last executing test programs:

6m4.40227982s ago: executing program 2 (id=1414):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
readv(r0, &(0x7f0000000140), 0x0)
write$binfmt_aout(r0, &(0x7f0000000d00)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r0}, 0x8)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'tunl0\x00', &(0x7f0000000440)={'syztnl1\x00', <r2=>0x0, 0x1, 0x40, 0x8, 0x2, {{0x20, 0x4, 0x2, 0x25, 0x80, 0x67, 0x0, 0x2, 0x2f, 0x0, @multicast1, @private=0xa010102, {[@generic={0x83, 0x6, "c212a7b9"}, @end, @generic={0x15, 0x2}, @cipso={0x86, 0x36, 0x2, [{0x2, 0x4, "2a85"}, {0x6, 0x6, "1e17b5a8"}, {0x1, 0xe, "bf1dbe1b6c29d2cb189f7301"}, {0x0, 0x6, "2f0518d4"}, {0x5, 0x6, "431b59af"}, {0x6, 0xc, "f8b51ee0b5b4070c50b8"}]}, @ssrr={0x89, 0x1f, 0x14, [@empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, @dev={0xac, 0x14, 0x14, 0x30}, @broadcast, @broadcast, @rand_addr=0x64010102]}, @end, @timestamp={0x44, 0xc, 0x52, 0x0, 0x1, [0x7fe3864f, 0xfcf4]}]}}}}})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r3=>r1, {0x0, 0xee01}}, './file0\x00'})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000540)={0x0, r0}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x19, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', r2, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000080)={0x0, 0x5, 0x1, "fd"}, 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x23, &(0x7f0000000340)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000100)={0x0, 0x5}, 0x8)
socket$nl_rdma(0x10, 0x3, 0x14)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./file0\x00', 0xc80, &(0x7f0000020100)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b26209f1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc563b62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x1, 0x27c, &(0x7f0000000600)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r7, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)
writev(r7, &(0x7f0000000240)=[{0x0}, {0x0}], 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, 0x0)

6m3.313299777s ago: executing program 2 (id=1426):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080)={[{@errors_remount}, {@noload}, {@nogrpid}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@acl}, {@resgid}], [], 0x3d}, 0x1, 0x51f, &(0x7f00000007c0)="$eJzs3UFsI1cZAOB/HDvd7KZNChygEqXQouwK1k4a2kY9lCIhOFUCyn0JiRNFceIodtpNVEFWHDgiIQRInMqFCxInTkioEheOCKkSnEGAQAi2cEACdirb4+xuMk6yG8fOJt8nTea955n3v+doxn7jp5kALqxnIuLViLiTpum1iJjIygvZErudpbXde7ffWmgtSaTp6/9IIsnKunWlbY/FlWy3SxHxlS9GfD05GLexvbM6X6tVN7N8pbm2UWls71xfWZtfri5X12dnZ16ce2nuhbnpvvRzPCJe+fxfvv+dn3zhlV9++s0/3vjb1W8kWXns68cDKh72YqfrpfZ7ce8Omw8Z7CwqtnuYGcvbYuRAya1TbhMAAL19ICI+ERHXYiJGDv86CwAAADyC0s+Ox/+S7m93B4z2KAcAAAAeIYX2HNikUM7m+45HoVAuR3sO74ficqFWbzQ/tVTfWl/szJWdjFJhaaVWnc7mCk9GKWnlZ9rpu/nn9+VnI+LJiPjexFg7X16o1xaHffEDAAAALogr+8b//57ojP8BAACAc2Zy2A0AAAAATp3xPwAAAJx/xv8AAABwrn3ptddaS9p9/vXiG9tbq/U3ri9WG6vlta2F8kJ9c6O8XK8vt+/Zt3ZUfbV6feMzsb51s9KsNpqVxvbOjbX61nrzxsp9j8AGAAAABujJj73z+yQidl8eay8to8fb9ZibAWdVcS+VZOucw/oPT3TWfx5Qo4CBGBl2A4ChKQ67AcDQlIbdAGDokiNe7zl55zfZ+uP9bQ8AANB/Ux/J//3/6OuCu4UBNA84RQ5iALh42t/zjzuT15cFOFdKZgDChXfi3/+PlKYP1CAAAKDvxttLUihnl/fGo1AolyMebz8WoJQsrdSq0xHxRET8bqL0WCs/094zOXLMAAAAAAAAAAAAAAAAAAAAAAAAAAB0pGkSKQAAAHCuRRT+mvyqcy//qYnnxvdfHxhN/jMR2SNC3/zR6z+4Od9sbs60yv+5V978YVb+/DCuYAAAAMCFUHyQjbvj9O44HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD66b3bby10l0HG/fvnImIyL34xLrXXl6IUEZf/lUTxnv2SiBjpQ/yx1p8P58VPWs3aC5kXf+ztk8ffvXVo/JjM3oW8+FdOHh4utHda559X846/QjzTXucff8WI+/IPq/f5L/bOfyM9jv/HjxnjqXd/VukZ/1bEU8X88083ftIj/rN5Ff782weKvvbVnZ1e8dO3I6ZyP3+S+2JVmmsblcb2zvWVtfnl6nJ1fXZ25sW5l+ZemJuuLK3Uqtnf3Bjf/egv7hzW/8s94k8e0f/ncuobzSn7/7s3b3+wkyzlxb/6bE78X/842+Jg/EL22ffJLN16faqb3u2k7/X0T3/79GH9X+zR/6P+/1d7VbrPtS9/60/H3BQAGIDG9s7qfK1W3TwbiZej7zW3RvhD79ejl/hveiaacbqJb/a1wjRN09YxdYJ6khjcm5Ac3tRhn5kAAIB+u/ulf9gtAQAAAAAAAAAAAAAAAAAAgItrEHca2x9zdy+V9OMW2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAffF+AAAA///0iOAC")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
statfs(&(0x7f0000000000)='./file0\x00', 0x0)

6m2.364282771s ago: executing program 2 (id=1431):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
r2 = socket(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x10, 0x0)
write(r2, &(0x7f0000000240)="240000001a007f0214f9f4070009040803000000000000050000000008000f40fe000000", 0x24)

6m2.078570555s ago: executing program 2 (id=1433):
r0 = syz_open_dev$sg(0x0, 0x0, 0x802)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x1004081, &(0x7f0000000380)=ANY=[], 0x2, 0x81c, &(0x7f0000001540)="$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")
mkdir(&(0x7f0000004bc0)='./file1/file0\x00', 0x3f)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYRES32=r2, @ANYRES8=r0, @ANYRES16=r0, @ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000400)='signal_generate\x00', r3}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000090900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a300000000028000480240001800a0001007175657565000000140002800600014000020000060003400001000014000000110001"], 0xd8}}, 0x4000040)
syz_clone(0x800400, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x2)
readv(r5, &(0x7f0000000640)=[{&(0x7f00000001c0)=""/212, 0xd4}], 0x1)

6m1.524472424s ago: executing program 2 (id=1438):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00', <r0=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = inotify_init()
ioctl$PPPIOCSMRRU(0xffffffffffffffff, 0x4004743b, &(0x7f00000004c0)=0xf)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r6 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f00000002c0)=[@ip_retopts={{0x48, 0x0, 0x7, {[@rr={0x7, 0x7, 0x17, [@dev={0xac, 0x14, 0x14, 0x35}]}, @rr={0x7, 0x23, 0x7f, [@loopback, @dev={0xac, 0x14, 0x14, 0x2c}, @local, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, @multicast1, @rand_addr=0x64010101]}, @lsrr={0x83, 0xb, 0x3f, [@rand_addr=0x64010100, @local]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @loopback}}}], 0x68}, 0x40010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYRES64=r2, @ANYRES32=r7, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff004}, {0x6}]}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
sendfile(r10, 0xffffffffffffffff, 0x0, 0x104)

6m1.193175049s ago: executing program 2 (id=1441):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
r0 = getpgrp(0xffffffffffffffff)
process_vm_writev(r0, &(0x7f0000000f40)=[{&(0x7f00000003c0)=""/91, 0x5b}, {&(0x7f0000000080)=""/10, 0xa}, {&(0x7f0000000580)=""/95, 0x5f}, {&(0x7f0000000800)=""/253, 0xfd}, {&(0x7f0000000600)=""/81, 0x51}, {&(0x7f0000000900)=""/240, 0xf0}, {&(0x7f0000000b40)=""/230, 0xe6}, {&(0x7f0000000c40)=""/234, 0xea}, {&(0x7f0000000d40)=""/230, 0xe6}, {&(0x7f0000000e40)=""/89, 0x59}, {&(0x7f0000000ec0)=""/81, 0x51}], 0x62, &(0x7f0000000440), 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYBLOB="0300000000000000000000000000200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000007ee945c56d20bd7ac3b8ed"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000180)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000001900)=ANY=[@ANYBLOB="d5af8494cdb0d1e77d263504917e35d9a498f88fe0767ff15c607f8754ad52511d2b29be0a18d2315445ec31b795a6b38d7b7b56231c49c9ad772aaeff88694771c147c44998bf66f4d84f32f1", @ANYRES8=r2, @ANYBLOB="67002a5d0d936a2488a5ea03f8301acfcfa44ee35b26fab675c39e2728a3a0a851febccbdd84704d33c68fa9d27df2a983cedc0638ac63c3b87156d20dc596adecb44374f96d72ac40c499174815e954e03f31bb4784bb2a5d3fd742652233d3f930fb993bddea59cfb422eb1dbe33b2d0c82ada5258dcda122d4ff2333ba0fe8b00720dec63bec306e66268b8ddc06331b6b80089333e9f6b", @ANYRESHEX=r0, @ANYRESOCT=r2], 0x50)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="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"/338], 0xa4}}, 0x0)
close(r3)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r3, 0x40047451, &(0x7f0000000180))
ioctl$TUNGETVNETLE(r3, 0x40047451, &(0x7f00000002c0))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, <r6=>0xffffffffffffffff}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140))
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x7ffff000)
getpid()
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="30001000", @ANYRES16=r11, @ANYBLOB="01000000000000000000010000001c0001800500020000000000060001000200000008000300ac1414aa"], 0x30}}, 0x0)

