31980] CPU: 1 PID: 31980 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1341.218147][T31980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1341.228216][T31980] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1341.234014][T31980] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1341.253696][T31980] RSP: 0018:ffff8881e8cc7ce8 EFLAGS: 00010246
[ 1341.259760][T31980] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1341.267732][T31980] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1341.275794][T31980] RBP: ffff8881ef1b6fa8 R08: ffffffff82114c4e R09: 0000000000000010
[ 1341.283789][T31980] R10: ffffffff84400000 R11: 1ffff1103edeb100 R12: dffffc0000000000
[ 1341.291757][T31980] R13: 1ffff1103a041e01 R14: 1ffff1103a041e9d R15: ffff8881d020f000
[ 1341.299758][T31980] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1341.308677][T31980] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1341.315340][T31980] CR2: 0000000000000000 CR3: 00000001ebbe9000 CR4: 00000000003406e0
[ 1341.323313][T31980] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1341.332669][T31980] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1341.340727][T31980] Call Trace:
[ 1341.344022][T31980]  loop_add+0x554/0x710
[ 1341.348181][T31980]  loop_control_ioctl+0x465/0x600
[ 1341.353207][T31980]  ? loop_remove+0xa0/0xa0
[ 1341.357610][T31980]  do_vfs_ioctl+0x6d1/0x15b0
[ 1341.362189][T31980]  __x64_sys_ioctl+0xd4/0x110
[ 1341.366855][T31980]  do_syscall_64+0xcb/0x1c0
[ 1341.371352][T31980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1341.377230][T31980] RIP: 0033:0x7f6fdf247109
[ 1341.381633][T31980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1341.401224][T31980] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1341.409715][T31980] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1341.417683][T31980] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1341.425643][T31980] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1341.434122][T31980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1341.442172][T31980] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1341.450284][T31980] ---[ end trace 0360cad814872665 ]---
02:11:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 60)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:54 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, 0x0, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb44f}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x81}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xcf}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1b7cf472}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x78}}, 0x4881)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)

02:11:54 executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x3, 0x0, 0x2, 0x9, 0x102, 0xffffffffffffffff, 0xb4ab, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={&(0x7f00000000c0)="eeba9d60f3401c028680190bde743b235b1b3382a897e2c1c3c881b333ef396c830c7a1b5f8b1202ec8313e0e0382401da6ff9ffa8a7cb7fb3fa8d6687050440b978040318390c913bec61b277eecdf3f29a2291054438581f09ed3d81007d977e562dc45de6c99aeef00a66b92548e9b73a4c9c94745fe91f774279e5502b94dd771defcd6d531240f79cbe78f93cf3f03c7237be", &(0x7f0000000000)=""/107, &(0x7f0000000180)="35c3cba3562745472fc70c582dde039f7e804d4a63f69b0dc4d22559fadcac32c0b74ccd73850fb53cdd1f6f9acb2c5e7be44f94c2ba65877201ba9be6231ba7e29530807c90062ef3461a870551eb65b7c6c159a44bcaa35c1942c828c32781e170cac55bec055637cd581d196e029b77552fc69c283e5cfcc7ae8bd3ecd8eabd3122ee6120abdc55f225b92c11c4348b2b2873fd834c1be6cdb7dc9b7041d840ded3de378b091552946eb1b5", &(0x7f0000000240)="b4708e1d69bfc25f573785623c1aff73659cd521ff86f50657ffc10ad57a2a0fecc6ec27842e1216fa66960b1b2322dd9b69d43b407a4c85324851eaeb92fa2cf58179b86a3e46722285d2bdc48d49b6", 0x7, r0, 0x4}, 0x38) (async, rerun: 64)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xc) (async)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000480)={r0, &(0x7f0000000380)="d5e2d651482de6df1841c70fecc8a665b549264216f8df1e9e6ac90a02044029e0b8070f6cd6a76c0ee5c035a6e55ac77e6e2952455f2e887de06ce449be36a72f4b988d9428831683e150dbaba49960ec952d1c8edf94cf3905d6c6b16b57aa2e58b25a8570173530322251556b46ea2227c12f7dfd712467f7e0cd5fb615b0234eee63d056b2caebd5248903c63c59912165374da0d3cb401ef3cb3c6c03f4d42c09398d6eae95ee7debf6f266e095be9b482ce293a139dd1dea9acf0fdcf8e51e3a07d02045bccc7bda2ff240"}, 0x20) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/meminfo\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/slabinfo\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async, rerun: 64)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="86d489ca", @ANYRES16=r2, @ANYBLOB="872c89d3c045871b79c56f78fa232d019315141d6f3e2a840c3af29ef766919065375572ca8a537109fd2f4f2e0a1068149f0700000000000000f89e96d6ea74662c4494abb1b7501b36eb88bb1947d2308c524cd55e"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0xc04434286f62ff87) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:54 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, 0x0, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb44f}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x81}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xcf}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1b7cf472}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x78}}, 0x4881)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, 0x0, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb44f}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x81}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xcf}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1b7cf472}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x78}}, 0x4881) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) (async)

02:11:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a0042, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.max\x00', 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000100)={{0x2, 0x4e21, @loopback}, {0x6, @multicast}, 0x28, {0x2, 0x4e20, @loopback}, 'vcan0\x00'})
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000040)={0x7, 0x0, 0x8}, 0xc)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$RTC_VL_READ(r1, 0x80047013, &(0x7f0000000180))
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:55 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x10da02, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x24008880)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r2)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000140)={0x300, r3, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}]}, @TIPC_NLA_BEARER={0x84, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'eth', 0x3a, 'dvmrp1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8}}}}, @TIPC_NLA_BEARER_PROP={0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x200}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'netpci0\x00'}}, @TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'syzkaller1\x00'}}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x84e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa03}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffc}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000000}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xffffffc7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x88d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfd5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdb52}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x98}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}]}, @TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5e3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x300}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$HIDIOCGRDESCSIZE(0xffffffffffffffff, 0x80044801, &(0x7f0000000000))

[ 1341.633615][T32035] FAULT_INJECTION: forcing a failure.
[ 1341.633615][T32035] name failslab, interval 1, probability 0, space 0, times 0
02:11:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x24, 0x0, 0x101, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x300}]}]}]}, 0x24}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x2c, r3, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040080}, 0x80000)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r5=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x6c, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x1}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x5236ddf9}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x2}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x31}]}, 0x6c}, 0x1, 0x0, 0x0, 0x2400c800}, 0x40000)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r6, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7ff}]}, 0x44}, 0x1, 0x0, 0x0, 0x15}, 0x20)
sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x84080}, 0x0)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r1)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r7, 0x0, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffffa}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4094}, 0x40000)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a0042, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.max\x00', 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000100)={{0x2, 0x4e21, @loopback}, {0x6, @multicast}, 0x28, {0x2, 0x4e20, @loopback}, 'vcan0\x00'})
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000040)={0x7, 0x0, 0x8}, 0xc)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$RTC_VL_READ(r1, 0x80047013, &(0x7f0000000180))
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a0042, 0x0) (async)
openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.max\x00', 0x2, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000100)={{0x2, 0x4e21, @loopback}, {0x6, @multicast}, 0x28, {0x2, 0x4e20, @loopback}, 'vcan0\x00'}) (async)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000040)={0x7, 0x0, 0x8}, 0xc) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$RTC_VL_READ(r1, 0x80047013, &(0x7f0000000180)) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:55 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x10da02, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 64)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x24008880) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r2)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000140)={0x300, r3, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}]}, @TIPC_NLA_BEARER={0x84, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'eth', 0x3a, 'dvmrp1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8}}}}, @TIPC_NLA_BEARER_PROP={0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x200}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'netpci0\x00'}}, @TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'syzkaller1\x00'}}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x84e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa03}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffc}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000000}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xffffffc7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x88d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfd5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdb52}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x98}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}]}, @TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5e3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x300}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$HIDIOCGRDESCSIZE(0xffffffffffffffff, 0x80044801, &(0x7f0000000000))

[ 1341.739781][T32035] CPU: 0 PID: 32035 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1341.751474][T32035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1341.761526][T32035] Call Trace:
[ 1341.764818][T32035]  dump_stack+0x18e/0x1d5
[ 1341.769145][T32035]  should_fail+0x604/0x770
[ 1341.773556][T32035]  ? __kernfs_new_node+0x8b/0x650
[ 1341.778566][T32035]  should_failslab+0x5/0x20
[ 1341.783060][T32035]  kmem_cache_alloc+0x24/0x210
[ 1341.787813][T32035]  __kernfs_new_node+0x8b/0x650
[ 1341.792661][T32035]  ? mutex_unlock+0x19/0x40
[ 1341.797155][T32035]  ? kernfs_add_one+0x4a3/0x5c0
[ 1341.802003][T32035]  kernfs_new_node+0x95/0x160
[ 1341.806670][T32035]  __kernfs_create_file+0x45/0x260
[ 1341.811858][T32035]  sysfs_add_file_mode_ns+0x292/0x340
[ 1341.817312][T32035]  sysfs_create_file_ns+0x140/0x200
[ 1341.822513][T32035]  device_add_attrs+0x2be/0x370
[ 1341.827358][T32035]  device_add+0x505/0xbc0
[ 1341.831678][T32035]  device_create_vargs+0x1b8/0x210
[ 1341.836781][T32035]  device_create+0x86/0xb0
[ 1341.841193][T32035]  bdi_register_va+0x89/0x5e0
[ 1341.845860][T32035]  bdi_register+0x80/0xa0
[ 1341.850194][T32035]  ? __device_add_disk+0x50a/0x1210
[ 1341.855394][T32035]  bdi_register_owner+0x56/0xf0
[ 1341.860252][T32035]  __device_add_disk+0x583/0x1210
[ 1341.865316][T32035]  loop_add+0x554/0x710
[ 1341.869467][T32035]  loop_control_ioctl+0x465/0x600
[ 1341.874497][T32035]  ? loop_remove+0xa0/0xa0
[ 1341.878912][T32035]  do_vfs_ioctl+0x6d1/0x15b0
[ 1341.883669][T32035]  __x64_sys_ioctl+0xd4/0x110
[ 1341.888333][T32035]  do_syscall_64+0xcb/0x1c0
[ 1341.892829][T32035]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1341.898796][T32035] RIP: 0033:0x7f6fdf247109
[ 1341.903203][T32035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1341.922981][T32035] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1341.931385][T32035] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1341.939345][T32035] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1341.947397][T32035] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1341.955366][T32035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1341.963331][T32035] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1342.001533][T32035] ------------[ cut here ]------------
[ 1342.007021][T32035] WARNING: CPU: 0 PID: 32035 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1342.016104][T32035] Modules linked in:
[ 1342.020006][T32035] CPU: 0 PID: 32035 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1342.031612][T32035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1342.041696][T32035] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1342.047490][T32035] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1342.067082][T32035] RSP: 0018:ffff8881ef50fce8 EFLAGS: 00010246
[ 1342.073144][T32035] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1342.081195][T32035] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1342.089158][T32035] RBP: ffff8881eb9f2298 R08: ffffffff82114c4e R09: 0000000000000010
[ 1342.097164][T32035] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1342.105221][T32035] R13: 1ffff11039f7e601 R14: 1ffff11039f7e69d R15: ffff8881cfbf3000
[ 1342.113257][T32035] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1342.122184][T32035] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1342.128758][T32035] CR2: 00007f72848cf058 CR3: 00000001d5211000 CR4: 00000000003406f0
[ 1342.136724][T32035] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1342.144959][T32035] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1342.153029][T32035] Call Trace:
[ 1342.156382][T32035]  loop_add+0x554/0x710
[ 1342.160534][T32035]  loop_control_ioctl+0x465/0x600
[ 1342.165782][T32035]  ? loop_remove+0xa0/0xa0
[ 1342.170313][T32035]  do_vfs_ioctl+0x6d1/0x15b0
[ 1342.175034][T32035]  __x64_sys_ioctl+0xd4/0x110
[ 1342.179751][T32035]  do_syscall_64+0xcb/0x1c0
[ 1342.184324][T32035]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1342.190307][T32035] RIP: 0033:0x7f6fdf247109
[ 1342.194715][T32035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1342.214578][T32035] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1342.223101][T32035] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1342.231076][T32035] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1342.239048][T32035] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
02:11:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 61)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:55 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x10da02, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, 0x0, 0x24008880) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r2)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000140)={0x300, r3, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}]}, @TIPC_NLA_BEARER={0x84, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'eth', 0x3a, 'dvmrp1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010101}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8}}}}, @TIPC_NLA_BEARER_PROP={0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x200}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'netpci0\x00'}}, @TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'syzkaller1\x00'}}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x84e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa03}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffc}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000000}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xffffffc7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x88d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfd5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdb52}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x98}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}]}, @TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5e3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x300}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
ioctl$HIDIOCGRDESCSIZE(0xffffffffffffffff, 0x80044801, &(0x7f0000000000)) (rerun: 32)

02:11:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x4a0042, 0x0) (async)
openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.max\x00', 0x2, 0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async, rerun: 64)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async, rerun: 64)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000100)={{0x2, 0x4e21, @loopback}, {0x6, @multicast}, 0x28, {0x2, 0x4e20, @loopback}, 'vcan0\x00'}) (async, rerun: 64)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000040)={0x7, 0x0, 0x8}, 0xc) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (rerun: 32)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$RTC_VL_READ(r1, 0x80047013, &(0x7f0000000180))
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (rerun: 64)

[ 1342.247019][T32035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.254988][T32035] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1342.263043][T32035] ---[ end trace 0360cad814872666 ]---
02:11:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:55 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, 0x0, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xb44f}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x81}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xcf}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1b7cf472}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x78}}, 0x4881)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)

02:11:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
read$hidraw(r1, &(0x7f0000000a80)=""/4096, 0x1000)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:55 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r2, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x114, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x64, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x981}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_SOCK={0x84, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffd39}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x38cc}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x34}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x440}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8080}, 0x4008000)

02:11:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x24, 0x0, 0x101, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x300}]}]}]}, 0x24}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x2c, r3, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040080}, 0x80000)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r5=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x6c, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x1}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x5236ddf9}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x2}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x31}]}, 0x6c}, 0x1, 0x0, 0x0, 0x2400c800}, 0x40000) (async)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r6, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7ff}]}, 0x44}, 0x1, 0x0, 0x0, 0x15}, 0x20) (async)
sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x84080}, 0x0) (async)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r1)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r7, 0x0, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffffa}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4094}, 0x40000) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1342.334243][T32096] FAULT_INJECTION: forcing a failure.
[ 1342.334243][T32096] name failslab, interval 1, probability 0, space 0, times 0
02:11:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1342.404441][T32096] CPU: 0 PID: 32096 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1342.416077][T32096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1342.426123][T32096] Call Trace:
[ 1342.429499][T32096]  dump_stack+0x18e/0x1d5
[ 1342.433827][T32096]  should_fail+0x604/0x770
[ 1342.438240][T32096]  ? __kernfs_new_node+0x8b/0x650
[ 1342.443257][T32096]  should_failslab+0x5/0x20
[ 1342.447748][T32096]  kmem_cache_alloc+0x24/0x210
[ 1342.452511][T32096]  __kernfs_new_node+0x8b/0x650
[ 1342.457348][T32096]  ? mutex_lock+0x6c/0xc0
[ 1342.461662][T32096]  ? kernfs_activate+0x3fc/0x420
[ 1342.466593][T32096]  kernfs_new_node+0x95/0x160
[ 1342.471261][T32096]  __kernfs_create_file+0x45/0x260
[ 1342.476359][T32096]  sysfs_add_file_mode_ns+0x292/0x340
[ 1342.481725][T32096]  sysfs_merge_group+0x199/0x350
[ 1342.486738][T32096]  dpm_sysfs_add+0xc0/0x260
[ 1342.491232][T32096]  device_add+0x547/0xbc0
[ 1342.495555][T32096]  device_create_vargs+0x1b8/0x210
[ 1342.500661][T32096]  device_create+0x86/0xb0
[ 1342.505064][T32096]  bdi_register_va+0x89/0x5e0
[ 1342.509727][T32096]  bdi_register+0x80/0xa0
[ 1342.514044][T32096]  ? __device_add_disk+0x50a/0x1210
[ 1342.519227][T32096]  bdi_register_owner+0x56/0xf0
[ 1342.524067][T32096]  __device_add_disk+0x583/0x1210
[ 1342.529082][T32096]  loop_add+0x554/0x710
[ 1342.533225][T32096]  loop_control_ioctl+0x465/0x600
[ 1342.538243][T32096]  ? loop_remove+0xa0/0xa0
[ 1342.542644][T32096]  do_vfs_ioctl+0x6d1/0x15b0
[ 1342.547228][T32096]  __x64_sys_ioctl+0xd4/0x110
[ 1342.552939][T32096]  do_syscall_64+0xcb/0x1c0
[ 1342.557525][T32096]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1342.563426][T32096] RIP: 0033:0x7f6fdf247109
[ 1342.567872][T32096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1342.587554][T32096] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1342.595958][T32096] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
02:11:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1342.603924][T32096] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1342.612082][T32096] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1342.620051][T32096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.628023][T32096] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1342.659279][T32096] ------------[ cut here ]------------
[ 1342.664775][T32096] WARNING: CPU: 0 PID: 32096 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1342.673865][T32096] Modules linked in:
[ 1342.677766][T32096] CPU: 0 PID: 32096 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1342.689374][T32096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1342.699434][T32096] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1342.705230][T32096] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1342.724911][T32096] RSP: 0018:ffff8881ac16fce8 EFLAGS: 00010246
[ 1342.730970][T32096] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1342.738940][T32096] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1342.747009][T32096] RBP: ffff8881eb9f1178 R08: ffffffff82114c4e R09: 0000000000000010
[ 1342.754990][T32096] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1342.762954][T32096] R13: 1ffff1103e028401 R14: 1ffff1103e02849d R15: ffff8881f0142000
[ 1342.770918][T32096] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1342.779924][T32096] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1342.786498][T32096] CR2: 00007ffed7377bd8 CR3: 00000001d1b02000 CR4: 00000000003406f0
[ 1342.794464][T32096] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1342.802513][T32096] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1342.810476][T32096] Call Trace:
[ 1342.813766][T32096]  loop_add+0x554/0x710
[ 1342.817914][T32096]  loop_control_ioctl+0x465/0x600
[ 1342.822929][T32096]  ? loop_remove+0xa0/0xa0
[ 1342.827334][T32096]  do_vfs_ioctl+0x6d1/0x15b0
[ 1342.831924][T32096]  __x64_sys_ioctl+0xd4/0x110
[ 1342.836596][T32096]  do_syscall_64+0xcb/0x1c0
[ 1342.841088][T32096]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1342.846966][T32096] RIP: 0033:0x7f6fdf247109
[ 1342.851376][T32096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1342.870970][T32096] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1342.879370][T32096] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1342.887332][T32096] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1342.895294][T32096] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1342.903257][T32096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.911216][T32096] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1342.919182][T32096] ---[ end trace 0360cad814872667 ]---
02:11:56 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 62)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:56 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRESOCT=r2], 0xe8}, 0x1, 0x0, 0x0, 0xc840}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)