6m1.153745889s ago: executing program 32 (id=1441):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
r0 = getpgrp(0xffffffffffffffff)
process_vm_writev(r0, &(0x7f0000000f40)=[{&(0x7f00000003c0)=""/91, 0x5b}, {&(0x7f0000000080)=""/10, 0xa}, {&(0x7f0000000580)=""/95, 0x5f}, {&(0x7f0000000800)=""/253, 0xfd}, {&(0x7f0000000600)=""/81, 0x51}, {&(0x7f0000000900)=""/240, 0xf0}, {&(0x7f0000000b40)=""/230, 0xe6}, {&(0x7f0000000c40)=""/234, 0xea}, {&(0x7f0000000d40)=""/230, 0xe6}, {&(0x7f0000000e40)=""/89, 0x59}, {&(0x7f0000000ec0)=""/81, 0x51}], 0x62, &(0x7f0000000440), 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYBLOB="0300000000000000000000000000200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000007ee945c56d20bd7ac3b8ed"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000180)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000001900)=ANY=[@ANYBLOB="d5af8494cdb0d1e77d263504917e35d9a498f88fe0767ff15c607f8754ad52511d2b29be0a18d2315445ec31b795a6b38d7b7b56231c49c9ad772aaeff88694771c147c44998bf66f4d84f32f1", @ANYRES8=r2, @ANYBLOB="67002a5d0d936a2488a5ea03f8301acfcfa44ee35b26fab675c39e2728a3a0a851febccbdd84704d33c68fa9d27df2a983cedc0638ac63c3b87156d20dc596adecb44374f96d72ac40c499174815e954e03f31bb4784bb2a5d3fd742652233d3f930fb993bddea59cfb422eb1dbe33b2d0c82ada5258dcda122d4ff2333ba0fe8b00720dec63bec306e66268b8ddc06331b6b80089333e9f6b", @ANYRESHEX=r0, @ANYRESOCT=r2], 0x50)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="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"/338], 0xa4}}, 0x0)
close(r3)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r3, 0x40047451, &(0x7f0000000180))
ioctl$TUNGETVNETLE(r3, 0x40047451, &(0x7f00000002c0))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, <r6=>0xffffffffffffffff}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140))
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x7ffff000)
getpid()
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="30001000", @ANYRES16=r11, @ANYBLOB="01000000000000000000010000001c0001800500020000000000060001000200000008000300ac1414aa"], 0x30}}, 0x0)

3.454870668s ago: executing program 0 (id=5529):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'erspan0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x10300, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14) (fail_nth: 1)

3.447313019s ago: executing program 5 (id=5530):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xc475}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0) (fail_nth: 3)

3.146582293s ago: executing program 0 (id=5531):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r2], 0x90}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x94)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x46, &(0x7f00000001c0)=0x8001, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
dup2(r3, r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000980)='sys_enter\x00', r6, 0x0, 0x5}, 0x18)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='nonumtail=0,uni_xlate=1,allow_utime=00000000000000000000006,shortname=mixed,iocharset=koi8-ru,nonumtail=0,dmask=00000000000000000000007,shortname=winnt,uni_xlate=1,uni_xlate=1,nonumtail=0,shortname=win95,iocharset=utf8,quiet,shortname=win95,utf8=1,nnonumtail=1,shortname=mixed,nonumtail=0,shortname=win95,uid<', @ANYRESDEC=0xee01, @ANYBLOB=',rootcontext=staff_u,smackfsfloor=,euid=', @ANYRESDEC=0x0, @ANYRES8=r3], 0x0, 0x2a4, &(0x7f0000000580)="$eJzs3T1re1UYAPDnpmkSdUgGJxG8oIPTn7arS4qkUMykZFAHLbYFaYLQQsEXDJ1cXRz9BILg5pdw8RsIroKbHQpHbnIvSWuaNtK0vvx+Q3t67vOc85zTQ18oOf3w5dHJYR7HF1/8Eq1WFrVudOMyi07UopJSSjHT/ToAgH+zy5Ti9zS1Sl4WEa31lQUArNHK3/9/WHtJAMCavfPue2/t9vu9t/O8FXujr84HxW/2xfvp893j+DiGcRRb0Y6r6d8Cqp8Wird7KaVxPS904rXR+HxQZI4++Kkcf/e3iEn+drSjM+m6nr/f723nU3P546KO58v5u0X+TrTjxQXz7/d7OwvyY9CI11+dq/9ZtOPnj+KTGMbhpIhZ/pfbef5m+uaPz98vyivys/H5oDmJm0kbj/ypAQAAAAAAAAAAAAAAAAAAAADgP+xZeXdOMyb39xRd5f07G1fFB5uRVzrX7+eZ5mfVQDfuBxqn+DalZj2i39vK8zyVgbP8erxUj/rTrBoAAAAAAAAAAAAAAAAAAAD+Wc4+/ezkYDg8On2QRnUbQPWy/r87Tneu55VYHtyczVUrm0tGjo0qJotYWkaxiAfalrsaz91W83ffrzpg6+6YzWX78zCN6nSdHGSL97AZVU+rOiQ/zsc04p5zNW57lFY6fo2Fj9orr73xwqQxXhIT2bLC3vh1unNlT3ZzFY3Jri5M3ywbc+k3zsZK5/mvXysyt3UAAAAAAAAAAAAAAAAAAMBazV70u+DhxdLUWmqurSwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFSz//+/QmNcJt8juBGnZ0+8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP4H/gwAAP//GX9i/A==")
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
timer_create(0x2, &(0x7f0000000300)={0x0, 0xc, 0x1, @thr={&(0x7f0000000240)="c8e376220cae3f7715b743d6db6031f81460084c1a364e99c399f9d6fdc5127a1073f05aace5d0fda5e639fa0baea37b4f164cdef5db9216503d33066f6d6d1bb4e6d967788838e78c7a3ce9bc5e58908a4a6046daa6439a45de92b84b51668f3fdd32d5c4e62123bf4f75322db8fd376832b6acee8ae78afefe6fbfe6bdc99fb352c4d6ff787047125f4fc7a1", &(0x7f0000000380)="4bc6c217a81fd884bb485e3c39c808af98f6e8529e37c7ce40bef28c17a4cfd45de07afd3fffad06433af8c1a9e4f4863d355faf22a272d51c1724eaf700704a39f5334ccb947e5f3f1fd11fbc51c7915f8a769115"}}, &(0x7f0000000440)=<r7=>0x0)
timer_delete(r7)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000014c0)=ANY=[@ANYBLOB="5801000010000100000000000000010000000000000000000000000000000000ff01000000000000000000000000000100000000000000000000200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x158}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f0000000000)=ANY=[], 0x3, 0x7bf, &(0x7f0000000d80)="$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")
r9 = syz_clone(0x200, &(0x7f0000000480)="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", 0xfd, &(0x7f0000001cc0), &(0x7f0000001d00), &(0x7f0000001d40)="f984408756917df241af27f21d58b66f73c0e60f17a07460ca50e690ea932e8574d38d08afe53de0256dd72110b83e528986357ea24a19f4db2f935794f27d89cfd338d139d29b2866d399a201b480eeb1a3e692d0ab4f724244163f1302d5d1c18fff067eeb69424ed8064d5f4037b26d65c9305c61cad73f9a7168529979")
ioprio_get$pid(0x2, r9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0x0)

3.045242575s ago: executing program 5 (id=5532):
r0 = socket(0x10, 0x3, 0x4)
fchown(r0, 0x0, 0x0)

3.003836455s ago: executing program 0 (id=5533):
accept4$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000180)=0x1c, 0x80000)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x2c, &(0x7f00000001c0)=[@in6={0xa, 0x4e23, 0x4, @mcast2, 0x5}, @in={0x2, 0x4e22, @local}]}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x1, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff"], &(0x7f0000000400)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="300000000000000084"], 0x30}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1, 0x0, 0x6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
syz_open_dev$sg(&(0x7f0000000040), 0x3e6, 0xc0000)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0x3}, 0x18)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x4041, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x8, 0x2}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0xb)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000000f80)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r8, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102036c00fe08000e40000200875a65969ff57bea000000000000000000000000ac1414aa"], 0xfdef)
r11 = socket$inet(0x2, 0x2, 0x2)
setsockopt$sock_int(r11, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
connect$inet(r11, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)

2.996300995s ago: executing program 5 (id=5534):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="840100", @ANYRES16=r3, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054000b8008000900"], 0x184}}, 0x0)

2.948272796s ago: executing program 5 (id=5535):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0, r1}, 0x18)
syz_open_procfs$pagemap(0x0, 0x0)
gettid()
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000780), &(0x7f0000000280)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x18)
io_getevents(0x0, 0x3, 0x3, &(0x7f00000010c0)=[{}, {}, {}], &(0x7f0000001140)={0x0, 0x3938700})
semop(0x0, 0x0, 0x0)
semctl$GETZCNT(0x0, 0x4, 0xf, 0x0)
read$char_usb(0xffffffffffffffff, &(0x7f00000030c0)=""/4110, 0x100e)
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x8001, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x40, &(0x7f0000000680))
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298)
sendto$inet(r5, 0x0, 0x0, 0x24000080, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000017c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r7, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000001e40)={0x2c, r6, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x54014840}, 0x20000000)

2.592357741s ago: executing program 4 (id=5539):
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4e9, &(0x7f00000000c0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioprio_get$pid(0x3, 0xffffffffffffffff)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bind$tipc(r2, &(0x7f0000000340)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}, 0x100000}}, 0x10)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r7, {0x0, 0xc}, {}, {0xb, 0xa}}}, 0x24}}, 0x0)
io_uring_enter(r5, 0x37c6, 0xea51, 0x10, &(0x7f0000000600)={[0x6]}, 0x8)
r8 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r8, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)

2.374808615s ago: executing program 0 (id=5542):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x88640, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0xd16, 0x20000000, 0xfffffef9, 0x7fffffd, 0x5, "12e141f2fd71a6a76977920ea7e60c0ac7a4a5"})

2.373277885s ago: executing program 1 (id=5543):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r3, {0xfff1, 0x1}, {}, {0x8, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_MASK={0x8, 0x6, 0xc43}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0xa0600}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x12032}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x7fffffff}]}}]}, 0x5c}}, 0x0)

2.263588756s ago: executing program 1 (id=5546):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r3, @ANYBLOB="01000000000000000000010000000400048008000200010000000800010000000000040008"], 0x184}}, 0x0)

2.235102317s ago: executing program 3 (id=5547):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010400000000000000000500fffe0900010073797a30000000002c000000030a01020000000000000000050000000900010073797a30000000000900030073797a3200000000e4040000060a010400000000000000000500000008000b40000000000900010073797a30000000000800"], 0x558}}, 0x40)
open(&(0x7f0000000480)='./bus\x00', 0x1050c1, 0x170)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00"/13], 0x48)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000780)={{{@in=@empty, @in6=@private0, 0x4e24, 0x1, 0x4e20, 0xc, 0xa, 0xa0, 0x60, 0x29}, {0x8000, 0x6, 0x1, 0xfffffffffffffff7, 0x8, 0x4, 0x4, 0x101}, {0x80000001, 0xa5, 0x46b, 0x6}, 0x1, 0x6e6bbd, 0x2}, {{@in=@multicast1, 0x4d5, 0x33}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3503, 0x3, 0x2, 0xff, 0x1, 0x10001, 0x10001}}, 0xe8)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)

2.226723427s ago: executing program 0 (id=5548):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f00000003c0)={0x1, <r3=>r2, 'id0\x00'})
accept4$inet(r3, 0x0, &(0x7f0000000300), 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000004}, 0x18)
r4 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000000000), 0x4)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000fcb000)=0xfffffffc, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8=r5, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007240000f8ffffffb703000008000000b704000000000000850000000300000095ce2367f54489804a0b0ae3262a039dc758c6d665cc87c022e93a1d934b9731f822ccc29b46ddee75b64864cf"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x42, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$kcm(0x10, 0x2, 0x0)
r8 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000006c8b, 0x37}, 0x7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x90040, 0x0)
ioctl$TCSETS(r10, 0x5402, &(0x7f0000000180)={0x0, 0x9, 0x9, 0x7, 0x10, "9bce34cfd30425901db8dd9f6a1f1480abe210"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f00000003c0), &(0x7f00000001c0)=r8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESDEC=r7, @ANYRES32, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095", @ANYRESDEC=r7], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

2.160124338s ago: executing program 1 (id=5549):
r0 = socket$inet(0x2, 0x3, 0xd)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28) (fail_nth: 3)

1.614113336s ago: executing program 0 (id=5550):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x200000001300, 0x200000001330], 0x0, 0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000001000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffff200100c7a1c8d1000000000000000000000000000000000000000000006a40d207000000fcffffff00"/144]}, 0x108)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b000000", @ANYRES32, @ANYBLOB='\f\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000010000000300"/28], 0x50)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89a1, &(0x7f0000000080))
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)}, 0x9cdc2384056b48b8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
r1 = socket$unix(0x1, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kmem_cache_free\x00'}, 0x18)
bind$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.243294292s ago: executing program 1 (id=5551):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
io_uring_setup(0x4663, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}, 0x1, 0x40030000000000}, 0x4000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff00000000030000000000000000000000020000000000000000000000000000040300"], 0x0, 0x56, 0x0, 0x3}, 0x28)
write$selinux_user(0xffffffffffffffff, &(0x7f00000002c0)={'system_u:object_r:fixed_disk_device_t:s0', 0x20, 'user_u\x00'}, 0x30)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000140)=0x8f84, 0x1, 0x5)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendto(r6, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000000900)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380), 0x0, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="40000108", @ANYRES16=r8, @ANYBLOB="00032dbd7000fedbdf25120000001c00118004000600040006000400040004000100040005000400030005007400020000000800a40002000000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="d400000026aed42ab884fe3ba85bfc22a885265ec4ef4e8a68f1b71e0eee29c60216b02d531309361f305dc8eec48ea39d6d82bcd592d6cf8932c17a9e3aaccb4ca7e1bb0313ea17fb9f989acd49c4722b33d9", @ANYRES16=r8, @ANYBLOB="080028bd7000fedbdf253700000008000300", @ANYRES32=r9, @ANYBLOB="0800570002000000050019010b0000000500180124000000050019010f0000000800a100010000000800570002000000080026006c090000080022012403000005001801270000000800a100000001000800a0003bd40000050019010800000008002700030000000800270001000000080026006c090000080022017a0300000800a1000500000008009f000600000005001901070000000800a10004000000050018010d00000008002600201700000800a00007000000"], 0xd4}}, 0xc001)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="30002cbd7000ffdbdf256300000008000300", @ANYRES32=r9, @ANYBLOB="0c009900190000002f000000"], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000140}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x34, 0x0, 0x200, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0xb, 0x43}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x34}}, 0x40000)
pipe2(&(0x7f0000000000), 0x0)

1.242553972s ago: executing program 3 (id=5552):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001740)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x84, 0x7fffffff}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4000000000]}, 0x8, 0x0)
faccessat2(r1, &(0x7f0000000040)='\x00', 0x2, 0x1200)

1.210227952s ago: executing program 3 (id=5553):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
r4 = syz_open_pts(r3, 0x800)
r5 = dup(r4)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

1.144520573s ago: executing program 3 (id=5554):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001740)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x84, 0x7fffffff}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4000000000]}, 0x8, 0x0)
faccessat2(r1, &(0x7f0000000040)='\x00', 0x2, 0x1200)

1.123583533s ago: executing program 4 (id=5555):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000fc0)=ANY=[@ANYBLOB="726177020000000000000066490000000000000000000000000000000000000002"], 0x48) (fail_nth: 3)

994.700155ms ago: executing program 3 (id=5556):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r3, {0xfff1, 0x1}, {}, {0x8, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_MASK={0x8, 0x6, 0xc43}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0xa0600}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x12032}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x7fffffff}]}}]}, 0x5c}}, 0x0)

906.745247ms ago: executing program 4 (id=5557):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000040)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r0}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r2, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054000b800800090000000000080009000000000008000a000000000008000a000000000008000a000000000008000900000000000800097c86b722735035dc0067f6b13308000a000000000008000a000000000008000900975b9b5e04000b801c000b80080009"], 0x184}}, 0x0)

844.401938ms ago: executing program 3 (id=5558):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='kfree\x00', r2}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r0, @ANYRESDEC=0x0], 0x0, 0x4}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x13, 0x8, &(0x7f00000009c0)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x3, &(0x7f00000004c0)=[{0x3, 0x0, 0x0, 0x7fff0006}, {0x400, 0x6e, 0x0, 0xf40}, {0xfff, 0x8, 0x3, 0x3eb}]})
syz_usb_connect$printer(0x3, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x201, 0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x7}, 0x440, 0x0, 0x7, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x64247000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='sys_enter\x00', r9}, 0x18)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fadvise64(r10, 0x5, 0x8, 0x4)
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, 0x0, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18)

682.41877ms ago: executing program 4 (id=5559):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000000)=@filter={'filter\x00', 0xe, 0x2, 0x250, [], 0x2, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000000000000000000000000100000000000000000000000000000002000000000ffffffff0000000000000000000000000000050000000000000000000000000000000000000000000000000000000000ffffffff0100000003000000000000000000697036677265300000000000000000007465616d30000000000000000000000076657468305f746f5f626f6e6400000076657468305f746f5f626f6e64000000aaaaaaaaaa0000000000"]}, 0x12c)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x74, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x60, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x4}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x74}}, 0x0)
chroot(&(0x7f0000000080)='./file0/../file0\x00')
openat$tun(0xffffffffffffff9c, 0x0, 0x200100, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_timeval(r2, 0x1, 0x2, &(0x7f0000000040), 0x10)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r3, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x4048001)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000380)={0x1d, 0x0, 0x2, {0x1, 0x0, 0x3}, 0xfd}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)