02:11:56 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
read$hidraw(r1, &(0x7f0000000a80)=""/4096, 0x1000)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
read$hidraw(r1, &(0x7f0000000a80)=""/4096, 0x1000) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:56 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async, rerun: 32)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r2, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x114, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x64, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x981}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_SOCK={0x84, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffd39}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x38cc}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x34}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x440}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8080}, 0x4008000)

02:11:56 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x24, 0x0, 0x101, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x300}]}]}]}, 0x24}}, 0x0) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x2c, r3, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040080}, 0x80000) (async)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r5=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000180)=@raw=[@jmp], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x6c, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x1}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x5236ddf9}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x2}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x31}]}, 0x6c}, 0x1, 0x0, 0x0, 0x2400c800}, 0x40000)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r6, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7ff}]}, 0x44}, 0x1, 0x0, 0x0, 0x15}, 0x20) (async)
sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x84080}, 0x0) (async)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r1)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r7, 0x0, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffffa}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7fff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4094}, 0x40000)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:56 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRESOCT=r2], 0xe8}, 0x1, 0x0, 0x0, 0xc840}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRESOCT=r2], 0xe8}, 0x1, 0x0, 0x0, 0xc840}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3) (async)

02:11:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:56 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="698bd200", @ANYRES16=0x0, @ANYBLOB="040128bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:56 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
read$hidraw(r1, &(0x7f0000000a80)=""/4096, 0x1000) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) (async, rerun: 32)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (rerun: 32)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async, rerun: 32)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:56 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r2, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x114, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x64, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x981}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_SOCK={0x84, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffd39}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x38cc}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x34}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x440}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8080}, 0x4008000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r2, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x114, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x64, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x981}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_SOCK={0x84, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffd39}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x38cc}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x34}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x440}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8080}, 0x4008000) (async)

[ 1343.147889][T32138] FAULT_INJECTION: forcing a failure.
[ 1343.147889][T32138] name failslab, interval 1, probability 0, space 0, times 0
[ 1343.215880][T32138] CPU: 0 PID: 32138 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1343.227531][T32138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1343.237590][T32138] Call Trace:
[ 1343.240882][T32138]  dump_stack+0x18e/0x1d5
[ 1343.245210][T32138]  should_fail+0x604/0x770
[ 1343.249619][T32138]  ? mutex_unlock+0x19/0x40
[ 1343.254118][T32138]  ? __kernfs_new_node+0x8b/0x650
[ 1343.259138][T32138]  should_failslab+0x5/0x20
[ 1343.263633][T32138]  kmem_cache_alloc+0x24/0x210
[ 1343.268434][T32138]  __kernfs_new_node+0x8b/0x650
[ 1343.273278][T32138]  ? mutex_lock+0x6c/0xc0
[ 1343.277598][T32138]  kernfs_new_node+0x95/0x160
[ 1343.282266][T32138]  __kernfs_create_file+0x45/0x260
[ 1343.287373][T32138]  sysfs_add_file_mode_ns+0x292/0x340
[ 1343.292743][T32138]  sysfs_merge_group+0x199/0x350
[ 1343.297773][T32138]  dpm_sysfs_add+0xc0/0x260
[ 1343.302274][T32138]  device_add+0x547/0xbc0
[ 1343.306598][T32138]  device_create_vargs+0x1b8/0x210
[ 1343.311698][T32138]  device_create+0x86/0xb0
[ 1343.316281][T32138]  bdi_register_va+0x89/0x5e0
[ 1343.320948][T32138]  bdi_register+0x80/0xa0
[ 1343.325267][T32138]  ? __device_add_disk+0x50a/0x1210
[ 1343.330546][T32138]  bdi_register_owner+0x56/0xf0
[ 1343.335387][T32138]  __device_add_disk+0x583/0x1210
[ 1343.340509][T32138]  loop_add+0x554/0x710
[ 1343.344670][T32138]  loop_control_ioctl+0x465/0x600
[ 1343.349790][T32138]  ? loop_remove+0xa0/0xa0
[ 1343.354196][T32138]  do_vfs_ioctl+0x6d1/0x15b0
[ 1343.358802][T32138]  __x64_sys_ioctl+0xd4/0x110
[ 1343.363467][T32138]  do_syscall_64+0xcb/0x1c0
[ 1343.367974][T32138]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1343.373938][T32138] RIP: 0033:0x7f6fdf247109
[ 1343.378346][T32138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1343.398034][T32138] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1343.406443][T32138] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1343.414405][T32138] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1343.422366][T32138] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1343.430328][T32138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1343.438293][T32138] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1343.457426][T32138] ------------[ cut here ]------------
[ 1343.462909][T32138] WARNING: CPU: 0 PID: 32138 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1343.471994][T32138] Modules linked in:
[ 1343.475894][T32138] CPU: 0 PID: 32138 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1343.487600][T32138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1343.497664][T32138] RIP: 0010:__device_add_disk+0xe8c/0x1210
[ 1343.503462][T32138] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1343.523077][T32138] RSP: 0018:ffff8881e67b7ce8 EFLAGS: 00010246
[ 1343.534692][T32138] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1343.542668][T32138] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1343.550647][T32138] RBP: ffff8881eb9f1a08 R08: ffffffff82114c4e R09: 0000000000000010
[ 1343.558617][T32138] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1343.566577][T32138] R13: 1ffff1103a4fc801 R14: 1ffff1103a4fc89d R15: ffff8881d27e4000
[ 1343.574543][T32138] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1343.583463][T32138] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1343.590039][T32138] CR2: 00007fb0f7533dc0 CR3: 00000001f0571000 CR4: 00000000003406f0
[ 1343.598103][T32138] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1343.606064][T32138] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1343.614028][T32138] Call Trace:
[ 1343.617312][T32138]  loop_add+0x554/0x710
[ 1343.621894][T32138]  loop_control_ioctl+0x465/0x600
[ 1343.626911][T32138]  ? loop_remove+0xa0/0xa0
[ 1343.631315][T32138]  do_vfs_ioctl+0x6d1/0x15b0
[ 1343.635891][T32138]  __x64_sys_ioctl+0xd4/0x110
[ 1343.640650][T32138]  do_syscall_64+0xcb/0x1c0
[ 1343.645150][T32138]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1343.651029][T32138] RIP: 0033:0x7f6fdf247109
[ 1343.655519][T32138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1343.675123][T32138] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1343.683550][T32138] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1343.691513][T32138] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1343.699581][T32138] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1343.707549][T32138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:57 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 63)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x21, 0x80000, 0x1)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)={0x14, r5, 0x100, 0x70bd2c, 0x25dfdbfe}, 0x14}}, 0x801)
r7 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x400100)
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="29ab2886", @ANYRES32=r5, @ANYBLOB="00032bbd7000fddbdf2502000000060028000300000008003a0009000000080034000600000005002a000000000008003c006703000005003500400000000500380000000000050038000000000005002f0000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
read$hidraw(r7, &(0x7f00000000c0)=""/113, 0x71)
ioctl$HIDIOCGRAWPHYS(r7, 0x80404805, &(0x7f0000000140))
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:57 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRESOCT=r2], 0xe8}, 0x1, 0x0, 0x0, 0xc840}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRESOCT=r2], 0xe8}, 0x1, 0x0, 0x0, 0xc840}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r3) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3) (async)

02:11:57 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x40054)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1343.715515][T32138] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1343.723489][T32138] ---[ end trace 0360cad814872668 ]---
02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x40054)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x40054) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:57 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="698bd200", @ANYRES16=0x0, @ANYBLOB="040128bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:57 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xb)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:57 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async, rerun: 64)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
r6 = socket(0x21, 0x80000, 0x1)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)={0x14, r5, 0x100, 0x70bd2c, 0x25dfdbfe}, 0x14}}, 0x801) (async)
r7 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x400100)
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="29ab2886", @ANYRES32=r5, @ANYBLOB="00032bbd7000fddbdf2502000000060028000300000008003a0009000000080034000600000005002a000000000008003c006703000005003500400000000500380000000000050038000000000005002f0000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) (async, rerun: 64)
read$hidraw(r7, &(0x7f00000000c0)=""/113, 0x71) (rerun: 64)
ioctl$HIDIOCGRAWPHYS(r7, 0x80404805, &(0x7f0000000140)) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (rerun: 64)

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1343.822236][T32211] FAULT_INJECTION: forcing a failure.
[ 1343.822236][T32211] name failslab, interval 1, probability 0, space 0, times 0
[ 1343.874380][T32211] CPU: 0 PID: 32211 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1343.886101][T32211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1343.896232][T32211] Call Trace:
[ 1343.899517][T32211]  dump_stack+0x18e/0x1d5
[ 1343.903840][T32211]  should_fail+0x604/0x770
[ 1343.908282][T32211]  ? __kernfs_new_node+0x8b/0x650
[ 1343.913300][T32211]  should_failslab+0x5/0x20
[ 1343.917794][T32211]  kmem_cache_alloc+0x24/0x210
[ 1343.922544][T32211]  __kernfs_new_node+0x8b/0x650
[ 1343.927388][T32211]  ? mutex_lock+0x6c/0xc0
[ 1343.931711][T32211]  ? kernfs_activate+0x3fc/0x420
[ 1343.936640][T32211]  kernfs_new_node+0x95/0x160
[ 1343.941312][T32211]  __kernfs_create_file+0x45/0x260
[ 1343.946410][T32211]  sysfs_add_file_mode_ns+0x292/0x340
[ 1343.951875][T32211]  sysfs_merge_group+0x199/0x350
[ 1343.956811][T32211]  dpm_sysfs_add+0xc0/0x260
[ 1343.961312][T32211]  device_add+0x547/0xbc0
[ 1343.965633][T32211]  device_create_vargs+0x1b8/0x210
[ 1343.970739][T32211]  device_create+0x86/0xb0
[ 1343.975147][T32211]  bdi_register_va+0x89/0x5e0
[ 1343.979904][T32211]  bdi_register+0x80/0xa0
[ 1343.984314][T32211]  ? __device_add_disk+0x50a/0x1210
[ 1343.989536][T32211]  bdi_register_owner+0x56/0xf0
[ 1343.994379][T32211]  __device_add_disk+0x583/0x1210
[ 1343.999396][T32211]  loop_add+0x554/0x710
[ 1344.003546][T32211]  loop_control_ioctl+0x465/0x600
[ 1344.008654][T32211]  ? loop_remove+0xa0/0xa0
[ 1344.013059][T32211]  do_vfs_ioctl+0x6d1/0x15b0
[ 1344.017654][T32211]  __x64_sys_ioctl+0xd4/0x110
[ 1344.022320][T32211]  do_syscall_64+0xcb/0x1c0
[ 1344.026819][T32211]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1344.032693][T32211] RIP: 0033:0x7f6fdf247109
[ 1344.037101][T32211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1344.060446][T32211] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1344.068936][T32211] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1344.076902][T32211] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1344.084865][T32211] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1344.092825][T32211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1344.100790][T32211] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1344.121901][T32211] ------------[ cut here ]------------
[ 1344.127443][T32211] WARNING: CPU: 0 PID: 32211 at block/genhd.c:742 __device_add_disk+0xe8c/0x1210
[ 1344.136802][T32211] Modules linked in:
[ 1344.140696][T32211] CPU: 0 PID: 32211 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1344.152299][T32211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1344.162355][T32211] RIP: 0010:__device_add_disk+0xe8c/0x1210
02:11:57 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 64)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x40054) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="698bd200", @ANYRES16=0x0, @ANYBLOB="040128bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="698bd200", @ANYRES16=0x0, @ANYBLOB="040128bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

[ 1344.168152][T32211] Code: ff e8 38 f8 4e ff 0f 0b e9 98 fe ff ff e8 2c f8 4e ff 0f 0b e9 a5 f2 ff ff e8 20 f8 4e ff 0f 0b e9 5e f8 ff ff e8 14 f8 4e ff <0f> 0b e9 08 f7 ff ff e8 08 f8 4e ff e9 92 fd ff ff 48 8d 4c 24 44
[ 1344.187744][T32211] RSP: 0018:ffff8881cd9f7ce8 EFLAGS: 00010246
[ 1344.194024][T32211] RAX: ffffffff8211554c RBX: 00000000fffffff4 RCX: 0000000000040000
[ 1344.202087][T32211] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1344.210060][T32211] RBP: ffff8881eb9f55f8 R08: ffffffff82114c4e R09: 0000000000000010
02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:57 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x21, 0x80000, 0x1)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)={0x14, r5, 0x100, 0x70bd2c, 0x25dfdbfe}, 0x14}}, 0x801)
r7 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x400100)
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="29ab2886", @ANYRES32=r5, @ANYBLOB="00032bbd7000fddbdf2502000000060028000300000008003a0009000000080034000600000005002a000000000008003c006703000005003500400000000500380000000000050038000000000005002f0000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
read$hidraw(r7, &(0x7f00000000c0)=""/113, 0x71)
ioctl$HIDIOCGRAWPHYS(r7, 0x80404805, &(0x7f0000000140))
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
socket(0x21, 0x80000, 0x1) (async)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)={0x14, r5, 0x100, 0x70bd2c, 0x25dfdbfe}, 0x14}}, 0x801) (async)
syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x400100) (async)
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="29ab2886", @ANYRES32=r5, @ANYBLOB="00032bbd7000fddbdf2502000000060028000300000008003a0009000000080034000600000005002a000000000008003c006703000005003500400000000500380000000000050038000000000005002f0000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) (async)
read$hidraw(r7, &(0x7f00000000c0)=""/113, 0x71) (async)
ioctl$HIDIOCGRAWPHYS(r7, 0x80404805, &(0x7f0000000140)) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:11:57 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xb)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:57 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = getpgid(0x0)
syz_open_procfs$namespace(r1, 0x0)
syz_open_procfs$namespace(r1, &(0x7f0000000000)='ns/time_for_children\x00')
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="0500000000000000c47bbb35"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000180)={@empty, 0x1, 0x0, 0x30, 0x0, [{@local}, {}, {@initdev}]}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000000c0)={'syztnl0\x00', r4, 0x2f, 0x81, 0xff, 0x7, 0x1c, @mcast1, @dev={0xfe, 0x80, '\x00', 0x41}, 0x8000, 0x1, 0x5, 0x7}})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)

02:11:57 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket$inet(0x2, 0x6, 0x84ee)
getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x0, [0x7, 0xfffffff7, 0x80000001]}, &(0x7f00000000c0)=0x44)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1344.218023][T32211] R10: ffffffff84400000 R11: 1ffff1103edcb100 R12: dffffc0000000000
[ 1344.226167][T32211] R13: 1ffff11039ec4a01 R14: 1ffff11039ec4a9d R15: ffff8881cf625000
[ 1344.234220][T32211] FS:  00007f6fde3bd700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1344.243139][T32211] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1344.249806][T32211] CR2: 00007fb0f8567058 CR3: 00000001f09fa000 CR4: 00000000003406f0
[ 1344.257862][T32211] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1344.265827][T32211] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1344.273787][T32211] Call Trace:
[ 1344.277076][T32211]  loop_add+0x554/0x710
[ 1344.281224][T32211]  loop_control_ioctl+0x465/0x600
[ 1344.286244][T32211]  ? loop_remove+0xa0/0xa0
[ 1344.290650][T32211]  do_vfs_ioctl+0x6d1/0x15b0
[ 1344.295231][T32211]  __x64_sys_ioctl+0xd4/0x110
[ 1344.299897][T32211]  do_syscall_64+0xcb/0x1c0
[ 1344.304395][T32211]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1344.310283][T32211] RIP: 0033:0x7f6fdf247109
[ 1344.314687][T32211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1344.334282][T32211] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1344.342684][T32211] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1344.350658][T32211] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1344.358711][T32211] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1344.366676][T32211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1344.374657][T32211] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1344.382623][T32211] ---[ end trace 0360cad814872669 ]---
[ 1344.487255][T32265] FAULT_INJECTION: forcing a failure.
[ 1344.487255][T32265] name failslab, interval 1, probability 0, space 0, times 0
[ 1344.561449][T32265] CPU: 1 PID: 32265 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1344.573085][T32265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1344.583129][T32265] Call Trace:
[ 1344.586430][T32265]  dump_stack+0x18e/0x1d5
[ 1344.590995][T32265]  should_fail+0x604/0x770
[ 1344.595511][T32265]  ? kobject_uevent_env+0x26d/0x700
[ 1344.600696][T32265]  should_failslab+0x5/0x20
[ 1344.605190][T32265]  kmem_cache_alloc_trace+0x28/0x240
[ 1344.610460][T32265]  ? dev_uevent_filter+0xb0/0xb0
[ 1344.615381][T32265]  kobject_uevent_env+0x26d/0x700
[ 1344.620402][T32265]  device_add+0x7a7/0xbc0
[ 1344.624721][T32265]  device_create_vargs+0x1b8/0x210
[ 1344.629822][T32265]  device_create+0x86/0xb0
[ 1344.634328][T32265]  bdi_register_va+0x89/0x5e0
[ 1344.638996][T32265]  bdi_register+0x80/0xa0
[ 1344.643396][T32265]  ? __device_add_disk+0x50a/0x1210
[ 1344.648583][T32265]  bdi_register_owner+0x56/0xf0
[ 1344.653422][T32265]  __device_add_disk+0x583/0x1210
02:11:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 65)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r6, @ANYBLOB="63e83badfdacf652a033672497214beedfc017757283f13645006be220380c5ed552a6f74a9f5861f30fc8ccec4530dc08fc47f81e32347bba26565584c7d953c527958ee7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x374, r6, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}]}, @TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xf1, 0x3, "8fd88ec6b15d3d710be55de2041842dd315b9e18d4a3b64c011a98ab7e5a4abfa43726635ebf953fec5f69871c7f08f0e1f206d23519539be5f006062b6466574f55a83217847de74cdb036dc200db6096fb0cd880a8ad73f9d37b76204724c26418bbaa3c8119bdfd4ff4f9e9d6b6bd6c890e4e793c2a14618764d0bc51d844a76c2fcc31dc594e80e7190537c5595fa32effa10f1db513d67f64b5ad7df77389711a78e4e07193a6fb3117a7f7760ddfcf93ee02f1ede65bbb95282a7b738c8d4d2a04f20fa4f5aac6c0e44ea65cb6417f692d970ff1baf5c135d7d12a06270d5110f5e4db753f82ea4e45e9"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x4, @private0, 0x5}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x20, @private1={0xfc, 0x1, '\x00', 0x1}, 0xff}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x480, @mcast2}}}}]}, @TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_LINK={0x118, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4a2275c5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffc}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9aea}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x374}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1344.658440][T32265]  loop_add+0x554/0x710
[ 1344.662583][T32265]  loop_control_ioctl+0x465/0x600
[ 1344.667599][T32265]  ? loop_remove+0xa0/0xa0
[ 1344.672109][T32265]  do_vfs_ioctl+0x6d1/0x15b0
[ 1344.676694][T32265]  __x64_sys_ioctl+0xd4/0x110
[ 1344.681358][T32265]  do_syscall_64+0xcb/0x1c0
[ 1344.685945][T32265]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1344.691817][T32265] RIP: 0033:0x7f6fdf247109
[ 1344.696223][T32265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1344.715819][T32265] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1344.724220][T32265] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1344.732266][T32265] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1344.740225][T32265] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1344.748184][T32265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1344.756161][T32265] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
r1 = socket$inet(0x2, 0x6, 0x84ee)
getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x0, [0x7, 0xfffffff7, 0x80000001]}, &(0x7f00000000c0)=0x44) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:58 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = getpgid(0x0)
syz_open_procfs$namespace(r1, 0x0)
syz_open_procfs$namespace(r1, &(0x7f0000000000)='ns/time_for_children\x00')
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="0500000000000000c47bbb35"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000180)={@empty, 0x1, 0x0, 0x30, 0x0, [{@local}, {}, {@initdev}]}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000000c0)={'syztnl0\x00', r4, 0x2f, 0x81, 0xff, 0x7, 0x1c, @mcast1, @dev={0xfe, 0x80, '\x00', 0x41}, 0x8000, 0x1, 0x5, 0x7}})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
getpgid(0x0) (async)
syz_open_procfs$namespace(r1, 0x0) (async)
syz_open_procfs$namespace(r1, &(0x7f0000000000)='ns/time_for_children\x00') (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00'}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="0500000000000000c47bbb35"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000180)={@empty, 0x1, 0x0, 0x30, 0x0, [{@local}, {}, {@initdev}]}}) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000000c0)={'syztnl0\x00', r4, 0x2f, 0x81, 0xff, 0x7, 0x1c, @mcast1, @dev={0xfe, 0x80, '\x00', 0x41}, 0x8000, 0x1, 0x5, 0x7}}) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)

02:11:58 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xb) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1344.853665][T32324] FAULT_INJECTION: forcing a failure.
[ 1344.853665][T32324] name failslab, interval 1, probability 0, space 0, times 0
[ 1344.912879][T32324] CPU: 0 PID: 32324 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1344.924517][T32324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1344.934568][T32324] Call Trace:
[ 1344.937866][T32324]  dump_stack+0x18e/0x1d5
[ 1344.942186][T32324]  should_fail+0x604/0x770
[ 1344.946593][T32324]  ? kobject_get_path+0xbb/0x1a0
[ 1344.951527][T32324]  should_failslab+0x5/0x20
[ 1344.956051][T32324]  __kmalloc+0x51/0x2b0
[ 1344.960199][T32324]  kobject_get_path+0xbb/0x1a0
[ 1344.964951][T32324]  kobject_uevent_env+0x284/0x700
[ 1344.969981][T32324]  device_add+0x7a7/0xbc0
[ 1344.974298][T32324]  device_create_vargs+0x1b8/0x210
[ 1344.979399][T32324]  device_create+0x86/0xb0
[ 1344.983809][T32324]  bdi_register_va+0x89/0x5e0
[ 1344.988475][T32324]  bdi_register+0x80/0xa0
[ 1344.992802][T32324]  ? __device_add_disk+0x50a/0x1210
[ 1344.997995][T32324]  bdi_register_owner+0x56/0xf0
[ 1345.002922][T32324]  __device_add_disk+0x583/0x1210
[ 1345.008499][T32324]  loop_add+0x554/0x710
[ 1345.012748][T32324]  loop_control_ioctl+0x465/0x600
[ 1345.017850][T32324]  ? loop_remove+0xa0/0xa0
[ 1345.022257][T32324]  do_vfs_ioctl+0x6d1/0x15b0
[ 1345.026842][T32324]  __x64_sys_ioctl+0xd4/0x110
[ 1345.031613][T32324]  do_syscall_64+0xcb/0x1c0
[ 1345.036116][T32324]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1345.042006][T32324] RIP: 0033:0x7f6fdf247109
[ 1345.046417][T32324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1345.066101][T32324] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1345.074514][T32324] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1345.082478][T32324] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1345.090443][T32324] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1345.098494][T32324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = getpgid(0x0)
syz_open_procfs$namespace(r1, 0x0) (async)
syz_open_procfs$namespace(r1, &(0x7f0000000000)='ns/time_for_children\x00')
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000480)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="0500000000000000c47bbb35"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000180)={@empty, 0x1, 0x0, 0x30, 0x0, [{@local}, {}, {@initdev}]}}) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000000c0)={'syztnl0\x00', r4, 0x2f, 0x81, 0xff, 0x7, 0x1c, @mcast1, @dev={0xfe, 0x80, '\x00', 0x41}, 0x8000, 0x1, 0x5, 0x7}}) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$pppl2tp(0x18, 0x1, 0x1)

02:11:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 66)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r6, @ANYBLOB="63e83badfdacf652a033672497214beedfc017757283f13645006be220380c5ed552a6f74a9f5861f30fc8ccec4530dc08fc47f81e32347bba26565584c7d953c527958ee7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x374, r6, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}]}, @TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xf1, 0x3, "8fd88ec6b15d3d710be55de2041842dd315b9e18d4a3b64c011a98ab7e5a4abfa43726635ebf953fec5f69871c7f08f0e1f206d23519539be5f006062b6466574f55a83217847de74cdb036dc200db6096fb0cd880a8ad73f9d37b76204724c26418bbaa3c8119bdfd4ff4f9e9d6b6bd6c890e4e793c2a14618764d0bc51d844a76c2fcc31dc594e80e7190537c5595fa32effa10f1db513d67f64b5ad7df77389711a78e4e07193a6fb3117a7f7760ddfcf93ee02f1ede65bbb95282a7b738c8d4d2a04f20fa4f5aac6c0e44ea65cb6417f692d970ff1baf5c135d7d12a06270d5110f5e4db753f82ea4e45e9"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x4, @private0, 0x5}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x20, @private1={0xfc, 0x1, '\x00', 0x1}, 0xff}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x480, @mcast2}}}}]}, @TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_LINK={0x118, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4a2275c5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffc}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9aea}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x374}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r6, @ANYBLOB="63e83badfdacf652a033672497214beedfc017757283f13645006be220380c5ed552a6f74a9f5861f30fc8ccec4530dc08fc47f81e32347bba26565584c7d953c527958ee7"], 0xe8}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x374, r6, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}]}, @TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xf1, 0x3, "8fd88ec6b15d3d710be55de2041842dd315b9e18d4a3b64c011a98ab7e5a4abfa43726635ebf953fec5f69871c7f08f0e1f206d23519539be5f006062b6466574f55a83217847de74cdb036dc200db6096fb0cd880a8ad73f9d37b76204724c26418bbaa3c8119bdfd4ff4f9e9d6b6bd6c890e4e793c2a14618764d0bc51d844a76c2fcc31dc594e80e7190537c5595fa32effa10f1db513d67f64b5ad7df77389711a78e4e07193a6fb3117a7f7760ddfcf93ee02f1ede65bbb95282a7b738c8d4d2a04f20fa4f5aac6c0e44ea65cb6417f692d970ff1baf5c135d7d12a06270d5110f5e4db753f82ea4e45e9"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x4, @private0, 0x5}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x20, @private1={0xfc, 0x1, '\x00', 0x1}, 0xff}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x480, @mcast2}}}}]}, @TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_LINK={0x118, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4a2275c5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffc}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9aea}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x374}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) (async)

02:11:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = socket$inet(0x2, 0x6, 0x84ee)
getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x0, [0x7, 0xfffffff7, 0x80000001]}, &(0x7f00000000c0)=0x44)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
socket$inet(0x2, 0x6, 0x84ee) (async)
getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x0, [0x7, 0xfffffff7, 0x80000001]}, &(0x7f00000000c0)=0x44) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:11:58 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0xe040, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/crypto\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x0, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x815}, 0x1)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000040)={0x89, 0x17, 0x6, 0xb, 0x7, 0x7fffffff, 0x5, 0x5d, 0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:58 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r2, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x35e}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x67b}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x40)

[ 1345.106738][T32324] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffd7})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async, rerun: 64)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r6, @ANYBLOB="63e83badfdacf652a033672497214beedfc017757283f13645006be220380c5ed552a6f74a9f5861f30fc8ccec4530dc08fc47f81e32347bba26565584c7d953c527958ee7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x374, r6, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}]}, @TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xf1, 0x3, "8fd88ec6b15d3d710be55de2041842dd315b9e18d4a3b64c011a98ab7e5a4abfa43726635ebf953fec5f69871c7f08f0e1f206d23519539be5f006062b6466574f55a83217847de74cdb036dc200db6096fb0cd880a8ad73f9d37b76204724c26418bbaa3c8119bdfd4ff4f9e9d6b6bd6c890e4e793c2a14618764d0bc51d844a76c2fcc31dc594e80e7190537c5595fa32effa10f1db513d67f64b5ad7df77389711a78e4e07193a6fb3117a7f7760ddfcf93ee02f1ede65bbb95282a7b738c8d4d2a04f20fa4f5aac6c0e44ea65cb6417f692d970ff1baf5c135d7d12a06270d5110f5e4db753f82ea4e45e9"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x4, @private0, 0x5}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x20, @private1={0xfc, 0x1, '\x00', 0x1}, 0xff}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x480, @mcast2}}}}]}, @TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_LINK={0x118, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4a2275c5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffc}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9aea}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x374}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff0})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1345.255873][T32379] FAULT_INJECTION: forcing a failure.
[ 1345.255873][T32379] name failslab, interval 1, probability 0, space 0, times 0
[ 1345.308624][T32379] CPU: 1 PID: 32379 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1345.320284][T32379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1345.330337][T32379] Call Trace:
[ 1345.333631][T32379]  dump_stack+0x18e/0x1d5
[ 1345.337960][T32379]  should_fail+0x604/0x770
[ 1345.342402][T32379]  ? kobject_get_path+0xbb/0x1a0
[ 1345.347419][T32379]  should_failslab+0x5/0x20
[ 1345.352046][T32379]  __kmalloc+0x51/0x2b0
[ 1345.356203][T32379]  kobject_get_path+0xbb/0x1a0
[ 1345.361054][T32379]  kobject_uevent_env+0x284/0x700
[ 1345.366076][T32379]  device_add+0x7a7/0xbc0
[ 1345.370408][T32379]  device_create_vargs+0x1b8/0x210
[ 1345.375511][T32379]  device_create+0x86/0xb0
[ 1345.379928][T32379]  bdi_register_va+0x89/0x5e0
[ 1345.384713][T32379]  bdi_register+0x80/0xa0
[ 1345.389043][T32379]  ? __device_add_disk+0x50a/0x1210
[ 1345.394233][T32379]  bdi_register_owner+0x56/0xf0
[ 1345.399072][T32379]  __device_add_disk+0x583/0x1210
[ 1345.404096][T32379]  loop_add+0x554/0x710
[ 1345.408362][T32379]  loop_control_ioctl+0x465/0x600
[ 1345.413390][T32379]  ? loop_remove+0xa0/0xa0
[ 1345.417798][T32379]  do_vfs_ioctl+0x6d1/0x15b0
[ 1345.422387][T32379]  __x64_sys_ioctl+0xd4/0x110
[ 1345.427060][T32379]  do_syscall_64+0xcb/0x1c0
[ 1345.431561][T32379]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1345.437484][T32379] RIP: 0033:0x7f6fdf247109
[ 1345.441896][T32379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1345.461577][T32379] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1345.470075][T32379] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1345.478037][T32379] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1345.486038][T32379] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1345.494183][T32379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r2)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x1, 0x4)