82.419749ms ago: executing program 5 (id=5560):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2409c8c1, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x88640, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_pts(r0, 0x141601)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000"], 0x50)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
write(r1, 0x0, 0x0)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0xd16, 0x20000000, 0xfffffef9, 0x7fffffd, 0x5, "12e141f2fd71a6a76977920ea7e60c0ac7a4a5"})

81.517529ms ago: executing program 4 (id=5561):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r3, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054000b800800090000000000080009000000000008000a000000000008000a000000000008000a000000000008000900000000000800097c86b722735035dc0067f6b13308000a000000000008000a000000000008000900975b9b5e04000b801c000b80080009"], 0x184}}, 0x0)

33.71033ms ago: executing program 1 (id=5562):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000040)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r0}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r2, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054000b800800090000000000080009000000000008000a000000000008000a000000000008000a000000000008000900000000000800097c86b722735035dc0067f6b13308000a000000000008000a000000000008000900975b9b5e04000b801c000b80080009"], 0x184}}, 0x0)

20.38952ms ago: executing program 5 (id=5563):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010400000000000000000500fffe0900010073797a30000000002c000000030a01020000000000000000050000000900010073797a30000000000900030073797a3200000000e4040000060a010400000000000000000500000008000b40000000000900010073797a30000000000800"], 0x558}}, 0x40)
open(&(0x7f0000000480)='./bus\x00', 0x1050c1, 0x170)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000780)={{{@in=@empty, @in6=@private0, 0x4e24, 0x1, 0x4e20, 0xc, 0xa, 0xa0, 0x60, 0x29}, {0x8000, 0x6, 0x1, 0xfffffffffffffff7, 0x8, 0x4, 0x4, 0x101}, {0x80000001, 0xa5, 0x46b, 0x6}, 0x1, 0x6e6bbd, 0x2}, {{@in=@multicast1, 0x4d5, 0x33}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3503, 0x3, 0x2, 0xff, 0x1, 0x10001, 0x10001}}, 0xe8)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)

19.2036ms ago: executing program 4 (id=5564):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000007000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0ff5b14104fe62cc60e413905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf2364149215108333719acd97cfa107d40224edc5465a93df8513a32ec450bebc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe511195418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4929330142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da8c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000dd11e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15f2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f000010000000000000905ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400bee3dfc8fb24f67c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341b74abaa7c95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb232bbdb9dc33cbd7643866fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595270fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f76dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d2e959efc71f665c4d75cf2458e3322c9062ece84c99a061997a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99f0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d164118e4cbe02400000000ff0700000000cc9d8046c216c1f895778cb25122a2a998de44aeadea2a40da8daccf080842a4867217373934bbd42dcb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcd62981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba495aea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000001700d6d5210d7560eb92d6a97a27602b81f76386f1535b1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294059323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946932d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1fc8df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1785eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be2f5656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fd78f9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28de0bbc76d58dd92606b1ef6486c85fa3e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6968d12418a4d2a0d086d8438d415d713acebc5b014e61a543a5a391f03daca80f08f0e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e112645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c000000000000000000000000000000a1c3da144589dcaddb71cf9374843e23f992a237a9040747e0434a8a643990b4059a98411ce867d1af7e8ea89f49e6f564d4dce8a7d6939a9214a7f39e83bd247e03a09dba000000000000000000000000aaf033d47249c8444bc13844cbf1be617d82b269e5ea0c0d525603c0ec543ea581f63893ae414a6683e941fdbdff03cfc5f8744583c0aa766a65321f907927a59d75b47f06895e8471ebc2840ce5bd054df223fb09b9c739ad64cfcfd2d498b0f11056f6c40874cb977c99b6bc1a8732198a17e610082b7ce0365f271b11d4b4a3d4c7d0bb273f406ecd4b26c93151c30f5a269991402d109becb1b9bafcb2b47e940000000000e540d8b0db3774effb7469a21f96e2594b2973ebf7a1bd9ace2ed4d6eb1735f85885be5be74dc2ea5d7d499bd28271b98f187f5879b16b409a04d78175cc8d0f707c822805d7011ed4b22419186dd2b22aadf15828db2ca19d79e1bf2f7989237ee5cb2e1eb7b2bfc92d3aa95a26f060935c4fee8b2d7d0bf3c6d82d04329164bd4ee0b8060183f36762b0440d9082d7c8b06e4c2024f77e1018758d28e7ee290f32a48bfc2aa10b3dba9bff00d2410f3477a8e0df689c880dc9a677cfaa16603527c06625a3363744cea5f2d350224cc0fea76c72ca08507235c67346722f20690fde0790f040f5fd3eff75f9b291cc5e9c686ebaadbe756c6fa039ff441e427ed12578d5cb041ebf729cfaa575cc852fbdb54e60435e6d62b9d270433b220ed9ff1ff042b8d3d866231c460765"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
r4 = syz_open_pts(r3, 0x800)
r5 = dup(r4)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

0s ago: executing program 1 (id=5565):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001740)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x84, 0x7fffffff}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4000000000]}, 0x8, 0x0)
faccessat2(r0, &(0x7f0000000040)='\x00', 0x2, 0x1200)

kernel console output (not intermixed with test programs):