02:11:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1345.502236][T32379] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 67)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r2, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x35e}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x67b}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x40)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0xe040, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/crypto\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x0, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x815}, 0x1) (async)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3) (async, rerun: 64)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000040)={0x89, 0x17, 0x6, 0xb, 0x7, 0x7fffffff, 0x5, 0x5d, 0xffffffffffffffff}) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={0x1, &(0x7f00000000c0)="c051df3bee30a3a2368fce6e34f167e884d2216498aaf0ef4b51633ee64c20269b601b735d1a17bfb43608fa5820896378d2508cd44c29f60f6ae06497b331c43a439533e924b289bff1b97cf885336f329c18d4c8d66ae90a6513915d90ec22e3e818974995dc2afd1bc17307591285368cf0cf753b377a01a5a1d7f5e2f2c7aa32fe36d50fae3c077062686b8fd00b90a394646d7ea94d909568fae75c6372c7c8a648ae855e951fcaf5c9db3525", &(0x7f0000000180)=""/128}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r5)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r3)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r1)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r2)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x1, 0x4)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r2) (async)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x1, 0x4) (async)

[ 1345.664678][T32437] FAULT_INJECTION: forcing a failure.
[ 1345.664678][T32437] name failslab, interval 1, probability 0, space 0, times 0
[ 1345.691193][T32437] CPU: 1 PID: 32437 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1345.702823][T32437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1345.712884][T32437] Call Trace:
[ 1345.716178][T32437]  dump_stack+0x18e/0x1d5
[ 1345.720504][T32437]  should_fail+0x604/0x770
[ 1345.724911][T32437]  ? skb_clone+0x1b7/0x380
[ 1345.729316][T32437]  should_failslab+0x5/0x20
[ 1345.733810][T32437]  kmem_cache_alloc+0x24/0x210
[ 1345.738559][T32437]  skb_clone+0x1b7/0x380
[ 1345.742815][T32437]  ? netlink_broadcast_filtered+0x5bd/0x1110
[ 1345.748799][T32437]  netlink_broadcast_filtered+0x5cb/0x1110
[ 1345.754683][T32437]  netlink_broadcast+0x35/0x50
[ 1345.759434][T32437]  kobject_uevent_net_broadcast+0x374/0x550
[ 1345.765318][T32437]  kobject_uevent_env+0x552/0x700
[ 1345.770329][T32437]  device_add+0x7a7/0xbc0
[ 1345.774659][T32437]  device_create_vargs+0x1b8/0x210
[ 1345.779898][T32437]  device_create+0x86/0xb0
[ 1345.784302][T32437]  bdi_register_va+0x89/0x5e0
[ 1345.788970][T32437]  bdi_register+0x80/0xa0
[ 1345.793286][T32437]  ? __device_add_disk+0x50a/0x1210
[ 1345.798469][T32437]  bdi_register_owner+0x56/0xf0
[ 1345.803305][T32437]  __device_add_disk+0x583/0x1210
[ 1345.808328][T32437]  loop_add+0x554/0x710
[ 1345.812478][T32437]  loop_control_ioctl+0x465/0x600
[ 1345.817490][T32437]  ? loop_remove+0xa0/0xa0
[ 1345.821895][T32437]  do_vfs_ioctl+0x6d1/0x15b0
[ 1345.826479][T32437]  __x64_sys_ioctl+0xd4/0x110
[ 1345.831140][T32437]  do_syscall_64+0xcb/0x1c0
[ 1345.835652][T32437]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1345.841531][T32437] RIP: 0033:0x7f6fdf247109
[ 1345.845936][T32437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1345.865531][T32437] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1345.873936][T32437] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1345.881988][T32437] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1345.889951][T32437] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1345.897996][T32437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1345.905955][T32437] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff0000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 68)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r2, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x35e}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x67b}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x40)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1346.127007][T32470] FAULT_INJECTION: forcing a failure.
[ 1346.127007][T32470] name failslab, interval 1, probability 0, space 0, times 0
[ 1346.147499][T32470] CPU: 0 PID: 32470 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1346.159135][T32470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1346.169193][T32470] Call Trace:
[ 1346.172483][T32470]  dump_stack+0x18e/0x1d5
[ 1346.176994][T32470]  should_fail+0x604/0x770
[ 1346.181416][T32470]  ? __d_alloc+0x2a/0x6a0
[ 1346.185794][T32470]  should_failslab+0x5/0x20
[ 1346.190295][T32470]  kmem_cache_alloc+0x24/0x210
[ 1346.195055][T32470]  __d_alloc+0x2a/0x6a0
[ 1346.199289][T32470]  d_alloc_parallel+0x7d/0x1210
[ 1346.204129][T32470]  ? avc_has_perm_noaudit+0x2b0/0x370
[ 1346.209501][T32470]  ? __d_lookup+0x4d9/0x540
[ 1346.213993][T32470]  ? selinux_inode_permission+0x326/0x5b0
[ 1346.219700][T32470]  __lookup_slow+0xfa/0x3c0
[ 1346.224192][T32470]  lookup_one_len+0x3db/0x5d0
[ 1346.228940][T32470]  start_creating+0xec/0x270
[ 1346.233512][T32470]  debugfs_create_dir+0x24/0x380
[ 1346.238443][T32470]  bdi_register_va+0x232/0x5e0
[ 1346.243193][T32470]  bdi_register+0x80/0xa0
[ 1346.247510][T32470]  ? __device_add_disk+0x50a/0x1210
[ 1346.252700][T32470]  bdi_register_owner+0x56/0xf0
[ 1346.257542][T32470]  __device_add_disk+0x583/0x1210
[ 1346.262559][T32470]  loop_add+0x554/0x710
[ 1346.266710][T32470]  loop_control_ioctl+0x465/0x600
[ 1346.271723][T32470]  ? loop_remove+0xa0/0xa0
02:11:59 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0xe040, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/crypto\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x0, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x815}, 0x1)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3) (async)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000040)={0x89, 0x17, 0x6, 0xb, 0x7, 0x7fffffff, 0x5, 0x5d, 0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:11:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r2)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x1, 0x4)

02:11:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={0x1, &(0x7f00000000c0)="c051df3bee30a3a2368fce6e34f167e884d2216498aaf0ef4b51633ee64c20269b601b735d1a17bfb43608fa5820896378d2508cd44c29f60f6ae06497b331c43a439533e924b289bff1b97cf885336f329c18d4c8d66ae90a6513915d90ec22e3e818974995dc2afd1bc17307591285368cf0cf753b377a01a5a1d7f5e2f2c7aa32fe36d50fae3c077062686b8fd00b90a394646d7ea94d909568fae75c6372c7c8a648ae855e951fcaf5c9db3525", &(0x7f0000000180)=""/128}, 0x20) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r5)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r3) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r1) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 69)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1346.276137][T32470]  do_vfs_ioctl+0x6d1/0x15b0
[ 1346.280718][T32470]  __x64_sys_ioctl+0xd4/0x110
[ 1346.285484][T32470]  do_syscall_64+0xcb/0x1c0
[ 1346.290001][T32470]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1346.295875][T32470] RIP: 0033:0x7f6fdf247109
[ 1346.300275][T32470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1346.320073][T32470] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1346.328488][T32470] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1346.336459][T32470] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1346.344426][T32470] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1346.352381][T32470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1346.360339][T32470] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xfffff800, 0x2, 0x1, 0x0, 0xffffffffffffffff, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x5, 0xa}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r1, &(0x7f00000000c0)="57ce880242164ae2ecbcad967d20ff85943427a27998bc57d8104f8bac5a6ca9cef014fdb3a8ad623c9ee9e778b7bc206eeec7dbca04aa8ac79151e3c87b68473dda2ab5cd0871ca0f565d03d8004b12834538f4e4fd88ac3ab9fa12963ef43a90e1573ac5797063baefc472bf8ba4526bfca24ae2e0abc98c11b8a00573c98cf4fb4b0628ae68d8abe8f1fd02348258dda54a7da5ac4b5db58f5f76142a89c0452c8647ea448cf2d72a8b1e65b6093e7763b48200b7a462398f26ec7f7aa338ab5edcdc"}, 0x20)

02:11:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{}]})
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
sendmsg$nl_route(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@getneigh={0x14, 0x1e, 0x0, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48001}, 0x41)

02:11:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:11:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async, rerun: 64)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 64)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) (async)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={0x1, &(0x7f00000000c0)="c051df3bee30a3a2368fce6e34f167e884d2216498aaf0ef4b51633ee64c20269b601b735d1a17bfb43608fa5820896378d2508cd44c29f60f6ae06497b331c43a439533e924b289bff1b97cf885336f329c18d4c8d66ae90a6513915d90ec22e3e818974995dc2afd1bc17307591285368cf0cf753b377a01a5a1d7f5e2f2c7aa32fe36d50fae3c077062686b8fd00b90a394646d7ea94d909568fae75c6372c7c8a648ae855e951fcaf5c9db3525", &(0x7f0000000180)=""/128}, 0x20) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r5) (async)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r3)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r1) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1346.481819][T32504] FAULT_INJECTION: forcing a failure.
[ 1346.481819][T32504] name failslab, interval 1, probability 0, space 0, times 0
[ 1346.518362][T32504] CPU: 0 PID: 32504 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1346.529997][T32504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1346.540048][T32504] Call Trace:
[ 1346.543872][T32504]  dump_stack+0x18e/0x1d5
[ 1346.548200][T32504]  should_fail+0x604/0x770
[ 1346.552613][T32504]  ? skb_clone+0x1b7/0x380
[ 1346.557114][T32504]  should_failslab+0x5/0x20
[ 1346.561691][T32504]  kmem_cache_alloc+0x24/0x210
[ 1346.566447][T32504]  skb_clone+0x1b7/0x380
[ 1346.570680][T32504]  ? netlink_broadcast_filtered+0x5bd/0x1110
[ 1346.576657][T32504]  netlink_broadcast_filtered+0x5cb/0x1110
[ 1346.582466][T32504]  netlink_broadcast+0x35/0x50
[ 1346.587220][T32504]  kobject_uevent_net_broadcast+0x374/0x550
[ 1346.593103][T32504]  kobject_uevent_env+0x552/0x700
[ 1346.598118][T32504]  device_add+0x7a7/0xbc0
[ 1346.602438][T32504]  device_create_vargs+0x1b8/0x210
[ 1346.607551][T32504]  device_create+0x86/0xb0
[ 1346.612045][T32504]  bdi_register_va+0x89/0x5e0
[ 1346.616709][T32504]  bdi_register+0x80/0xa0
[ 1346.621030][T32504]  ? __device_add_disk+0x50a/0x1210
[ 1346.626216][T32504]  bdi_register_owner+0x56/0xf0
[ 1346.631062][T32504]  __device_add_disk+0x583/0x1210
[ 1346.636164][T32504]  loop_add+0x554/0x710
[ 1346.640311][T32504]  loop_control_ioctl+0x465/0x600
[ 1346.645329][T32504]  ? loop_remove+0xa0/0xa0
[ 1346.649735][T32504]  do_vfs_ioctl+0x6d1/0x15b0
[ 1346.654320][T32504]  __x64_sys_ioctl+0xd4/0x110
[ 1346.658985][T32504]  do_syscall_64+0xcb/0x1c0
[ 1346.663545][T32504]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1346.669428][T32504] RIP: 0033:0x7f6fdf247109
[ 1346.673833][T32504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1346.693602][T32504] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1346.702011][T32504] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1346.709976][T32504] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1346.718037][T32504] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1346.726020][T32504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1346.734002][T32504] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:12:00 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xc3685fbce995bcdd, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r1)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:00 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xfffff800, 0x2, 0x1, 0x0, 0xffffffffffffffff, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x5, 0xa}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r1, &(0x7f00000000c0)="57ce880242164ae2ecbcad967d20ff85943427a27998bc57d8104f8bac5a6ca9cef014fdb3a8ad623c9ee9e778b7bc206eeec7dbca04aa8ac79151e3c87b68473dda2ab5cd0871ca0f565d03d8004b12834538f4e4fd88ac3ab9fa12963ef43a90e1573ac5797063baefc472bf8ba4526bfca24ae2e0abc98c11b8a00573c98cf4fb4b0628ae68d8abe8f1fd02348258dda54a7da5ac4b5db58f5f76142a89c0452c8647ea448cf2d72a8b1e65b6093e7763b48200b7a462398f26ec7f7aa338ab5edcdc"}, 0x20)

02:12:00 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{}]})
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$nl_route(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@getneigh={0x14, 0x1e, 0x0, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48001}, 0x41)

02:12:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 70)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:00 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xfffff800, 0x2, 0x1, 0x0, 0xffffffffffffffff, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x5, 0xa}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r1, &(0x7f00000000c0)="57ce880242164ae2ecbcad967d20ff85943427a27998bc57d8104f8bac5a6ca9cef014fdb3a8ad623c9ee9e778b7bc206eeec7dbca04aa8ac79151e3c87b68473dda2ab5cd0871ca0f565d03d8004b12834538f4e4fd88ac3ab9fa12963ef43a90e1573ac5797063baefc472bf8ba4526bfca24ae2e0abc98c11b8a00573c98cf4fb4b0628ae68d8abe8f1fd02348258dda54a7da5ac4b5db58f5f76142a89c0452c8647ea448cf2d72a8b1e65b6093e7763b48200b7a462398f26ec7f7aa338ab5edcdc"}, 0x20)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xfffff800, 0x2, 0x1, 0x0, 0xffffffffffffffff, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x5, 0xa}, 0x48) (async)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r1, &(0x7f00000000c0)="57ce880242164ae2ecbcad967d20ff85943427a27998bc57d8104f8bac5a6ca9cef014fdb3a8ad623c9ee9e778b7bc206eeec7dbca04aa8ac79151e3c87b68473dda2ab5cd0871ca0f565d03d8004b12834538f4e4fd88ac3ab9fa12963ef43a90e1573ac5797063baefc472bf8ba4526bfca24ae2e0abc98c11b8a00573c98cf4fb4b0628ae68d8abe8f1fd02348258dda54a7da5ac4b5db58f5f76142a89c0452c8647ea448cf2d72a8b1e65b6093e7763b48200b7a462398f26ec7f7aa338ab5edcdc"}, 0x20) (async)

02:12:00 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:00 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xc3685fbce995bcdd, 0x0) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r1) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1346.947602][T32543] FAULT_INJECTION: forcing a failure.
[ 1346.947602][T32543] name failslab, interval 1, probability 0, space 0, times 0
02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, r4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1347.053819][T32543] CPU: 1 PID: 32543 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1347.065460][T32543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1347.075517][T32543] Call Trace:
[ 1347.078809][T32543]  dump_stack+0x18e/0x1d5
[ 1347.083141][T32543]  should_fail+0x604/0x770
[ 1347.087558][T32543]  ? __d_alloc+0x2a/0x6a0
[ 1347.091884][T32543]  should_failslab+0x5/0x20
[ 1347.096379][T32543]  kmem_cache_alloc+0x24/0x210
[ 1347.101131][T32543]  __d_alloc+0x2a/0x6a0
[ 1347.105274][T32543]  d_alloc_parallel+0x7d/0x1210
[ 1347.110124][T32543]  ? avc_has_perm_noaudit+0x2b0/0x370
[ 1347.115512][T32543]  ? __d_lookup+0x4d9/0x540
[ 1347.120136][T32543]  ? selinux_inode_permission+0x326/0x5b0
[ 1347.125855][T32543]  __lookup_slow+0xfa/0x3c0
[ 1347.130362][T32543]  lookup_one_len+0x3db/0x5d0
[ 1347.135037][T32543]  start_creating+0xec/0x270
[ 1347.139709][T32543]  debugfs_create_dir+0x24/0x380
[ 1347.144844][T32543]  bdi_register_va+0x232/0x5e0
[ 1347.149603][T32543]  bdi_register+0x80/0xa0
[ 1347.154012][T32543]  ? __device_add_disk+0x50a/0x1210
[ 1347.159204][T32543]  bdi_register_owner+0x56/0xf0
[ 1347.164048][T32543]  __device_add_disk+0x583/0x1210
[ 1347.169068][T32543]  loop_add+0x554/0x710
[ 1347.173210][T32543]  loop_control_ioctl+0x465/0x600
[ 1347.178228][T32543]  ? loop_remove+0xa0/0xa0
[ 1347.182633][T32543]  do_vfs_ioctl+0x6d1/0x15b0
[ 1347.187237][T32543]  __x64_sys_ioctl+0xd4/0x110
[ 1347.191908][T32543]  do_syscall_64+0xcb/0x1c0
[ 1347.196398][T32543]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1347.202291][T32543] RIP: 0033:0x7f6fdf247109
[ 1347.206785][T32543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1347.226486][T32543] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1347.234983][T32543] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1347.243212][T32543] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1347.251201][T32543] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1347.259163][T32543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1347.267131][T32543] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:12:00 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{}]}) (async, rerun: 64)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (rerun: 64)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 32)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
sendmsg$nl_route(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@getneigh={0x14, 0x1e, 0x0, 0x70bd2c, 0x25dfdbfd, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48001}, 0x41)

02:12:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 71)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
sendmsg$nl_xfrm(r1, 0xfffffffffffffffe, 0x20000000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:00 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xc3685fbce995bcdd, 0x0) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r5, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r1) (async)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:00 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, r4)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r1, 0x420, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x9}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

02:12:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:00 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r1, 0x420, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x9}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r0, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r1, 0x420, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x9}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)

[ 1347.399325][T32598] FAULT_INJECTION: forcing a failure.
[ 1347.399325][T32598] name failslab, interval 1, probability 0, space 0, times 0
[ 1347.470246][T32598] CPU: 0 PID: 32598 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1347.481889][T32598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1347.491950][T32598] Call Trace:
[ 1347.495245][T32598]  dump_stack+0x18e/0x1d5
[ 1347.499576][T32598]  should_fail+0x604/0x770
[ 1347.503985][T32598]  ? new_inode_pseudo+0x78/0x210
[ 1347.508922][T32598]  should_failslab+0x5/0x20
[ 1347.513427][T32598]  kmem_cache_alloc+0x24/0x210
[ 1347.518355][T32598]  new_inode_pseudo+0x78/0x210
[ 1347.523115][T32598]  new_inode+0x25/0x1d0
[ 1347.527274][T32598]  ? start_creating+0x183/0x270
[ 1347.532113][T32598]  debugfs_create_dir+0x66/0x380
[ 1347.537222][T32598]  bdi_register_va+0x232/0x5e0
[ 1347.541976][T32598]  bdi_register+0x80/0xa0
[ 1347.546384][T32598]  ? __device_add_disk+0x50a/0x1210
[ 1347.551584][T32598]  bdi_register_owner+0x56/0xf0
[ 1347.556423][T32598]  __device_add_disk+0x583/0x1210
[ 1347.561452][T32598]  loop_add+0x554/0x710
[ 1347.565601][T32598]  loop_control_ioctl+0x465/0x600
[ 1347.570616][T32598]  ? loop_remove+0xa0/0xa0
[ 1347.575017][T32598]  do_vfs_ioctl+0x6d1/0x15b0
[ 1347.579607][T32598]  __x64_sys_ioctl+0xd4/0x110
[ 1347.584273][T32598]  do_syscall_64+0xcb/0x1c0
[ 1347.588767][T32598]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1347.594648][T32598] RIP: 0033:0x7f6fdf247109
[ 1347.599052][T32598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, r4) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1347.618906][T32598] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1347.627315][T32598] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1347.635365][T32598] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1347.643337][T32598] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1347.651305][T32598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1347.659270][T32598] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:12:01 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 72)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:01 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r0, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r0) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r1, 0x420, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x9}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0)
sendmsg$nl_xfrm(r1, 0xfffffffffffffffe, 0x20000000) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1347.711878][T32598] debugfs: out of free dentries, can not create directory '7:12'
02:12:01 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r1)
sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r6, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xabfa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040050}, 0x20004040)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x90000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x2)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:01 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3a90, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x8e}, @exit, @map_idx={0x18, 0x6, 0x5, 0x0, 0xb}, @map_fd={0x18, 0xb, 0x1, 0x0, r0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x80000001}]}, &(0x7f0000000200)='syzkaller\x00', 0x3, 0x31, &(0x7f0000000240)=""/49, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x2}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0x2, 0x6, 0x401}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000300)=[r1, r3, r3, r3, r3]}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1d, 0x6, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x3}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1}], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0xc, r1, 0x8, &(0x7f0000000100)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x10, 0x7604}, 0x10, 0xffffffffffffffff, r4}, 0x80)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00000000000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 32)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3a90, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x8e}, @exit, @map_idx={0x18, 0x6, 0x5, 0x0, 0xb}, @map_fd={0x18, 0xb, 0x1, 0x0, r0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x80000001}]}, &(0x7f0000000200)='syzkaller\x00', 0x3, 0x31, &(0x7f0000000240)=""/49, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x2}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0x2, 0x6, 0x401}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000300)=[r1, r3, r3, r3, r3]}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1d, 0x6, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x3}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1}], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0xc, r1, 0x8, &(0x7f0000000100)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x10, 0x7604}, 0x10, 0xffffffffffffffff, r4}, 0x80)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1347.823016][T32661] FAULT_INJECTION: forcing a failure.
[ 1347.823016][T32661] name failslab, interval 1, probability 0, space 0, times 0
[ 1347.887291][T32661] CPU: 0 PID: 32661 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1347.899016][T32661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1347.909160][T32661] Call Trace:
[ 1347.912625][T32661]  dump_stack+0x18e/0x1d5
[ 1347.916954][T32661]  should_fail+0x604/0x770
[ 1347.921395][T32661]  ? security_inode_alloc+0x24/0x130
[ 1347.926669][T32661]  should_failslab+0x5/0x20
[ 1347.931165][T32661]  kmem_cache_alloc+0x24/0x210
[ 1347.936002][T32661]  security_inode_alloc+0x24/0x130
[ 1347.941103][T32661]  inode_init_always+0x387/0x810
[ 1347.946023][T32661]  new_inode_pseudo+0x8f/0x210
[ 1347.950805][T32661]  new_inode+0x25/0x1d0
[ 1347.955034][T32661]  ? start_creating+0x183/0x270
[ 1347.959993][T32661]  debugfs_create_dir+0x66/0x380
[ 1347.964929][T32661]  bdi_register_va+0x232/0x5e0
[ 1347.969798][T32661]  bdi_register+0x80/0xa0
[ 1347.974120][T32661]  ? __device_add_disk+0x50a/0x1210
[ 1347.979312][T32661]  bdi_register_owner+0x56/0xf0
[ 1347.984151][T32661]  __device_add_disk+0x583/0x1210
[ 1347.989176][T32661]  loop_add+0x554/0x710
[ 1347.993323][T32661]  loop_control_ioctl+0x465/0x600
[ 1347.998355][T32661]  ? loop_remove+0xa0/0xa0
[ 1348.002764][T32661]  do_vfs_ioctl+0x6d1/0x15b0
[ 1348.007348][T32661]  __x64_sys_ioctl+0xd4/0x110
[ 1348.012101][T32661]  do_syscall_64+0xcb/0x1c0
[ 1348.016599][T32661]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1348.022481][T32661] RIP: 0033:0x7f6fdf247109
[ 1348.026889][T32661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1348.046570][T32661] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1348.054973][T32661] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1348.062939][T32661] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1348.070901][T32661] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1348.078867][T32661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r3, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r3) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3a90, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x8e}, @exit, @map_idx={0x18, 0x6, 0x5, 0x0, 0xb}, @map_fd={0x18, 0xb, 0x1, 0x0, r0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x80000001}]}, &(0x7f0000000200)='syzkaller\x00', 0x3, 0x31, &(0x7f0000000240)=""/49, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x2}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0x2, 0x6, 0x401}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000300)=[r1, r3, r3, r3, r3]}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1d, 0x6, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x3}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1}], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0xc, r1, 0x8, &(0x7f0000000100)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x10, 0x7604}, 0x10, 0xffffffffffffffff, r4}, 0x80) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1348.086826][T32661] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1348.139761][T32661] debugfs: out of free dentries, can not create directory '7:12'
02:12:01 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 73)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0xc881)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:01 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
sendmsg$nl_xfrm(r1, 0xfffffffffffffffe, 0x20000000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
sendmsg$nl_xfrm(r1, 0xfffffffffffffffe, 0x20000000) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:01 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r1)
sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r6, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xabfa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040050}, 0x20004040)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r1) (async)
sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r6, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xabfa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040050}, 0x20004040) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x90000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x2)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x90000, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x2) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0xc881) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:01 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getuid()
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1348.273993][T32699] FAULT_INJECTION: forcing a failure.
[ 1348.273993][T32699] name failslab, interval 1, probability 0, space 0, times 0
[ 1348.323937][T32699] CPU: 1 PID: 32699 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1348.335662][T32699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1348.345708][T32699] Call Trace:
[ 1348.348994][T32699]  dump_stack+0x18e/0x1d5
[ 1348.353315][T32699]  should_fail+0x604/0x770
[ 1348.357724][T32699]  ? new_inode_pseudo+0x78/0x210
[ 1348.362664][T32699]  should_failslab+0x5/0x20
[ 1348.367156][T32699]  kmem_cache_alloc+0x24/0x210
[ 1348.371906][T32699]  new_inode_pseudo+0x78/0x210
[ 1348.376655][T32699]  new_inode+0x25/0x1d0
[ 1348.380798][T32699]  ? start_creating+0x183/0x270
[ 1348.385642][T32699]  __debugfs_create_file+0xb6/0x400
[ 1348.390827][T32699]  ? debugfs_create_dir+0x2e6/0x380
[ 1348.396011][T32699]  bdi_register_va+0x274/0x5e0
[ 1348.400770][T32699]  bdi_register+0x80/0xa0
[ 1348.405091][T32699]  ? __device_add_disk+0x50a/0x1210
[ 1348.410284][T32699]  bdi_register_owner+0x56/0xf0
[ 1348.415470][T32699]  __device_add_disk+0x583/0x1210
[ 1348.420488][T32699]  loop_add+0x554/0x710
[ 1348.424636][T32699]  loop_control_ioctl+0x465/0x600
[ 1348.429646][T32699]  ? loop_remove+0xa0/0xa0
[ 1348.434049][T32699]  do_vfs_ioctl+0x6d1/0x15b0
[ 1348.438629][T32699]  __x64_sys_ioctl+0xd4/0x110
[ 1348.443291][T32699]  do_syscall_64+0xcb/0x1c0
[ 1348.447843][T32699]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1348.453721][T32699] RIP: 0033:0x7f6fdf247109
[ 1348.458135][T32699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1348.477743][T32699] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1348.486149][T32699] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1348.494221][T32699] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1348.502181][T32699] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1348.510140][T32699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:12:01 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r1)
sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r6, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xabfa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040050}, 0x20004040) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:01 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 74)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

[ 1348.518104][T32699] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1348.535447][T32699] debugfs: out of free dentries, can not create file 'stats'
02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0xc881) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:02 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x90000, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) (async)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x2) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:02 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getuid() (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:02 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
sendmsg$AUDIT_SET_FEATURE(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x400, 0x70bd2a, 0x25dfdbfd, {0x1, 0x1, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x800)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1348.663465][T32754] FAULT_INJECTION: forcing a failure.
[ 1348.663465][T32754] name failslab, interval 1, probability 0, space 0, times 0
[ 1348.687568][T32754] CPU: 0 PID: 32754 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1348.699204][T32754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1348.709260][T32754] Call Trace:
[ 1348.712574][T32754]  dump_stack+0x18e/0x1d5
[ 1348.716987][T32754]  should_fail+0x604/0x770
[ 1348.721397][T32754]  ? new_inode_pseudo+0x78/0x210
[ 1348.726344][T32754]  should_failslab+0x5/0x20
[ 1348.730836][T32754]  kmem_cache_alloc+0x24/0x210
[ 1348.735584][T32754]  new_inode_pseudo+0x78/0x210
[ 1348.740333][T32754]  new_inode+0x25/0x1d0
[ 1348.744486][T32754]  ? start_creating+0x183/0x270
[ 1348.749326][T32754]  __debugfs_create_file+0xb6/0x400
[ 1348.754512][T32754]  ? debugfs_create_dir+0x2e6/0x380
[ 1348.759820][T32754]  bdi_register_va+0x274/0x5e0
[ 1348.764575][T32754]  bdi_register+0x80/0xa0
[ 1348.768900][T32754]  ? __device_add_disk+0x50a/0x1210
[ 1348.774101][T32754]  bdi_register_owner+0x56/0xf0
[ 1348.778956][T32754]  __device_add_disk+0x583/0x1210
[ 1348.783974][T32754]  loop_add+0x554/0x710
[ 1348.788122][T32754]  loop_control_ioctl+0x465/0x600
[ 1348.793139][T32754]  ? loop_remove+0xa0/0xa0
[ 1348.797547][T32754]  do_vfs_ioctl+0x6d1/0x15b0
[ 1348.802126][T32754]  __x64_sys_ioctl+0xd4/0x110
[ 1348.806788][T32754]  do_syscall_64+0xcb/0x1c0
[ 1348.811292][T32754]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1348.817184][T32754] RIP: 0033:0x7f6fdf247109
[ 1348.821584][T32754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1348.841180][T32754] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1348.849580][T32754] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
02:12:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x781500, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, 0x0, 0xfffffffffffffed4)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:02 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getuid()
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
getuid() (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:02 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x90408}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r2, 0x8, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x800}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x4009)

02:12:02 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 75)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:02 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4)
sendmsg$AUDIT_SET_FEATURE(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x400, 0x70bd2a, 0x25dfdbfd, {0x1, 0x1, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x800)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
sendmsg$AUDIT_SET_FEATURE(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x400, 0x70bd2a, 0x25dfdbfd, {0x1, 0x1, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x800) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x781500, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, 0x0, 0xfffffffffffffed4)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x781500, 0x0) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
connect$pppl2tp(r1, 0x0, 0xfffffffffffffed4) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

[ 1348.857540][T32754] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1348.865507][T32754] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1348.873467][T32754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1348.881435][T32754] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1348.891762][T32754] debugfs: out of free dentries, can not create file 'stats'
02:12:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x781500, 0x0) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, 0x0, 0xfffffffffffffed4) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1349.025716][  T354] FAULT_INJECTION: forcing a failure.
[ 1349.025716][  T354] name failslab, interval 1, probability 0, space 0, times 0
[ 1349.062298][  T354] CPU: 1 PID: 354 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1349.073844][  T354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1349.083897][  T354] Call Trace:
[ 1349.087191][  T354]  dump_stack+0x18e/0x1d5
[ 1349.091614][  T354]  should_fail+0x604/0x770
[ 1349.096039][  T354]  ? security_inode_alloc+0x24/0x130
[ 1349.101310][  T354]  should_failslab+0x5/0x20
[ 1349.105802][  T354]  kmem_cache_alloc+0x24/0x210
[ 1349.110550][  T354]  security_inode_alloc+0x24/0x130
[ 1349.115649][  T354]  inode_init_always+0x387/0x810
[ 1349.120574][  T354]  new_inode_pseudo+0x8f/0x210
[ 1349.125324][  T354]  new_inode+0x25/0x1d0
[ 1349.129467][  T354]  ? start_creating+0x183/0x270
[ 1349.134308][  T354]  __debugfs_create_file+0xb6/0x400
[ 1349.139493][  T354]  ? debugfs_create_dir+0x2e6/0x380
[ 1349.144687][  T354]  bdi_register_va+0x274/0x5e0
[ 1349.149436][  T354]  bdi_register+0x80/0xa0
[ 1349.153800][  T354]  ? __device_add_disk+0x50a/0x1210
[ 1349.158982][  T354]  bdi_register_owner+0x56/0xf0
[ 1349.163818][  T354]  __device_add_disk+0x583/0x1210
[ 1349.168831][  T354]  loop_add+0x554/0x710
02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = getuid()
sendmsg$nl_xfrm(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=@getae={0x124, 0x1f, 0x10, 0x70bd26, 0x25dfdbfb, {{@in=@multicast1, 0x4d6, 0xa, 0xff}, @in=@empty, 0x800, 0x3501}, [@sa={0xe4, 0x6, {{@in=@multicast1, @in6=@loopback, 0x4e20, 0x256, 0x4e22, 0x1f, 0x2, 0xa0, 0x80, 0x62, 0x0, r2}, {@in=@private=0xa010100, 0x4d5, 0x33}, @in6=@mcast2, {0x5, 0x1, 0xaf, 0x1, 0xdd2, 0x8, 0x8000000000000000, 0x4}, {0x0, 0x5, 0x1b, 0x7fffffffffffffff}, {0x48f, 0xcbd8, 0x100}, 0x70bd26, 0x3506, 0xa, 0x1, 0x1, 0xa}}]}, 0x124}, 0x1, 0x0, 0x0, 0x4000880}, 0x54)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={0x1, &(0x7f0000000000)="aa20bb89b7701b236fa282a6db53141b5adccf12d60078a6b4e49f85a80dd44532c320bbf4da912b24af8b2c03cf0fbbc78115ddd536e36d588fd05dc3da342adb36878c04e0bbd4386732c435730c514d64e2231790aea85cfb91a3963984531b4b9900c207d22b", &(0x7f00000000c0)=""/82, 0x4}, 0x20)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1349.172975][  T354]  loop_control_ioctl+0x465/0x600
[ 1349.178083][  T354]  ? loop_remove+0xa0/0xa0
[ 1349.182494][  T354]  do_vfs_ioctl+0x6d1/0x15b0
[ 1349.187078][  T354]  __x64_sys_ioctl+0xd4/0x110
[ 1349.191751][  T354]  do_syscall_64+0xcb/0x1c0
[ 1349.196241][  T354]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1349.202120][  T354] RIP: 0033:0x7f6fdf247109
[ 1349.206524][  T354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:12:02 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r4) (async)
sendmsg$AUDIT_SET_FEATURE(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3fa, 0x400, 0x70bd2a, 0x25dfdbfd, {0x1, 0x1, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x800) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:02 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x2e0, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x60, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6379}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x140}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8001}]}, @TIPC_NLA_LINK={0xb8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x55f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x164}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER={0x38, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xff}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x25}}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x20, 0x0}}}}}]}, @TIPC_NLA_MEDIA={0x80, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc42}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc2ba}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa8a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000000}]}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8a53}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xd99}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'rose0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff85}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth0_to_team\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'virt_wifi0\x00'}}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x24044809}, 0x2000c818)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:02 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x90408}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r2, 0x8, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x800}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x4009)