  465.670675][T17771]  dump_stack_lvl+0xe8/0x140
[  465.670694][T17771]  dump_stack+0x15/0x1b
[  465.670710][T17771]  should_fail_ex+0x265/0x280
[  465.670747][T17771]  should_failslab+0x8c/0xb0
[  465.670818][T17771]  kmem_cache_alloc_noprof+0x50/0x310
[  465.670850][T17771]  ? getname_flags+0x80/0x3b0
[  465.670878][T17771]  getname_flags+0x80/0x3b0
[  465.670902][T17771]  do_sys_openat2+0x60/0x110
[  465.670936][T17771]  __x64_sys_openat+0xf2/0x120
[  465.670965][T17771]  x64_sys_call+0x1af/0x2fb0
[  465.670986][T17771]  do_syscall_64+0xd2/0x200
[  465.671058][T17771]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  465.671097][T17771]  ? clear_bhb_loop+0x40/0x90
[  465.671121][T17771]  ? clear_bhb_loop+0x40/0x90
[  465.671198][T17771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.671217][T17771] RIP: 0033:0x7f469b43d290
[  465.671233][T17771] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  465.671265][T17771] RSP: 002b:00007f4699a64b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  465.671287][T17771] RAX: ffffffffffffffda RBX: 0000000000141341 RCX: 00007f469b43d290
[  465.671303][T17771] RDX: 0000000000141341 RSI: 00007f4699a64c10 RDI: 00000000ffffff9c
[  465.671318][T17771] RBP: 00007f4699a64c10 R08: 0000000000000000 R09: 0000000000000000
[  465.671329][T17771] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[  465.671340][T17771] R13: 0000000000000000 R14: 00007f469b666160 R15: 00007ffd359509a8
[  465.671439][T17771]  </TASK>
[  466.171866][T17789] openvswitch: netlink: Message has 6 unknown bytes.
[  466.228710][T17798] 9pnet: p9_errstr2errno: server reported unknown error 
[  466.235945][T17795] loop4: detected capacity change from 0 to 1024
[  466.258006][T17795] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  466.287478][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.374478][T17815] vlan0: entered promiscuous mode
[  466.399156][T17823] loop4: detected capacity change from 0 to 1024
[  466.418810][T17823] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  466.433218][T17823] FAULT_INJECTION: forcing a failure.
[  466.433218][T17823] name failslab, interval 1, probability 0, space 0, times 0
[  466.446006][T17823] CPU: 1 UID: 0 PID: 17823 Comm: syz.4.4995 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  466.446037][T17823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  466.446052][T17823] Call Trace:
[  466.446059][T17823]  <TASK>
[  466.446068][T17823]  __dump_stack+0x1d/0x30
[  466.446165][T17823]  dump_stack_lvl+0xe8/0x140
[  466.446185][T17823]  dump_stack+0x15/0x1b
[  466.446199][T17823]  should_fail_ex+0x265/0x280
[  466.446226][T17823]  should_failslab+0x8c/0xb0
[  466.446302][T17823]  __kmalloc_cache_node_noprof+0x54/0x320
[  466.446385][T17823]  ? __get_vm_area_node+0x106/0x1d0
[  466.446480][T17823]  __get_vm_area_node+0x106/0x1d0
[  466.446561][T17823]  __vmalloc_node_range_noprof+0x273/0xe00
[  466.446676][T17823]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  466.446777][T17823]  ? mntput_no_expire+0x6f/0x3c0
[  466.446810][T17823]  ? __rcu_read_unlock+0x4f/0x70
[  466.446839][T17823]  ? selinux_capable+0x1f9/0x270
[  466.446942][T17823]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  466.446976][T17823]  __vmalloc_noprof+0x83/0xc0
[  466.447012][T17823]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  466.447051][T17823]  bpf_prog_alloc_no_stats+0x47/0x390
[  466.447127][T17823]  ? bpf_prog_alloc+0x2a/0x150
[  466.447163][T17823]  bpf_prog_alloc+0x3c/0x150
[  466.447200][T17823]  bpf_prog_load+0x514/0x1070
[  466.447322][T17823]  ? security_bpf+0x2b/0x90
[  466.447382][T17823]  __sys_bpf+0x51d/0x790
[  466.447523][T17823]  __x64_sys_bpf+0x41/0x50
[  466.447557][T17823]  x64_sys_call+0x2478/0x2fb0
[  466.447584][T17823]  do_syscall_64+0xd2/0x200
[  466.447605][T17823]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  466.447703][T17823]  ? clear_bhb_loop+0x40/0x90
[  466.447755][T17823]  ? clear_bhb_loop+0x40/0x90
[  466.447783][T17823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.447806][T17823] RIP: 0033:0x7f732b3de929
[  466.447948][T17823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.447967][T17823] RSP: 002b:00007f7329a47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  466.448000][T17823] RAX: ffffffffffffffda RBX: 00007f732b605fa0 RCX: 00007f732b3de929
[  466.448013][T17823] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  466.448024][T17823] RBP: 00007f7329a47090 R08: 0000000000000000 R09: 0000000000000000
[  466.448034][T17823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  466.448045][T17823] R13: 0000000000000000 R14: 00007f732b605fa0 R15: 00007ffddc4ee658
[  466.448133][T17823]  </TASK>
[  466.696464][T17823] warn_alloc: 1 callbacks suppressed
[  466.696477][T17823] syz.4.4995: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  466.717944][T17823] CPU: 1 UID: 0 PID: 17823 Comm: syz.4.4995 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  466.717981][T17823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  466.717999][T17823] Call Trace:
[  466.718007][T17823]  <TASK>
[  466.718017][T17823]  __dump_stack+0x1d/0x30
[  466.718087][T17823]  dump_stack_lvl+0xe8/0x140
[  466.718113][T17823]  dump_stack+0x15/0x1b
[  466.718134][T17823]  warn_alloc+0x12b/0x1a0
[  466.718178][T17823]  __vmalloc_node_range_noprof+0x297/0xe00
[  466.718294][T17823]  ? mntput_no_expire+0x6f/0x3c0
[  466.718327][T17823]  ? __rcu_read_unlock+0x4f/0x70
[  466.718498][T17823]  ? selinux_capable+0x1f9/0x270
[  466.718537][T17823]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  466.718576][T17823]  __vmalloc_noprof+0x83/0xc0
[  466.718613][T17823]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  466.718681][T17823]  bpf_prog_alloc_no_stats+0x47/0x390
[  466.718764][T17823]  ? bpf_prog_alloc+0x2a/0x150
[  466.718798][T17823]  bpf_prog_alloc+0x3c/0x150
[  466.718832][T17823]  bpf_prog_load+0x514/0x1070
[  466.718879][T17823]  ? security_bpf+0x2b/0x90
[  466.718963][T17823]  __sys_bpf+0x51d/0x790
[  466.719006][T17823]  __x64_sys_bpf+0x41/0x50
[  466.719114][T17823]  x64_sys_call+0x2478/0x2fb0
[  466.719140][T17823]  do_syscall_64+0xd2/0x200
[  466.719162][T17823]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  466.719236][T17823]  ? clear_bhb_loop+0x40/0x90
[  466.719318][T17823]  ? clear_bhb_loop+0x40/0x90
[  466.719345][T17823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.719371][T17823] RIP: 0033:0x7f732b3de929
[  466.719401][T17823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.719444][T17823] RSP: 002b:00007f7329a47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  466.719466][T17823] RAX: ffffffffffffffda RBX: 00007f732b605fa0 RCX: 00007f732b3de929
[  466.719481][T17823] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  466.719495][T17823] RBP: 00007f7329a47090 R08: 0000000000000000 R09: 0000000000000000
[  466.719510][T17823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  466.719523][T17823] R13: 0000000000000000 R14: 00007f732b605fa0 R15: 00007ffddc4ee658
[  466.719542][T17823]  </TASK>
[  466.719561][T17823] Mem-Info:
[  466.949280][T17823] active_anon:9798 inactive_anon:3 isolated_anon:0
[  466.949280][T17823]  active_file:13908 inactive_file:12706 isolated_file:0
[  466.949280][T17823]  unevictable:0 dirty:169 writeback:0
[  466.949280][T17823]  slab_reclaimable:3221 slab_unreclaimable:63766
[  466.949280][T17823]  mapped:29412 shmem:380 pagetables:1262
[  466.949280][T17823]  sec_pagetables:0 bounce:0
[  466.949280][T17823]  kernel_misc_reclaimable:0
[  466.949280][T17823]  free:1773705 free_pcp:67685 free_cma:0
[  466.949409][T17823] Node 0 active_anon:39192kB inactive_anon:12kB active_file:55632kB inactive_file:50824kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:117648kB dirty:676kB writeback:0kB shmem:1520kB writeback_tmp:0kB kernel_stack:3472kB pagetables:5048kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  466.949467][T17823] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  466.949582][T17823] lowmem_reserve[]: 0 2882 7860 7860
[  466.949628][T17823] Node 0 DMA32 free:2947828kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951356kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  466.949700][T17823] lowmem_reserve[]: 0 0 4978 4978
[  466.949855][T17823] Node 0 Normal free:4131632kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:39192kB inactive_anon:12kB active_file:55632kB inactive_file:50824kB unevictable:0kB writepending:676kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:267212kB local_pcp:4560kB free_cma:0kB
[  466.950018][T17823] lowmem_reserve[]: 0 0 0 0
[  466.950050][T17823] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  467.144969][T17823] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 4*16kB (M) 3*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947828kB
[  467.161739][T17823] Node 0 Normal: 3459*4kB (UME) 2528*8kB (UME) 2326*16kB (UME) 1495*32kB (UME) 490*64kB (UME) 221*128kB (UME) 505*256kB (UME) 282*512kB (UM) 263*1024kB (UM) 123*2048kB (UME) 771*4096kB (UM) = 4131660kB
[  467.181695][T17823] Node 0 hugepages_total=4 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  467.191552][T17823] 26993 total pagecache pages
[  467.196256][T17823] 7 pages in swap cache
[  467.200423][T17823] Free swap  = 124792kB
[  467.204586][T17823] Total swap = 124996kB
[  467.208837][T17823] 2097051 pages RAM
[  467.212655][T17823] 0 pages HighMem/MovableOnly
[  467.218078][T17823] 80812 pages reserved
[  467.240387][T17838] 9pnet: p9_errstr2errno: server reported unknown error 
[  467.248234][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.274434][T17842] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  467.323013][T17850] FAULT_INJECTION: forcing a failure.
[  467.323013][T17850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  467.336269][T17850] CPU: 0 UID: 0 PID: 17850 Comm: syz.5.5004 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  467.336299][T17850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  467.336312][T17850] Call Trace:
[  467.336347][T17850]  <TASK>
[  467.336354][T17850]  __dump_stack+0x1d/0x30
[  467.336382][T17850]  dump_stack_lvl+0xe8/0x140