02:12:02 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x206400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x350, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'gretap0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe9f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x679, @remote, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x8000}}}}]}, @TIPC_NLA_BEARER={0x70, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x39a, @mcast1, 0x20}}, {0x14, 0x2, @in={0x2, 0x4e21, @rand_addr=0x64010100}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x214, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ID={0xce, 0x3, "8e3a6549d89c867a7916ad8e1dd83f6d6ca21cea38799b780483718f2361fc2ede2a946b96743ca21d0a678bb366c53a73fffd0668476a86f1b85af764123aeab323fd5a969d1d0c26405e69e45a12d63614e426e9e389bd4f1a874859f0fde07d47895f0c04e3d91e7881cf4a1c92487af14bc39ab2f4fb001c8d0aa07e46925a50b63d5d26b32759bb28c2497244c578912ee558024f9e98b41bfcef295f3c4e1a54d00f1234186c9fa7ecbae0eb5ae7e4ab355780b2c762ee7d1a7f0a54b0ec3aa34cd602919b3769"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ID={0x17, 0x3, "1dcf15fd94961f57a0b3941b074af83e172334"}, @TIPC_NLA_NODE_ID={0xce, 0x3, "d6135a2828578899e67ba8b5cd27c91dd0b13df17ea49519311ec2402dadd477502e7fd5cac36ca8c9582918a63d38492b343d81a133f23ed57e3adb5115918760f1e9730f5fd798b18fdf548665b9490d2c31bee272e770b3043ba862395b692f4bc52553ad4247ba79d52e09d19c9bf1d1a594d88714935bc725929437c8cc7768f820e3a9fdc740e73933b64ac298992aab5adf8890caa315185ee993970e63225a49947bf4213a8df4a558e07d8903b658f69d90676de468bd5aa0ac9cec2454e4cccdc8e59e3882"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "83171ca24e9640f23dc72b85b6ac82061196cf7539dcea59a1e8b1c24ffc08"}}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7ff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe27}]}]}, 0x350}, 0x1, 0x0, 0x0, 0x40}, 0x4000801)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

02:12:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = getuid()
sendmsg$nl_xfrm(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=@getae={0x124, 0x1f, 0x10, 0x70bd26, 0x25dfdbfb, {{@in=@multicast1, 0x4d6, 0xa, 0xff}, @in=@empty, 0x800, 0x3501}, [@sa={0xe4, 0x6, {{@in=@multicast1, @in6=@loopback, 0x4e20, 0x256, 0x4e22, 0x1f, 0x2, 0xa0, 0x80, 0x62, 0x0, r2}, {@in=@private=0xa010100, 0x4d5, 0x33}, @in6=@mcast2, {0x5, 0x1, 0xaf, 0x1, 0xdd2, 0x8, 0x8000000000000000, 0x4}, {0x0, 0x5, 0x1b, 0x7fffffffffffffff}, {0x48f, 0xcbd8, 0x100}, 0x70bd26, 0x3506, 0xa, 0x1, 0x1, 0xa}}]}, 0x124}, 0x1, 0x0, 0x0, 0x4000880}, 0x54)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={0x1, &(0x7f0000000000)="aa20bb89b7701b236fa282a6db53141b5adccf12d60078a6b4e49f85a80dd44532c320bbf4da912b24af8b2c03cf0fbbc78115ddd536e36d588fd05dc3da342adb36878c04e0bbd4386732c435730c514d64e2231790aea85cfb91a3963984531b4b9900c207d22b", &(0x7f00000000c0)=""/82, 0x4}, 0x20)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
getuid() (async)
sendmsg$nl_xfrm(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=@getae={0x124, 0x1f, 0x10, 0x70bd26, 0x25dfdbfb, {{@in=@multicast1, 0x4d6, 0xa, 0xff}, @in=@empty, 0x800, 0x3501}, [@sa={0xe4, 0x6, {{@in=@multicast1, @in6=@loopback, 0x4e20, 0x256, 0x4e22, 0x1f, 0x2, 0xa0, 0x80, 0x62, 0x0, r2}, {@in=@private=0xa010100, 0x4d5, 0x33}, @in6=@mcast2, {0x5, 0x1, 0xaf, 0x1, 0xdd2, 0x8, 0x8000000000000000, 0x4}, {0x0, 0x5, 0x1b, 0x7fffffffffffffff}, {0x48f, 0xcbd8, 0x100}, 0x70bd26, 0x3506, 0xa, 0x1, 0x1, 0xa}}]}, 0x124}, 0x1, 0x0, 0x0, 0x4000880}, 0x54) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891) (async)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={0x1, &(0x7f0000000000)="aa20bb89b7701b236fa282a6db53141b5adccf12d60078a6b4e49f85a80dd44532c320bbf4da912b24af8b2c03cf0fbbc78115ddd536e36d588fd05dc3da342adb36878c04e0bbd4386732c435730c514d64e2231790aea85cfb91a3963984531b4b9900c207d22b", &(0x7f00000000c0)=""/82, 0x4}, 0x20) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)

02:12:02 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 76)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

[ 1349.226203][  T354] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1349.234608][  T354] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1349.242706][  T354] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1349.250763][  T354] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1349.258765][  T354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1349.266728][  T354] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1349.315962][  T354] debugfs: out of free dentries, can not create file 'stats'
02:12:02 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x2e0, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x60, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6379}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x140}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8001}]}, @TIPC_NLA_LINK={0xb8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x55f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x164}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER={0x38, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xff}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x25}}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x20, 0x0}}}}}]}, @TIPC_NLA_MEDIA={0x80, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc42}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc2ba}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa8a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000000}]}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8a53}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xd99}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'rose0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff85}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth0_to_team\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'virt_wifi0\x00'}}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x24044809}, 0x2000c818)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x2e0, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x60, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6379}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x140}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8001}]}, @TIPC_NLA_LINK={0xb8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x55f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x164}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER={0x38, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xff}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x25}}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x20, 0x0}}}}}]}, @TIPC_NLA_MEDIA={0x80, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc42}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc2ba}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa8a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000000}]}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8a53}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xd99}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'rose0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff85}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth0_to_team\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'virt_wifi0\x00'}}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x24044809}, 0x2000c818) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:12:02 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x90408}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r2, 0x8, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x800}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x4009)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x90408}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r2, 0x8, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x800}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x4009) (async)

02:12:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:02 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r2 = getuid()
sendmsg$nl_xfrm(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=@getae={0x124, 0x1f, 0x10, 0x70bd26, 0x25dfdbfb, {{@in=@multicast1, 0x4d6, 0xa, 0xff}, @in=@empty, 0x800, 0x3501}, [@sa={0xe4, 0x6, {{@in=@multicast1, @in6=@loopback, 0x4e20, 0x256, 0x4e22, 0x1f, 0x2, 0xa0, 0x80, 0x62, 0x0, r2}, {@in=@private=0xa010100, 0x4d5, 0x33}, @in6=@mcast2, {0x5, 0x1, 0xaf, 0x1, 0xdd2, 0x8, 0x8000000000000000, 0x4}, {0x0, 0x5, 0x1b, 0x7fffffffffffffff}, {0x48f, 0xcbd8, 0x100}, 0x70bd26, 0x3506, 0xa, 0x1, 0x1, 0xa}}]}, 0x124}, 0x1, 0x0, 0x0, 0x4000880}, 0x54) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={0x1, &(0x7f0000000000)="aa20bb89b7701b236fa282a6db53141b5adccf12d60078a6b4e49f85a80dd44532c320bbf4da912b24af8b2c03cf0fbbc78115ddd536e36d588fd05dc3da342adb36878c04e0bbd4386732c435730c514d64e2231790aea85cfb91a3963984531b4b9900c207d22b", &(0x7f00000000c0)=""/82, 0x4}, 0x20) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1349.467058][  T427] FAULT_INJECTION: forcing a failure.
[ 1349.467058][  T427] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1349.502631][  T427] CPU: 0 PID: 427 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1349.514173][  T427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1349.524222][  T427] Call Trace:
[ 1349.527510][  T427]  dump_stack+0x18e/0x1d5
[ 1349.531830][  T427]  should_fail+0x604/0x770
[ 1349.536240][  T427]  __alloc_pages_nodemask+0x12a/0x6f0
[ 1349.541601][  T427]  __get_free_pages+0xa/0x30
[ 1349.546177][  T427]  selinux_genfs_get_sid+0x55/0x250
[ 1349.551363][  T427]  inode_doinit_with_dentry+0x8ca/0xf30
[ 1349.556896][  T427]  security_d_instantiate+0xa5/0x100
[ 1349.562176][  T427]  d_instantiate+0x51/0x90
[ 1349.566670][  T427]  __debugfs_create_file+0x256/0x400
[ 1349.571943][  T427]  bdi_register_va+0x274/0x5e0
[ 1349.576699][  T427]  bdi_register+0x80/0xa0
[ 1349.581108][  T427]  ? __device_add_disk+0x50a/0x1210
[ 1349.586292][  T427]  bdi_register_owner+0x56/0xf0
[ 1349.591128][  T427]  __device_add_disk+0x583/0x1210
[ 1349.596147][  T427]  loop_add+0x554/0x710
[ 1349.600294][  T427]  loop_control_ioctl+0x465/0x600
[ 1349.605306][  T427]  ? loop_remove+0xa0/0xa0
[ 1349.609734][  T427]  do_vfs_ioctl+0x6d1/0x15b0
[ 1349.614313][  T427]  __x64_sys_ioctl+0xd4/0x110
[ 1349.618973][  T427]  do_syscall_64+0xcb/0x1c0
[ 1349.623466][  T427]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1349.629339][  T427] RIP: 0033:0x7f6fdf247109
[ 1349.633738][  T427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1349.653330][  T427] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:12:03 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async, rerun: 32)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 64)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x2e0, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x60, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6379}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x140}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8001}]}, @TIPC_NLA_LINK={0xb8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x55f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x164}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER={0x38, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xff}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x25}}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x20, 0x0}}}}}]}, @TIPC_NLA_MEDIA={0x80, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc42}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc2ba}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa8a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000000}]}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8a53}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xd99}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'rose0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff85}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth0_to_team\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'virt_wifi0\x00'}}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x24044809}, 0x2000c818) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:03 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x206400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x350, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'gretap0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe9f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x679, @remote, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x8000}}}}]}, @TIPC_NLA_BEARER={0x70, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x39a, @mcast1, 0x20}}, {0x14, 0x2, @in={0x2, 0x4e21, @rand_addr=0x64010100}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x214, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ID={0xce, 0x3, "8e3a6549d89c867a7916ad8e1dd83f6d6ca21cea38799b780483718f2361fc2ede2a946b96743ca21d0a678bb366c53a73fffd0668476a86f1b85af764123aeab323fd5a969d1d0c26405e69e45a12d63614e426e9e389bd4f1a874859f0fde07d47895f0c04e3d91e7881cf4a1c92487af14bc39ab2f4fb001c8d0aa07e46925a50b63d5d26b32759bb28c2497244c578912ee558024f9e98b41bfcef295f3c4e1a54d00f1234186c9fa7ecbae0eb5ae7e4ab355780b2c762ee7d1a7f0a54b0ec3aa34cd602919b3769"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ID={0x17, 0x3, "1dcf15fd94961f57a0b3941b074af83e172334"}, @TIPC_NLA_NODE_ID={0xce, 0x3, "d6135a2828578899e67ba8b5cd27c91dd0b13df17ea49519311ec2402dadd477502e7fd5cac36ca8c9582918a63d38492b343d81a133f23ed57e3adb5115918760f1e9730f5fd798b18fdf548665b9490d2c31bee272e770b3043ba862395b692f4bc52553ad4247ba79d52e09d19c9bf1d1a594d88714935bc725929437c8cc7768f820e3a9fdc740e73933b64ac298992aab5adf8890caa315185ee993970e63225a49947bf4213a8df4a558e07d8903b658f69d90676de468bd5aa0ac9cec2454e4cccdc8e59e3882"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "83171ca24e9640f23dc72b85b6ac82061196cf7539dcea59a1e8b1c24ffc08"}}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7ff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe27}]}]}, 0x350}, 0x1, 0x0, 0x0, 0x40}, 0x4000801) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

02:12:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

02:12:03 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 77)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:03 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1349.661736][  T427] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1349.669786][  T427] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1349.677746][  T427] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1349.685712][  T427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1349.693761][  T427] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:12:03 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000940)={r2, 0x58, &(0x7f00000008c0)}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000540)={0x0, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x4e22, @remote}, 0x190, 0x0, 0x0, 0x0, 0xb153, &(0x7f0000000500)='ip6_vti0\x00', 0x8000000000000000, 0x2, 0x2})
sendmsg$TIPC_NL_NET_GET(r3, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b40)=ANY=[@ANYBLOB="fc0200001da757340c9ad825865fb9d5d20f3680468df5beb9c00b", @ANYRES16=r5, @ANYBLOB="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"], 0x2fc}, 0x1, 0x0, 0x0, 0x8000}, 0x4000800)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000880)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000840)={&(0x7f0000003700)={0x26c, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x64, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "d160dbb50358e6e7b5c3af46a3c9e2b3eebacbb2"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x40}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x551e}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8001}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffd}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffe}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x76b83fe0}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NODE={0x8c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xa96}, @TIPC_NLA_NODE_ID={0x66, 0x3, "13f5d834bc2f2acc865688b147445946499de8736df3b679a7c1c998e86db9835b26ff81930e708be0c3816b61b2a0a4c96b00682d61aa52abdeb014fe0f0e91cc1f1e40d9d21ce1b8030aa2615644e758a9bda03ab70a4f06edb62103b8572f3e4e"}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ff}]}]}, @TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7945}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffcba}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x2404c881}, 0x4001)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f00000000c0)={@any, 0x84, 0x0, 0x4f, 0x20, 0x7, "664b6e7d88763e865d9b7620c917e78b8c1cc9c32ec1e08683edce1a278c22ef32a9859c91ab5a47bad8dcd0b017151a707c41368ecaaee58bf50799899a4acb9cdb032c013d5ca4afa78315b0e2a8edd9dc8ac482069c2c762bdddb9cc90bd78cd48d7e77edd201af2d4fdf9fe349c2c1a69e12a8b6e53f571b960a6c44afec"})
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)

02:12:03 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
setuid(0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