[  467.336401][T17850]  dump_stack+0x15/0x1b
[  467.336416][T17850]  should_fail_ex+0x265/0x280
[  467.336448][T17850]  should_fail+0xb/0x20
[  467.336480][T17850]  should_fail_usercopy+0x1a/0x20
[  467.336585][T17850]  _copy_from_user+0x1c/0xb0
[  467.336606][T17850]  ___sys_sendmsg+0xc1/0x1d0
[  467.336659][T17850]  __x64_sys_sendmsg+0xd4/0x160
[  467.336700][T17850]  x64_sys_call+0x2999/0x2fb0
[  467.336790][T17850]  do_syscall_64+0xd2/0x200
[  467.336834][T17850]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  467.336910][T17850]  ? clear_bhb_loop+0x40/0x90
[  467.336937][T17850]  ? clear_bhb_loop+0x40/0x90
[  467.336965][T17850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.337037][T17850] RIP: 0033:0x7f469b43e929
[  467.337056][T17850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.337079][T17850] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  467.337122][T17850] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  467.337135][T17850] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000006
[  467.337146][T17850] RBP: 00007f4699aa7090 R08: 0000000000000000 R09: 0000000000000000
[  467.337160][T17850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.337176][T17850] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  467.337201][T17850]  </TASK>
[  467.337454][T17847] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  467.598996][T17864] loop5: detected capacity change from 0 to 1024
[  467.621788][T17864] EXT4-fs: Mount option(s) incompatible with ext2
[  467.643802][T17864] program syz.5.5008 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.644422][   T29] kauditd_printk_skb: 148 callbacks suppressed
[  467.644440][   T29] audit: type=1326 audit(2000000089.340:26464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.683296][T17864] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  467.689342][T17869] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  467.712924][   T29] audit: type=1326 audit(2000000089.390:26465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.737313][   T29] audit: type=1326 audit(2000000089.390:26466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.761169][   T29] audit: type=1326 audit(2000000089.390:26467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.786198][   T29] audit: type=1326 audit(2000000089.390:26468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.809949][   T29] audit: type=1326 audit(2000000089.390:26469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.834269][   T29] audit: type=1326 audit(2000000089.390:26470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.858652][   T29] audit: type=1326 audit(2000000089.390:26471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.882323][   T29] audit: type=1326 audit(2000000089.390:26472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="syz.0.5009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.906583][   T29] audit: type=1326 audit(2000000089.390:26473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17861 comm="hsr" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e34d2e929 code=0x7ffc0000
[  467.958106][T17872] loop4: detected capacity change from 0 to 512
[  467.965159][T17872] journal_path: Lookup failure for './file0/../file0'
[  467.972108][T17872] EXT4-fs: error: could not find journal device path
[  467.991918][T17875] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  468.030994][T17872] FAULT_INJECTION: forcing a failure.
[  468.030994][T17872] name failslab, interval 1, probability 0, space 0, times 0
[  468.043716][T17872] CPU: 1 UID: 0 PID: 17872 Comm: syz.4.5012 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  468.043749][T17872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  468.043763][T17872] Call Trace:
[  468.043770][T17872]  <TASK>
[  468.043777][T17872]  __dump_stack+0x1d/0x30
[  468.043800][T17872]  dump_stack_lvl+0xe8/0x140
[  468.043820][T17872]  dump_stack+0x15/0x1b
[  468.043840][T17872]  should_fail_ex+0x265/0x280
[  468.043865][T17872]  should_failslab+0x8c/0xb0
[  468.043883][T17872]  kmem_cache_alloc_node_noprof+0x57/0x320
[  468.043905][T17872]  ? __alloc_skb+0x101/0x320
[  468.043933][T17872]  __alloc_skb+0x101/0x320
[  468.043959][T17872]  netlink_alloc_large_skb+0xba/0xf0
[  468.044064][T17872]  netlink_sendmsg+0x3cf/0x6b0
[  468.044081][T17872]  ? __pfx_netlink_sendmsg+0x10/0x10
[  468.044096][T17872]  __sock_sendmsg+0x145/0x180
[  468.044116][T17872]  ____sys_sendmsg+0x31e/0x4e0
[  468.044209][T17872]  ___sys_sendmsg+0x17b/0x1d0
[  468.044251][T17872]  __x64_sys_sendmsg+0xd4/0x160
[  468.044343][T17872]  x64_sys_call+0x2999/0x2fb0
[  468.044361][T17872]  do_syscall_64+0xd2/0x200
[  468.044376][T17872]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  468.044397][T17872]  ? clear_bhb_loop+0x40/0x90
[  468.044489][T17872]  ? clear_bhb_loop+0x40/0x90
[  468.044507][T17872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.044596][T17872] RIP: 0033:0x7f732b3de929
[  468.044679][T17872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.044698][T17872] RSP: 002b:00007f7329a47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  468.044720][T17872] RAX: ffffffffffffffda RBX: 00007f732b605fa0 RCX: 00007f732b3de929
[  468.044735][T17872] RDX: 0000000020000010 RSI: 0000200000000080 RDI: 000000000000000b
[  468.044748][T17872] RBP: 00007f7329a47090 R08: 0000000000000000 R09: 0000000000000000
[  468.044758][T17872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.044788][T17872] R13: 0000000000000000 R14: 00007f732b605fa0 R15: 00007ffddc4ee658
[  468.044811][T17872]  </TASK>
[  468.340211][T17880] __nla_validate_parse: 7 callbacks suppressed
[  468.340312][T17880] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5015'.
[  468.399111][T17888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5019'.
[  468.552471][T17908] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5025'.
[  468.642801][T17913] netlink: 'syz.0.5029': attribute type 5 has an invalid length.
[  468.878659][T17928] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5034'.
[  468.959059][T17933] loop5: detected capacity change from 0 to 512
[  469.014403][T17933] loop5: detected capacity change from 0 to 1024
[  469.034004][T17933] ext4: Bad value for 'min_batch_time'
[  469.083361][T17937] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5039'.
[  469.118531][T17939] batman_adv: batadv0: Adding interface: ip6gretap1
[  469.125260][T17939] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  469.150997][T17939] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  469.252514][T17943] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  469.373277][T17951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5045'.
[  469.511583][T17958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5048'.
[  469.592339][T17960] loop4: detected capacity change from 0 to 128
[  469.615032][T17960] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  469.623581][T17960] System zones: 1-3, 19-19, 35-36
[  469.631258][T17960] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  469.635482][T17968] netlink: 'syz.1.5050': attribute type 3 has an invalid length.
[  469.657055][T17960] ext4 filesystem being mounted at /365/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  469.695994][T17960] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 27 (only 1 groups)
[  470.136145][T17990] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5057'.
[  470.188838][T17992] loop5: detected capacity change from 0 to 512
[  470.327910][T17992] EXT4-fs (loop5): 1 orphan inode deleted
[  470.334193][T17992] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  470.387323][ T5375] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 1
[  470.399621][T17992] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  470.414306][T17991] netlink: 116 bytes leftover after parsing attributes in process `syz.5.5057'.
[  470.423903][T17990] random: crng reseeded on system resumption
[  470.681365][T18003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5061'.
[  470.693411][T17960] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  470.709131][T17960] syz.4.5049 (17960) used greatest stack depth: 6784 bytes left
[  470.819261][T18018] 9pnet_virtio: no channels available for device 127.0.0.1
[  470.827039][T18018] netlink: 'syz.0.5068': attribute type 13 has an invalid length.
[  470.910703][T18018] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  470.945805][T18018] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  470.954915][T18018] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  470.963335][T18018] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  470.971734][T18018] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  471.132412][T18027] loop4: detected capacity change from 0 to 2048
[  471.161295][T18027] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.475611][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.888356][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.205551][T18082] netlink: 'syz.5.5083': attribute type 12 has an invalid length.
[  472.662204][   T29] kauditd_printk_skb: 453 callbacks suppressed
[  472.662221][   T29] audit: type=1326 audit(2000000094.360:26926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.668829][T18114] loop5: detected capacity change from 0 to 512
[  472.699231][   T29] audit: type=1326 audit(2000000094.400:26927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.722970][   T29] audit: type=1326 audit(2000000094.400:26928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.746688][   T29] audit: type=1326 audit(2000000094.400:26929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.770414][   T29] audit: type=1326 audit(2000000094.400:26930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.794047][   T29] audit: type=1326 audit(2000000094.400:26931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.817931][   T29] audit: type=1326 audit(2000000094.400:26932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.841787][   T29] audit: type=1326 audit(2000000094.400:26933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.865725][   T29] audit: type=1326 audit(2000000094.400:26934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.889679][   T29] audit: type=1326 audit(2000000094.400:26935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18112 comm="syz.4.5096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  472.921820][T18114] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[  472.934638][T18114] System zones: 1-12