02:12:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1349.863108][  T474] FAULT_INJECTION: forcing a failure.
[ 1349.863108][  T474] name failslab, interval 1, probability 0, space 0, times 0
[ 1349.890535][  T474] CPU: 1 PID: 474 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1349.902003][  T474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1349.912060][  T474] Call Trace:
[ 1349.915351][  T474]  dump_stack+0x18e/0x1d5
[ 1349.919675][  T474]  should_fail+0x604/0x770
[ 1349.924083][  T474]  ? bdi_register_va+0x46d/0x5e0
[ 1349.929011][  T474]  ? kobj_map+0x74/0x650
[ 1349.933252][  T474]  should_failslab+0x5/0x20
[ 1349.937747][  T474]  __kmalloc+0x51/0x2b0
[ 1349.941894][  T474]  kobj_map+0x74/0x650
[ 1349.945950][  T474]  ? disk_check_events+0x560/0x560
[ 1349.951045][  T474]  ? kobject_get+0x8d/0xb0
[ 1349.955594][  T474]  ? exact_match+0x10/0x10
[ 1349.960003][  T474]  __device_add_disk+0x5fc/0x1210
[ 1349.965023][  T474]  loop_add+0x554/0x710
[ 1349.969184][  T474]  loop_control_ioctl+0x465/0x600
[ 1349.974374][  T474]  ? loop_remove+0xa0/0xa0
[ 1349.978779][  T474]  do_vfs_ioctl+0x6d1/0x15b0
[ 1349.983371][  T474]  __x64_sys_ioctl+0xd4/0x110
[ 1349.988037][  T474]  do_syscall_64+0xcb/0x1c0
[ 1349.992537][  T474]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1349.998415][  T474] RIP: 0033:0x7f6fdf247109
[ 1350.002818][  T474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1350.022409][  T474] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1350.030811][  T474] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1350.038773][  T474] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1350.046834][  T474] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1350.054798][  T474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:12:03 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc) (fail_nth: 78)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:03 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000940)={r2, 0x58, &(0x7f00000008c0)}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0) (async)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000540)={0x0, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x4e22, @remote}, 0x190, 0x0, 0x0, 0x0, 0xb153, &(0x7f0000000500)='ip6_vti0\x00', 0x8000000000000000, 0x2, 0x2}) (async)
sendmsg$TIPC_NL_NET_GET(r3, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b40)=ANY=[@ANYBLOB="fc0200001da757340c9ad825865fb9d5d20f3680468df5beb9c00b", @ANYRES16=r5, @ANYBLOB="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"], 0x2fc}, 0x1, 0x0, 0x0, 0x8000}, 0x4000800)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000880)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000840)={&(0x7f0000003700)={0x26c, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x64, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "d160dbb50358e6e7b5c3af46a3c9e2b3eebacbb2"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x40}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x551e}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8001}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffd}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffe}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x76b83fe0}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NODE={0x8c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xa96}, @TIPC_NLA_NODE_ID={0x66, 0x3, "13f5d834bc2f2acc865688b147445946499de8736df3b679a7c1c998e86db9835b26ff81930e708be0c3816b61b2a0a4c96b00682d61aa52abdeb014fe0f0e91cc1f1e40d9d21ce1b8030aa2615644e758a9bda03ab70a4f06edb62103b8572f3e4e"}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ff}]}]}, @TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7945}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffcba}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x2404c881}, 0x4001) (async)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f00000000c0)={@any, 0x84, 0x0, 0x4f, 0x20, 0x7, "664b6e7d88763e865d9b7620c917e78b8c1cc9c32ec1e08683edce1a278c22ef32a9859c91ab5a47bad8dcd0b017151a707c41368ecaaee58bf50799899a4acb9cdb032c013d5ca4afa78315b0e2a8edd9dc8ac482069c2c762bdddb9cc90bd78cd48d7e77edd201af2d4fdf9fe349c2c1a69e12a8b6e53f571b960a6c44afec"}) (async)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)

02:12:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1350.062846][  T474] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
02:12:03 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
setuid(0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
setuid(0x0) (async)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)

02:12:03 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x206400}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x350, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'gretap0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe9f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x679, @remote, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x8000}}}}]}, @TIPC_NLA_BEARER={0x70, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x39a, @mcast1, 0x20}}, {0x14, 0x2, @in={0x2, 0x4e21, @rand_addr=0x64010100}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x214, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ID={0xce, 0x3, "8e3a6549d89c867a7916ad8e1dd83f6d6ca21cea38799b780483718f2361fc2ede2a946b96743ca21d0a678bb366c53a73fffd0668476a86f1b85af764123aeab323fd5a969d1d0c26405e69e45a12d63614e426e9e389bd4f1a874859f0fde07d47895f0c04e3d91e7881cf4a1c92487af14bc39ab2f4fb001c8d0aa07e46925a50b63d5d26b32759bb28c2497244c578912ee558024f9e98b41bfcef295f3c4e1a54d00f1234186c9fa7ecbae0eb5ae7e4ab355780b2c762ee7d1a7f0a54b0ec3aa34cd602919b3769"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ID={0x17, 0x3, "1dcf15fd94961f57a0b3941b074af83e172334"}, @TIPC_NLA_NODE_ID={0xce, 0x3, "d6135a2828578899e67ba8b5cd27c91dd0b13df17ea49519311ec2402dadd477502e7fd5cac36ca8c9582918a63d38492b343d81a133f23ed57e3adb5115918760f1e9730f5fd798b18fdf548665b9490d2c31bee272e770b3043ba862395b692f4bc52553ad4247ba79d52e09d19c9bf1d1a594d88714935bc725929437c8cc7768f820e3a9fdc740e73933b64ac298992aab5adf8890caa315185ee993970e63225a49947bf4213a8df4a558e07d8903b658f69d90676de468bd5aa0ac9cec2454e4cccdc8e59e3882"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "83171ca24e9640f23dc72b85b6ac82061196cf7539dcea59a1e8b1c24ffc08"}}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7ff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe27}]}]}, 0x350}, 0x1, 0x0, 0x0, 0x40}, 0x4000801) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

02:12:03 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x8891) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:03 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async, rerun: 64)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async, rerun: 32)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 32)
connect$pppl2tp(r2, 0x0, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000940)={r2, 0x58, &(0x7f00000008c0)}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r5, @ANYBLOB="a7"], 0xe8}}, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000540)={0x0, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x4e22, @remote}, 0x190, 0x0, 0x0, 0x0, 0xb153, &(0x7f0000000500)='ip6_vti0\x00', 0x8000000000000000, 0x2, 0x2}) (async)
sendmsg$TIPC_NL_NET_GET(r3, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b40)=ANY=[@ANYBLOB="fc0200001da757340c9ad825865fb9d5d20f3680468df5beb9c00b", @ANYRES16=r5, @ANYBLOB="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"], 0x2fc}, 0x1, 0x0, 0x0, 0x8000}, 0x4000800) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000880)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000840)={&(0x7f0000003700)={0x26c, r5, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x64, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "d160dbb50358e6e7b5c3af46a3c9e2b3eebacbb2"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x40}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x551e}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8001}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffd}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffe}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x76b83fe0}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NODE={0x8c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x10000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xa96}, @TIPC_NLA_NODE_ID={0x66, 0x3, "13f5d834bc2f2acc865688b147445946499de8736df3b679a7c1c998e86db9835b26ff81930e708be0c3816b61b2a0a4c96b00682d61aa52abdeb014fe0f0e91cc1f1e40d9d21ce1b8030aa2615644e758a9bda03ab70a4f06edb62103b8572f3e4e"}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ff}]}]}, @TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7945}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x400}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffcba}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x2404c881}, 0x4001)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f00000000c0)={@any, 0x84, 0x0, 0x4f, 0x20, 0x7, "664b6e7d88763e865d9b7620c917e78b8c1cc9c32ec1e08683edce1a278c22ef32a9859c91ab5a47bad8dcd0b017151a707c41368ecaaee58bf50799899a4acb9cdb032c013d5ca4afa78315b0e2a8edd9dc8ac482069c2c762bdddb9cc90bd78cd48d7e77edd201af2d4fdf9fe349c2c1a69e12a8b6e53f571b960a6c44afec"}) (async)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)

02:12:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ff})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1350.155014][  T505] FAULT_INJECTION: forcing a failure.
[ 1350.155014][  T505] name failslab, interval 1, probability 0, space 0, times 0
[ 1350.191707][  T505] CPU: 1 PID: 505 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1350.203165][  T505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1350.213210][  T505] Call Trace:
[ 1350.216497][  T505]  dump_stack+0x18e/0x1d5
[ 1350.220823][  T505]  should_fail+0x604/0x770
[ 1350.225230][  T505]  ? kobject_set_name_vargs+0x5d/0x110
[ 1350.230677][  T505]  should_failslab+0x5/0x20
[ 1350.235165][  T505]  __kmalloc_track_caller+0x4f/0x280
[ 1350.240438][  T505]  kstrdup_const+0x51/0x90
[ 1350.244863][  T505]  kobject_set_name_vargs+0x5d/0x110
[ 1350.250136][  T505]  dev_set_name+0x80/0xa0
[ 1350.254456][  T505]  ? kobj_map+0x61f/0x650
[ 1350.258773][  T505]  __device_add_disk+0x675/0x1210
[ 1350.263785][  T505]  loop_add+0x554/0x710
[ 1350.267936][  T505]  loop_control_ioctl+0x465/0x600
[ 1350.272946][  T505]  ? loop_remove+0xa0/0xa0
[ 1350.277341][  T505]  do_vfs_ioctl+0x6d1/0x15b0
[ 1350.281920][  T505]  __x64_sys_ioctl+0xd4/0x110
[ 1350.286598][  T505]  do_syscall_64+0xcb/0x1c0
[ 1350.291088][  T505]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1350.296968][  T505] RIP: 0033:0x7f6fdf247109
[ 1350.301381][  T505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1350.320970][  T505] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1350.329375][  T505] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1350.337345][  T505] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1350.345446][  T505] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1350.353412][  T505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1350.361488][  T505] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1350.382657][  T505] kobject_add_internal failed for queue (error: -2 parent: (null))
[ 1350.390720][  T505] ------------[ cut here ]------------
[ 1350.396182][  T505] WARNING: CPU: 1 PID: 505 at fs/sysfs/file.c:328 sysfs_create_files+0x1a5/0x370
[ 1350.405353][  T505] Modules linked in:
[ 1350.409259][  T505] CPU: 1 PID: 505 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1350.420701][  T505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1350.430878][  T505] RIP: 0010:sysfs_create_files+0x1a5/0x370
[ 1350.436692][  T505] Code: 89 ff 4c 89 ee 31 d2 41 89 e8 6a 00 e8 34 f9 ff ff 48 83 c4 08 41 89 c7 eb 18 66 66 2e 0f 1f 84 00 00 00 00 00 e8 6b 6b af ff <0f> 0b 41 bf ea ff ff ff 41 8d 6c 24 01 48 63 c5 48 8b 4c 24 08 48
[ 1350.456288][  T505] RSP: 0018:ffff8881cd99fc68 EFLAGS: 00010246
[ 1350.462362][  T505] RAX: ffffffff81b0e259 RBX: ffff8881cfe450a0 RCX: 0000000000040000
[ 1350.470554][  T505] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1350.480607][  T505] RBP: ffff8881cfe45070 R08: ffffffff82181ed4 R09: ffffed1039b33f8b
[ 1350.488573][  T505] R10: ffffed1039b33f8b R11: 1ffff11039b33f8a R12: 0000000000000000
[ 1350.496551][  T505] R13: ffffffff84bd5520 R14: dffffc0000000000 R15: ffff8881cfe45000
[ 1350.504522][  T505] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1350.513440][  T505] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1350.520010][  T505] CR2: 0000000020003700 CR3: 00000001f0576000 CR4: 00000000003406e0
[ 1350.528261][  T505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1350.536959][  T505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1350.545004][  T505] Call Trace:
[ 1350.548294][  T505]  __device_add_disk+0xd16/0x1210
[ 1350.553327][  T505]  loop_add+0x554/0x710
[ 1350.557476][  T505]  loop_control_ioctl+0x465/0x600
[ 1350.562493][  T505]  ? loop_remove+0xa0/0xa0
[ 1350.566901][  T505]  do_vfs_ioctl+0x6d1/0x15b0
[ 1350.571486][  T505]  __x64_sys_ioctl+0xd4/0x110
[ 1350.576157][  T505]  do_syscall_64+0xcb/0x1c0
[ 1350.580668][  T505]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1350.586547][  T505] RIP: 0033:0x7f6fdf247109
[ 1350.591048][  T505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1350.610775][  T505] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1350.619179][  T505] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1350.627503][  T505] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1350.635654][  T505] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1350.643620][  T505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
02:12:04 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0) (async)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0) (async, rerun: 32)
r3 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1) (async)
setuid(0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) (async)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[ 1350.651592][  T505] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1350.659558][  T505] ---[ end trace 0360cad81487266a ]---
[ 1350.673676][  T505] ------------[ cut here ]------------
[ 1350.679169][  T505] kernfs: can not remove 'events', no directory
[ 1350.685788][  T505] WARNING: CPU: 1 PID: 505 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90
[ 1350.695314][  T505] Modules linked in:
[ 1350.699200][  T505] CPU: 1 PID: 505 Comm: syz-executor.5 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1350.710804][  T505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1350.720985][  T505] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 1350.727128][  T505] Code: 48 89 c3 e8 c1 c6 af ff 48 89 df e8 69 f0 ff ff 31 db eb 29 e8 b0 c6 af ff 48 c7 c7 00 f8 a7 84 4c 89 fe 31 c0 e8 af f0 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 91 c6 af ff bb fe ff ff ff 48 c7 c7
[ 1350.746895][  T505] RSP: 0018:ffff8881cd99fc48 EFLAGS: 00010246
[ 1350.752953][  T505] RAX: 639f75559eb75200 RBX: 0000000000000000 RCX: 0000000000040000
[ 1350.760915][  T505] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 1350.768878][  T505] RBP: ffffffff84bd5520 R08: ffffffff814a940a R09: ffffed103edeaa08
[ 1350.777013][  T505] R10: ffffed103edeaa08 R11: 1ffff1103edeaa07 R12: ffffffff85a449e0
[ 1350.784975][  T505] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff84bd55e0
[ 1350.792959][  T505] FS:  00007f6fde3bd700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1350.801877][  T505] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1350.808447][  T505] CR2: 00007f728391ecc0 CR3: 00000001f0576000 CR4: 00000000003406e0
[ 1350.816405][  T505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1350.824361][  T505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1350.832315][  T505] Call Trace:
[ 1350.835600][  T505]  sysfs_create_files+0x31a/0x370
[ 1350.840702][  T505]  __device_add_disk+0xd16/0x1210
[ 1350.845719][  T505]  loop_add+0x554/0x710
[ 1350.849859][  T505]  loop_control_ioctl+0x465/0x600
[ 1350.854873][  T505]  ? loop_remove+0xa0/0xa0
[ 1350.859279][  T505]  do_vfs_ioctl+0x6d1/0x15b0
[ 1350.863861][  T505]  __x64_sys_ioctl+0xd4/0x110
[ 1350.868530][  T505]  do_syscall_64+0xcb/0x1c0
[ 1350.873028][  T505]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1350.878906][  T505] RIP: 0033:0x7f6fdf247109
[ 1350.883314][  T505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1350.902906][  T505] RSP: 002b:00007f6fde3bd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1350.911309][  T505] RAX: ffffffffffffffda RBX: 00007f6fdf359f60 RCX: 00007f6fdf247109
[ 1350.919273][  T505] RDX: 000000000000000c RSI: 0000000000004c80 RDI: 0000000000000003
[ 1350.927240][  T505] RBP: 00007f6fde3bd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1350.935203][  T505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1350.943183][  T505] R13: 00007ffd0b892fbf R14: 00007f6fde3bd300 R15: 0000000000022000
[ 1350.951145][  T505] ---[ end trace 0360cad81487266b ]---
02:12:04 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xc)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

02:12:04 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @multicast2}, {0x2, 0x0, @local}, {0x2, 0x4e21, @broadcast}, 0x1e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd00})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x200, 0x12080)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, &(0x7f0000000040)="14dd973934bd2638cc707c681b80b3bf2d829cada990cd2aca66195b31d5a0cccd369cc3981dbc326254bc")

[ 1350.962941][  T505] loop12: failed to create sysfs files for events
[ 1350.974404][  T515] ------------[ cut here ]------------
[ 1350.992372][  T515] kernfs: can not remove 'events', no directory
[ 1351.002355][  T515] WARNING: CPU: 1 PID: 515 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90
[ 1351.011887][  T515] Modules linked in:
[ 1351.015775][  T515] CPU: 1 PID: 515 Comm: syz-executor.0 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1351.027290][  T515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1351.037345][  T515] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 1351.043573][  T515] Code: 48 89 c3 e8 c1 c6 af ff 48 89 df e8 69 f0 ff ff 31 db eb 29 e8 b0 c6 af ff 48 c7 c7 00 f8 a7 84 4c 89 fe 31 c0 e8 af f0 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 91 c6 af ff bb fe ff ff ff 48 c7 c7
[ 1351.063252][  T515] RSP: 0018:ffff8881e36ffcd0 EFLAGS: 00010246
[ 1351.069312][  T515] RAX: f16cb7a47ff32000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1351.077268][  T515] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1351.085232][  T515] RBP: ffffffff85a449e0 R08: ffffffff814a940a R09: ffffed103edeaa08
[ 1351.093190][  T515] R10: ffffed103edeaa08 R11: 1ffff1103edeaa07 R12: 0000000000000000
[ 1351.101153][  T515] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84bd55e0
[ 1351.109200][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1351.118118][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1351.124688][  T515] CR2: 0000001b2ed22000 CR3: 00000001edd1a000 CR4: 00000000003406e0
[ 1351.132652][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1351.140618][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1351.148583][  T515] Call Trace:
[ 1351.151870][  T515]  sysfs_remove_files+0x99/0xf0
[ 1351.156712][  T515]  del_gendisk+0x241/0xb60
[ 1351.161120][  T515]  loop_remove+0x42/0xa0
[ 1351.165409][  T515]  loop_control_ioctl+0x547/0x600
[ 1351.170418][  T515]  ? loop_remove+0xa0/0xa0
[ 1351.174825][  T515]  do_vfs_ioctl+0x6d1/0x15b0
[ 1351.179406][  T515]  __x64_sys_ioctl+0xd4/0x110
[ 1351.184071][  T515]  do_syscall_64+0xcb/0x1c0
[ 1351.188562][  T515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1351.194441][  T515] RIP: 0033:0x7f66b979e109
[ 1351.198841][  T515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1351.218521][  T515] RSP: 002b:00007f66b8914168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1351.226920][  T515] RAX: ffffffffffffffda RBX: 00007f66b98b0f60 RCX: 00007f66b979e109
[ 1351.234971][  T515] RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000003
[ 1351.243018][  T515] RBP: 00007f66b97f805d R08: 0000000000000000 R09: 0000000000000000
[ 1351.251063][  T515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
02:12:04 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc) (async)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1) (async, rerun: 64)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, 0x0, 0x8891) (rerun: 64)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

02:12:04 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xa)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r1, 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[], 0xe8}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="a0010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a0}, 0x1, 0x0, 0x0, 0x4080}, 0x40)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0x40, 0x0)
r6 = ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
r7 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r7)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)

[ 1351.259026][  T515] R13: 00007fffeeb12adf R14: 00007f66b8914300 R15: 0000000000022000
[ 1351.266997][  T515] ---[ end trace 0360cad81487266c ]---
[ 1351.303712][  T515] ------------[ cut here ]------------
[ 1351.309210][  T515] kernfs: can not remove 'events_async', no directory
[ 1351.316329][  T515] WARNING: CPU: 1 PID: 515 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90
[ 1351.325938][  T515] Modules linked in:
[ 1351.329829][  T515] CPU: 1 PID: 515 Comm: syz-executor.0 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1351.341258][  T515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1351.351408][  T515] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 1351.357571][  T515] Code: 48 89 c3 e8 c1 c6 af ff 48 89 df e8 69 f0 ff ff 31 db eb 29 e8 b0 c6 af ff 48 c7 c7 00 f8 a7 84 4c 89 fe 31 c0 e8 af f0 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 91 c6 af ff bb fe ff ff ff 48 c7 c7
[ 1351.377427][  T515] RSP: 0018:ffff8881e36ffcd0 EFLAGS: 00010246
[ 1351.383480][  T515] RAX: f16cb7a47ff32000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1351.391435][  T515] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1351.399404][  T515] RBP: ffffffff85a449e0 R08: ffffffff814a940a R09: ffffed103edeaa08
[ 1351.407462][  T515] R10: ffffed103edeaa08 R11: 1ffff1103edeaa07 R12: 0000000000000000
[ 1351.415506][  T515] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84bd5680
[ 1351.423468][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1351.432560][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1351.439480][  T515] CR2: 00007fb0f84f5505 CR3: 00000001edd1a000 CR4: 00000000003406e0
[ 1351.447538][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1351.455501][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1351.463459][  T515] Call Trace:
[ 1351.466747][  T515]  sysfs_remove_files+0x99/0xf0
[ 1351.471593][  T515]  del_gendisk+0x241/0xb60
[ 1351.475994][  T515]  loop_remove+0x42/0xa0
[ 1351.480225][  T515]  loop_control_ioctl+0x547/0x600
[ 1351.485234][  T515]  ? loop_remove+0xa0/0xa0
[ 1351.489980][  T515]  do_vfs_ioctl+0x6d1/0x15b0
[ 1351.494562][  T515]  __x64_sys_ioctl+0xd4/0x110
[ 1351.499225][  T515]  do_syscall_64+0xcb/0x1c0
[ 1351.503716][  T515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1351.509592][  T515] RIP: 0033:0x7f66b979e109
[ 1351.513992][  T515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1351.533581][  T515] RSP: 002b:00007f66b8914168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1351.541980][  T515] RAX: ffffffffffffffda RBX: 00007f66b98b0f60 RCX: 00007f66b979e109
[ 1351.549935][  T515] RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000003
[ 1351.557897][  T515] RBP: 00007f66b97f805d R08: 0000000000000000 R09: 0000000000000000
02:12:05 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppl2tp(r2, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), r2)
syz_genetlink_get_family_id$batadv(0x0, r2)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x8028040)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0), 0xc0, 0x0)
r4 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r1)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000b00), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r2)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c020000", @ANYRES16=r5, @ANYBLOB="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"], 0x26c}, 0x1, 0x0, 0x0, 0x48000}, 0x80)

[ 1351.565857][  T515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1351.573815][  T515] R13: 00007fffeeb12adf R14: 00007f66b8914300 R15: 0000000000022000
[ 1351.581777][  T515] ---[ end trace 0360cad81487266d ]---
[ 1351.592624][  T515] ------------[ cut here ]------------
[ 1351.608012][  T515] kernfs: can not remove 'events_poll_msecs', no directory
[ 1351.618346][  T515] WARNING: CPU: 1 PID: 515 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90
[ 1351.628049][  T515] Modules linked in:
[ 1351.631936][  T515] CPU: 1 PID: 515 Comm: syz-executor.0 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1351.643366][  T515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1351.653421][  T515] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 1351.659559][  T515] Code: 48 89 c3 e8 c1 c6 af ff 48 89 df e8 69 f0 ff ff 31 db eb 29 e8 b0 c6 af ff 48 c7 c7 00 f8 a7 84 4c 89 fe 31 c0 e8 af f0 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 91 c6 af ff bb fe ff ff ff 48 c7 c7
[ 1351.679152][  T515] RSP: 0018:ffff8881e36ffcd0 EFLAGS: 00010246
[ 1351.685295][  T515] RAX: f16cb7a47ff32000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1351.693257][  T515] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1351.701213][  T515] RBP: ffffffff85a449e0 R08: ffffffff814a940a R09: ffffed103edeaa08
[ 1351.709170][  T515] R10: ffffed103edeaa08 R11: 1ffff1103edeaa07 R12: 0000000000000000
[ 1351.717127][  T515] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84bd56a0
[ 1351.725087][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1351.733996][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1351.740564][  T515] CR2: 0000000000000000 CR3: 00000001edd1a000 CR4: 00000000003406e0
[ 1351.748527][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1351.756494][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1351.764446][  T515] Call Trace:
[ 1351.767725][  T515]  sysfs_remove_files+0x99/0xf0
[ 1351.772569][  T515]  del_gendisk+0x241/0xb60
[ 1351.776972][  T515]  loop_remove+0x42/0xa0
[ 1351.781228][  T515]  loop_control_ioctl+0x547/0x600
[ 1351.786240][  T515]  ? loop_remove+0xa0/0xa0
[ 1351.790643][  T515]  do_vfs_ioctl+0x6d1/0x15b0
[ 1351.795222][  T515]  __x64_sys_ioctl+0xd4/0x110
[ 1351.799886][  T515]  do_syscall_64+0xcb/0x1c0
[ 1351.804371][  T515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1351.810246][  T515] RIP: 0033:0x7f66b979e109
[ 1351.814648][  T515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1351.834250][  T515] RSP: 002b:00007f66b8914168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1351.842652][  T515] RAX: ffffffffffffffda RBX: 00007f66b98b0f60 RCX: 00007f66b979e109
[ 1351.850617][  T515] RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000003
[ 1351.858579][  T515] RBP: 00007f66b97f805d R08: 0000000000000000 R09: 0000000000000000
[ 1351.866629][  T515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1351.874589][  T515] R13: 00007fffeeb12adf R14: 00007f66b8914300 R15: 0000000000022000
[ 1351.882813][  T515] ---[ end trace 0360cad81487266e ]---
[ 1351.890725][  T515] ------------[ cut here ]------------
[ 1351.896916][  T515] kernfs: can not remove 'bdi', no directory
[ 1351.903653][  T515] WARNING: CPU: 1 PID: 515 at fs/kernfs/dir.c:1504 kernfs_remove_by_name_ns+0x61/0x90
[ 1351.913172][  T515] Modules linked in:
[ 1351.917058][  T515] CPU: 1 PID: 515 Comm: syz-executor.0 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1351.928583][  T515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1351.938643][  T515] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 1351.944781][  T515] Code: 48 89 c3 e8 c1 c6 af ff 48 89 df e8 69 f0 ff ff 31 db eb 29 e8 b0 c6 af ff 48 c7 c7 00 f8 a7 84 4c 89 fe 31 c0 e8 af f0 88 ff <0f> 0b bb fe ff ff ff eb 16 e8 91 c6 af ff bb fe ff ff ff 48 c7 c7
[ 1351.964641][  T515] RSP: 0018:ffff8881e36ffd10 EFLAGS: 00010246
[ 1351.970694][  T515] RAX: f16cb7a47ff32000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1351.978652][  T515] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1351.986611][  T515] RBP: 0000000000000000 R08: ffffffff814a940a R09: ffffed103edeaa08
[ 1351.994572][  T515] R10: ffffed103edeaa08 R11: 1ffff1103edeaa07 R12: 1ffff11039fc8a00
[ 1352.002529][  T515] R13: ffff8881cfe454e8 R14: 0000000000000000 R15: ffffffff84bd5140
[ 1352.010490][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1352.019497][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1352.026067][  T515] CR2: 0000001b2ef21000 CR3: 00000001edd1a000 CR4: 00000000003406e0
[ 1352.034027][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1352.041986][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1352.050037][  T515] Call Trace:
[ 1352.053319][  T515]  del_gendisk+0x533/0xb60
[ 1352.057725][  T515]  loop_remove+0x42/0xa0
[ 1352.061959][  T515]  loop_control_ioctl+0x547/0x600
[ 1352.067167][  T515]  ? loop_remove+0xa0/0xa0
[ 1352.071743][  T515]  do_vfs_ioctl+0x6d1/0x15b0
[ 1352.076326][  T515]  __x64_sys_ioctl+0xd4/0x110
[ 1352.080986][  T515]  do_syscall_64+0xcb/0x1c0
[ 1352.085532][  T515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1352.091409][  T515] RIP: 0033:0x7f66b979e109
[ 1352.095812][  T515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
02:12:05 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8e}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x480000}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40860}, 0x4000)
r3 = ioctl$LOOP_CTL_ADD(r0, 0x2, 0xc)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)

[ 1352.115402][  T515] RSP: 002b:00007f66b8914168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1352.123799][  T515] RAX: ffffffffffffffda RBX: 00007f66b98b0f60 RCX: 00007f66b979e109
[ 1352.131762][  T515] RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000003
[ 1352.140329][  T515] RBP: 00007f66b97f805d R08: 0000000000000000 R09: 0000000000000000
[ 1352.148292][  T515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1352.156251][  T515] R13: 00007fffeeb12adf R14: 00007f66b8914300 R15: 0000000000022000
[ 1352.164312][  T515] ---[ end trace 0360cad81487266f ]---
[ 1352.180157][  T515] kasan: CONFIG_KASAN_INLINE enabled
[ 1352.188599][  T515] kasan: GPF could be caused by NULL-ptr deref or user memory access
[ 1352.197940][  T515] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[ 1352.204880][  T515] CPU: 1 PID: 515 Comm: syz-executor.0 Tainted: G        W         5.4.190-syzkaller-00003-g569d38047a0f #0
[ 1352.216320][  T515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[ 1352.226377][  T515] RIP: 0010:strlen+0x2a/0x60
[ 1352.230952][  T515] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01
[ 1352.250893][  T515] RSP: 0018:ffff8881e36ffc70 EFLAGS: 00010246
[ 1352.256959][  T515] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1352.264923][  T515] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1352.273402][  T515] RBP: 0000000000000000 R08: ffffffff81b05b29 R09: ffffed103c6dff9b
[ 1352.281360][  T515] R10: ffffed103c6dff9b R11: 1ffff1103c6dff9a R12: ffffffffffffffff
[ 1352.289319][  T515] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[ 1352.297628][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 1352.306582][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1352.313153][  T515] CR2: 000000000000000c CR3: 00000001edd1a000 CR4: 00000000003406e0
[ 1352.321116][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1352.329165][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1352.337215][  T515] Call Trace:
[ 1352.340503][  T515]  kernfs_name_hash+0x1e/0x220
[ 1352.345342][  T515]  kernfs_find_ns+0x6b/0x260
[ 1352.349920][  T515]  kernfs_remove_by_name_ns+0x32/0x90
[ 1352.357020][  T515]  del_gendisk+0x92d/0xb60
[ 1352.361425][  T515]  loop_remove+0x42/0xa0
[ 1352.365661][  T515]  loop_control_ioctl+0x547/0x600
[ 1352.370758][  T515]  ? loop_remove+0xa0/0xa0
[ 1352.375170][  T515]  do_vfs_ioctl+0x6d1/0x15b0
[ 1352.379759][  T515]  __x64_sys_ioctl+0xd4/0x110
[ 1352.384422][  T515]  do_syscall_64+0xcb/0x1c0
[ 1352.388914][  T515]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1352.394973][  T515] RIP: 0033:0x7f66b979e109
[ 1352.399638][  T515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1352.419229][  T515] RSP: 002b:00007f66b8914168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
02:12:05 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xc)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="0701fdaabdb6b636eed438f13168ab6f8358eb8bb612b44098c1ea38fee5450dc9af30b808e1c1db0e99932f2ed10a793e59f277bb3e2060e133aabfc8f3774ab29e83620b1b2d14b664ce9b64d13750991959682512c0c2a15d9001b44fc7a3f87620bf6eb95b8e438c4cb9d24e3247cd7341d3e481718b0c01daf0bbc0ffc9a1f341c51d8e9e5a9b9a12ee909433f61cf600960ace537afcc7163f4026814e9810d54b5845eb7fd76935843807d72a7b7e6ccd6ed345e7dc7ce75da4dd", 0xbe, 0x4800, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x8891)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e8000000", @ANYRES16=r2, @ANYBLOB="a7"], 0xe8}}, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000180)={0x2d4, r2, 0x0, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0xd8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "1d5182db84a9ff91311e980fa4fdfd4366010a36a9aab082"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xeb}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "70c745c28ffa87d17c607dcb122616a90bb25c06b57f"}}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "cefe41230ec9d9674f5face5e09d26fa0d836373fe3abe4f6055"}}]}, @TIPC_NLA_LINK={0xa8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffa}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xf0000000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffff}]}, @TIPC_NLA_MEDIA={0xd4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe29d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4578}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xebcc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf75}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1a55}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x2d4}, 0x1, 0x0, 0x0, 0x11}, 0x4000000)

[ 1352.427719][  T515] RAX: ffffffffffffffda RBX: 00007f66b98b0f60 RCX: 00007f66b979e109
[ 1352.435682][  T515] RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000003
[ 1352.443643][  T515] RBP: 00007f66b97f805d R08: 0000000000000000 R09: 0000000000000000
[ 1352.451605][  T515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1352.459579][  T515] R13: 00007fffeeb12adf R14: 00007f66b8914300 R15: 0000000000022000
[ 1352.467672][  T515] Modules linked in:
[ 1352.491840][  T515] ---[ end trace 0360cad814872670 ]---
[ 1352.505599][  T515] RIP: 0010:strlen+0x2a/0x60
[ 1352.512046][  T515] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01
[ 1352.532823][  T515] RSP: 0018:ffff8881e36ffc70 EFLAGS: 00010246
[ 1352.538915][  T515] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f5dc1f80
[ 1352.549499][  T515] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1352.560770][  T515] RBP: 0000000000000000 R08: ffffffff81b05b29 R09: ffffed103c6dff9b
[ 1352.568937][  T515] R10: ffffed103c6dff9b R11: 1ffff1103c6dff9a R12: ffffffffffffffff
[ 1352.580080][  T515] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[ 1352.588167][  T515] FS:  00007f66b8914700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 1352.598190][  T515] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1352.604914][  T515] CR2: 00007ffff991e020 CR3: 00000001edd1a000 CR4: 00000000003406f0
[ 1352.613079][  T515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1352.621075][  T515] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1352.629228][  T515] Kernel panic - not syncing: Fatal exception
[ 1352.635424][  T515] Kernel Offset: disabled
[ 1352.639731][  T515] Rebooting in 86400 seconds..