[  472.942346][T18114] EXT4-fs error (device loop5): ext4_xattr_inode_iget:442: comm syz.5.5097: error while reading EA inode 32 err=-116
[  472.958770][T18114] EXT4-fs (loop5): Remounting filesystem read-only
[  472.965402][T18114] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  472.975870][T18114] EXT4-fs (loop5): 1 orphan inode deleted
[  472.982471][T18114] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.984587][T18131] 9pnet_fd: Insufficient options for proto=fd
[  473.050117][T18137] veth0: entered promiscuous mode
[  473.112012][T18145] FAULT_INJECTION: forcing a failure.
[  473.112012][T18145] name failslab, interval 1, probability 0, space 0, times 0
[  473.124753][T18145] CPU: 1 UID: 0 PID: 18145 Comm: syz.3.5108 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  473.124863][T18145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  473.124946][T18145] Call Trace:
[  473.124952][T18145]  <TASK>
[  473.124959][T18145]  __dump_stack+0x1d/0x30
[  473.124978][T18145]  dump_stack_lvl+0xe8/0x140
[  473.124996][T18145]  dump_stack+0x15/0x1b
[  473.125012][T18145]  should_fail_ex+0x265/0x280
[  473.125109][T18145]  should_failslab+0x8c/0xb0
[  473.125136][T18145]  __kmalloc_cache_node_noprof+0x54/0x320
[  473.125205][T18145]  ? __get_vm_area_node+0x106/0x1d0
[  473.125277][T18145]  __get_vm_area_node+0x106/0x1d0
[  473.125311][T18145]  __vmalloc_node_range_noprof+0x273/0xe00
[  473.125382][T18145]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  473.125451][T18145]  ? mntput_no_expire+0x6f/0x3c0
[  473.125480][T18145]  ? __rcu_read_unlock+0x4f/0x70
[  473.125504][T18145]  ? selinux_capable+0x1f9/0x270
[  473.125605][T18145]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  473.125658][T18145]  __vmalloc_noprof+0x83/0xc0
[  473.125811][T18145]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  473.125854][T18145]  bpf_prog_alloc_no_stats+0x47/0x390
[  473.125886][T18145]  ? bpf_prog_alloc+0x2a/0x150
[  473.125912][T18145]  bpf_prog_alloc+0x3c/0x150
[  473.126090][T18145]  bpf_prog_load+0x514/0x1070
[  473.126128][T18145]  ? security_bpf+0x2b/0x90
[  473.126145][T18145]  __sys_bpf+0x51d/0x790
[  473.126180][T18145]  __x64_sys_bpf+0x41/0x50
[  473.126218][T18145]  x64_sys_call+0x2478/0x2fb0
[  473.126276][T18145]  do_syscall_64+0xd2/0x200
[  473.126298][T18145]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  473.126329][T18145]  ? clear_bhb_loop+0x40/0x90
[  473.126424][T18145]  ? clear_bhb_loop+0x40/0x90
[  473.126452][T18145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.126478][T18145] RIP: 0033:0x7f79ec12e929
[  473.126495][T18145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.126594][T18145] RSP: 002b:00007f79ea797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  473.126615][T18145] RAX: ffffffffffffffda RBX: 00007f79ec355fa0 RCX: 00007f79ec12e929
[  473.126628][T18145] RDX: 0000000000000094 RSI: 00002000000002c0 RDI: 0000000000000005
[  473.126643][T18145] RBP: 00007f79ea797090 R08: 0000000000000000 R09: 0000000000000000
[  473.126658][T18145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.126673][T18145] R13: 0000000000000000 R14: 00007f79ec355fa0 R15: 00007ffcf9b4d7d8
[  473.126702][T18145]  </TASK>
[  473.376892][T18145] __nla_validate_parse: 12 callbacks suppressed
[  473.376913][T18145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5108'.
[  473.482186][T18111] veth0: left promiscuous mode
[  473.499704][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.521569][T18152] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5110'.
[  473.530715][T18152] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5110'.
[  473.539795][T18152] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5110'.
[  473.674372][T18163] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5114'.
[  473.705968][T18161] lo speed is unknown, defaulting to 1000
[  473.816446][T18170] 9pnet_fd: Insufficient options for proto=fd
[  474.094476][T18181] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5121'.
[  474.150013][T18183] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5122'.
[  474.277417][T18193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5124'.
[  474.516037][T18206] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  475.028541][T18218] lo speed is unknown, defaulting to 1000
[  475.116123][T18221] batadv_slave_0: entered promiscuous mode
[  475.127951][T18220] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5131'.
[  475.158242][T18221] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5133'.
[  475.174641][T18221] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  475.209340][T18221] batadv_slave_0 (unregistering): left promiscuous mode
[  475.224737][T18221] batman_adv: batadv0: Removing interface: batadv_slave_0
[  475.588259][T18237] loop5: detected capacity change from 0 to 2048
[  475.652923][T18237] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.910632][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.264814][T18273] loop5: detected capacity change from 0 to 512
[  476.292261][T18273] journal_path: Lookup failure for './file0/../file0'
[  476.299239][T18273] EXT4-fs: error: could not find journal device path
[  477.131055][T18291] loop5: detected capacity change from 0 to 2048
[  477.175089][T18292] lo speed is unknown, defaulting to 1000
[  477.196295][T18291]  loop5: p2 < > p3 < >
[  477.200513][T18291] loop5: partition table partially beyond EOD, truncated
[  477.214260][T18291] loop5: p2 start 4278190080 is beyond EOD, truncated
[  478.105759][T18332] netlink: 'syz.3.5174': attribute type 21 has an invalid length.
[  478.122093][   T29] kauditd_printk_skb: 428 callbacks suppressed
[  478.122110][   T29] audit: type=1326 audit(2000000355.820:27364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.160673][   T29] audit: type=1326 audit(2000000355.860:27365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.184324][   T29] audit: type=1326 audit(2000000355.860:27366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.208064][   T29] audit: type=1326 audit(2000000355.860:27367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.261403][   T29] audit: type=1326 audit(2000000355.920:27368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.285139][   T29] audit: type=1326 audit(2000000355.920:27369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f79ec12d290 code=0x7ffc0000
[  478.308743][   T29] audit: type=1326 audit(2000000355.920:27370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.332791][   T29] audit: type=1326 audit(2000000355.920:27371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.356326][   T29] audit: type=1326 audit(2000000355.920:27372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.380067][   T29] audit: type=1326 audit(2000000355.920:27373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18331 comm="syz.3.5174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  478.419092][T18341] FAULT_INJECTION: forcing a failure.
[  478.419092][T18341] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  478.432392][T18341] CPU: 1 UID: 0 PID: 18341 Comm: syz.5.5177 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  478.432440][T18341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  478.432500][T18341] Call Trace:
[  478.432506][T18341]  <TASK>
[  478.432574][T18341]  __dump_stack+0x1d/0x30
[  478.432598][T18341]  dump_stack_lvl+0xe8/0x140
[  478.432627][T18341]  dump_stack+0x15/0x1b
[  478.432646][T18341]  should_fail_ex+0x265/0x280
[  478.432674][T18341]  should_fail_alloc_page+0xf2/0x100
[  478.432711][T18341]  __alloc_frozen_pages_noprof+0xff/0x360
[  478.432752][T18341]  alloc_pages_mpol+0xb3/0x250
[  478.432787][T18341]  alloc_pages_noprof+0x90/0x130
[  478.432845][T18341]  __pmd_alloc+0x47/0x470
[  478.432867][T18341]  handle_mm_fault+0x19d1/0x2be0
[  478.432889][T18341]  ? __rcu_read_unlock+0x4f/0x70
[  478.432991][T18341]  do_user_addr_fault+0x3fe/0x1090
[  478.433058][T18341]  ? kstrtouint_from_user+0x9f/0xf0
[  478.433108][T18341]  exc_page_fault+0x62/0xa0
[  478.433204][T18341]  asm_exc_page_fault+0x26/0x30
[  478.433227][T18341] RIP: 0010:rep_movs_alternative+0x33/0x90
[  478.433269][T18341] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d f1 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  478.433288][T18341] RSP: 0018:ffffc900046e3e40 EFLAGS: 00050212
[  478.433302][T18341] RAX: 0000000000000000 RBX: 0000000000000010 RCX: 0000000000000010
[  478.433313][T18341] RDX: 0000000000000000 RSI: ffffc900046e3e78 RDI: 0000200000000040
[  478.433323][T18341] RBP: 0000000000000000 R08: 00000000000005de R09: 0000000000000000
[  478.433336][T18341] R10: 0001c900046e3e78 R11: 0001c900046e3e87 R12: 0000200000000050
[  478.433451][T18341] R13: 00007ffffffff000 R14: 0000200000000040 R15: ffffc900046e3e78
[  478.433473][T18341]  _copy_to_user+0x7c/0xa0
[  478.433491][T18341]  put_itimerspec64+0x65/0x110
[  478.433510][T18341]  __x64_sys_timerfd_gettime+0x7f/0xc0
[  478.433537][T18341]  x64_sys_call+0x2c0c/0x2fb0
[  478.433580][T18341]  do_syscall_64+0xd2/0x200
[  478.433595][T18341]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  478.433685][T18341]  ? clear_bhb_loop+0x40/0x90
[  478.433709][T18341]  ? clear_bhb_loop+0x40/0x90
[  478.433734][T18341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.433758][T18341] RIP: 0033:0x7f469b43e929
[  478.433774][T18341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  478.433861][T18341] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011f
[  478.433876][T18341] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  478.433890][T18341] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  478.433904][T18341] RBP: 00007f4699aa7090 R08: 0000000000000000 R09: 0000000000000000
[  478.433918][T18341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  478.433931][T18341] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  478.433953][T18341]  </TASK>
[  478.788999][T18345] __nla_validate_parse: 7 callbacks suppressed
[  478.789018][T18345] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5179'.
[  478.872582][T18353] netlink: 344 bytes leftover after parsing attributes in process `syz.4.5184'.
[  479.310868][T18365] FAULT_INJECTION: forcing a failure.
[  479.310868][T18365] name failslab, interval 1, probability 0, space 0, times 0
[  479.323549][T18365] CPU: 0 UID: 0 PID: 18365 Comm: syz.5.5187 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  479.323621][T18365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  479.323633][T18365] Call Trace:
[  479.323639][T18365]  <TASK>
[  479.323648][T18365]  __dump_stack+0x1d/0x30
[  479.323672][T18365]  dump_stack_lvl+0xe8/0x140
[  479.323695][T18365]  dump_stack+0x15/0x1b
[  479.323715][T18365]  should_fail_ex+0x265/0x280
[  479.323783][T18365]  should_failslab+0x8c/0xb0
[  479.323807][T18365]  kmem_cache_alloc_noprof+0x50/0x310
[  479.323835][T18365]  ? getname_flags+0x80/0x3b0
[  479.323932][T18365]  getname_flags+0x80/0x3b0
[  479.323956][T18365]  do_sys_openat2+0x60/0x110
[  479.323987][T18365]  __x64_sys_openat+0xf2/0x120
[  479.324098][T18365]  x64_sys_call+0x1af/0x2fb0
[  479.324123][T18365]  do_syscall_64+0xd2/0x200
[  479.324142][T18365]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  479.324246][T18365]  ? clear_bhb_loop+0x40/0x90
[  479.324275][T18365]  ? clear_bhb_loop+0x40/0x90
[  479.324368][T18365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.324389][T18365] RIP: 0033:0x7f469b43d290
[  479.324404][T18365] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  479.324422][T18365] RSP: 002b:00007f4699aa6b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  479.324444][T18365] RAX: ffffffffffffffda RBX: 0000000000141341 RCX: 00007f469b43d290
[  479.324461][T18365] RDX: 0000000000141341 RSI: 00007f4699aa6c10 RDI: 00000000ffffff9c
[  479.324484][T18365] RBP: 00007f4699aa6c10 R08: 0000000000000000 R09: 0000000000000000
[  479.324500][T18365] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[  479.324514][T18365] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  479.324589][T18365]  </TASK>
[  479.922381][T18388] netlink: 'syz.3.5195': attribute type 1 has an invalid length.
[  479.968737][T18391] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5196'.
[  480.072627][T18394] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  480.155814][T18388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  480.164518][T18388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  480.270247][T18399] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5199'.
[  480.371526][T18385] loop5: detected capacity change from 0 to 8192
[  480.431763][T18404] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5200'.
[  480.454926][T18385] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  480.471145][T18385] FAT-fs (loop5): Filesystem has been set read-only
[  480.648736][T18418] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5207'.
[  480.778854][T18428] SELinux:  Context ›Y7»ôj
[  480.778854][T18428] u/$2SÙŸ»2'´ƒk€s2-Â	vj×džÃ	û#ž»œ,ÙN<
[  480.778854][T18428] �:æºE]Yù´\?˜ͼ•=ê¯Ù‹�1ÛKI‹À­ßÇäî‚kÎé°{kL^‰—ù0¦óýÒë}å4nšrº }–¢Ï
pįÚ¥›ÙN»w
Ÿ‚Þyxiu?+ëþÑý½ÜH~›ö»F¦–ý1ùW¤¹�÷jm	&8›UÛ‚VŠƒß‹œNÃ’œ2ù)GxÆVÔ%‘5œõxeRM4r4c¥îÿJ�sÏHU&Ÿ“�ä§'p…Œ2EMMàk&‰Îc«bUƒÎÈ,ä,ÏÖÝÁâÂfÓ@Õï8¿ÅøœÎœ¶bÁˆD™¨%$¬œÓfÚ=½š¾÷8®@ì§�k¤I|íþ€�w íOç£x&KCH;ÁÝx-�ÍK³²oå4˜i!ÿÿOi�%Ú‚2úë´F"2‹E,P] èôkÇ? is not valid (left unmapped).
[  480.819177][T18432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5214'.
[  480.824029][T18428] SELinux:  Context *mþkX�I·Æ$h·x4Û«½K•M¤ is not valid (left unmapped).
[  480.840679][T18428] SELinux:  Context ¬õ–KM*º,hÃc¶¼I¨Ç¾Êû·ßÌ‹yÖÔõ+á.ë+yÒÿ0ª[prŸ;J©A9�Åõ��IqÒj¦Ç¼=7)o
M{ìší–nFÓÙ=«¾ø‰Xmnxºœr¶Dß㑉�³åž³ç4ÌÚTW
²ü}»tŠóôòò%È–Y…É^sìlF¬€¤§Bˆ53²‰hÖmì‰âÝ5þ}ßã;J�™¬ìÁXom%~"á¿~9mM¾–~alʺLàI8­„iÛþ<B€3
[  480.840679][T18428] \À,:ÿÞgÕ€^!�(DÃ.ú0Ÿ×øã is not valid (left unmapped).
[  480.871434][T18428] SELinux:  Context 5¶}“¨M3ëpÿX:��¦Ü]žQ?×ðÖ§á¡p©ýáè«{ãÕO)BÓ°Rÿ¹�D»º is not valid (left unmapped).
[  480.883014][T18428] SELinux:  Context åWé½Xó®’Eë•Ó][Oü:ѸÍ÷÷o‡ß­OöìªÌbZDî¢fq	:Å~€t6µuY¼x’´ð(ÇèQßïž8…Å×÷NPZð�eoÄìáþQ[aSêáI>$YiLÿ.([	P¶ûô%U.T8†}zK/7ä“o©¦Ógç¥Wìf$Ž¨ÿC%{}9¡Ó঴@yòoíP½íß'Çbßì9Z-ƒœS”èkª6�¶1E®A[T is not valid (left unmapped).
[  480.921163][T18428] dummy0 speed is unknown, defaulting to 1000
[  480.927783][T18428] dummy0 speed is unknown, defaulting to 1000
[  480.929672][T18442] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  480.950225][T18428] dummy0 speed is unknown, defaulting to 1000
[  480.952944][T18442] bond_slave_1: entered promiscuous mode
[  480.957242][T18428] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  480.974863][T18438] loop4: detected capacity change from 0 to 512
[  480.982477][T18441] bond_slave_1: left promiscuous mode
[  480.985749][T18438] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  480.995892][T18438] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  481.004447][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.012756][T18438] EXT4-fs (loop4): orphan cleanup on readonly fs
[  481.019433][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.025760][T18438] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #13: comm syz.4.5213: iget: bad i_size value: 12154761577498
[  481.025953][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.078837][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.079847][T18438] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.5213: couldn't read orphan inode 13 (err -117)
[  481.085394][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.103445][T18428] dummy0 speed is unknown, defaulting to 1000
[  481.118961][T18449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  481.139362][T18449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  481.190238][T18438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  481.230899][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.281588][T18456] xt_hashlimit: max too large, truncated to 1048576
[  481.293802][T18456] FAULT_INJECTION: forcing a failure.
[  481.293802][T18456] name failslab, interval 1, probability 0, space 0, times 0
[  481.307162][T18456] CPU: 1 UID: 0 PID: 18456 Comm: syz.1.5221 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  481.307244][T18456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  481.307260][T18456] Call Trace:
[  481.307274][T18456]  <TASK>
[  481.307283][T18456]  __dump_stack+0x1d/0x30
[  481.307305][T18456]  dump_stack_lvl+0xe8/0x140
[  481.307327][T18456]  dump_stack+0x15/0x1b
[  481.307356][T18456]  should_fail_ex+0x265/0x280
[  481.307421][T18456]  should_failslab+0x8c/0xb0
[  481.307443][T18456]  kmem_cache_alloc_noprof+0x50/0x310
[  481.307472][T18456]  ? __proc_create+0x265/0x500
[  481.307637][T18456]  __proc_create+0x265/0x500
[  481.307663][T18456]  ? should_failslab+0x8c/0xb0
[  481.307693][T18456]  proc_create_seq_private+0xa8/0x180
[  481.307727][T18456]  htable_create+0x2e4/0x450
[  481.307808][T18456]  hashlimit_mt_check_common+0x5db/0x6c0
[  481.307853][T18456]  hashlimit_mt_check_v1+0x12d/0x160
[  481.307896][T18456]  xt_check_match+0x2aa/0x4f0
[  481.307949][T18456]  ? strnlen+0x28/0x50
[  481.308023][T18456]  ? strcmp+0x22/0x50
[  481.308046][T18456]  ? xt_find_match+0x1d1/0x210
[  481.308083][T18456]  translate_table+0xa9c/0xf90
[  481.308195][T18456]  ? _copy_from_user+0x89/0xb0
[  481.308223][T18456]  do_ipt_set_ctl+0x66f/0x820
[  481.308262][T18456]  nf_setsockopt+0x196/0x1b0
[  481.308283][T18456]  ip_setsockopt+0x102/0x110
[  481.308368][T18456]  udp_setsockopt+0x99/0xb0
[  481.308446][T18456]  sock_common_setsockopt+0x69/0x80
[  481.308470][T18456]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  481.308557][T18456]  __sys_setsockopt+0x184/0x200
[  481.308594][T18456]  __x64_sys_setsockopt+0x64/0x80
[  481.308627][T18456]  x64_sys_call+0x2bd5/0x2fb0
[  481.308655][T18456]  do_syscall_64+0xd2/0x200
[  481.308720][T18456]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  481.308754][T18456]  ? clear_bhb_loop+0x40/0x90
[  481.308775][T18456]  ? clear_bhb_loop+0x40/0x90
[  481.308809][T18456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.308856][T18456] RIP: 0033:0x7f276219e929
[  481.308872][T18456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.308895][T18456] RSP: 002b:00007f2760807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  481.308919][T18456] RAX: ffffffffffffffda RBX: 00007f27623c5fa0 RCX: 00007f276219e929
[  481.308935][T18456] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  481.308971][T18456] RBP: 00007f2760807090 R08: 0000000000000538 R09: 0000000000000000
[  481.308987][T18456] R10: 0000200000001180 R11: 0000000000000246 R12: 0000000000000001
[  481.309053][T18456] R13: 0000000000000000 R14: 00007f27623c5fa0 R15: 00007ffcec434598
[  481.309079][T18456]  </TASK>
[  481.640338][T18466] loop5: detected capacity change from 0 to 512
[  481.651670][T18470] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5226'.
[  481.668855][T18466] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.5224: bad orphan inode 11862016
[  481.691675][T18466] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  481.717737][T18466] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.738758][T18466] FAULT_INJECTION: forcing a failure.
[  481.738758][T18466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.751868][T18466] CPU: 1 UID: 0 PID: 18466 Comm: syz.5.5224 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  481.751911][T18466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  481.751932][T18466] Call Trace:
[  481.751937][T18466]  <TASK>
[  481.751944][T18466]  __dump_stack+0x1d/0x30
[  481.751963][T18466]  dump_stack_lvl+0xe8/0x140
[  481.751982][T18466]  dump_stack+0x15/0x1b
[  481.751997][T18466]  should_fail_ex+0x265/0x280
[  481.752026][T18466]  should_fail+0xb/0x20
[  481.752105][T18466]  should_fail_usercopy+0x1a/0x20
[  481.752134][T18466]  strncpy_from_user+0x25/0x230
[  481.752159][T18466]  path_setxattrat+0xeb/0x310
[  481.752197][T18466]  __x64_sys_setxattr+0x6e/0x90
[  481.752299][T18466]  x64_sys_call+0x28a7/0x2fb0
[  481.752318][T18466]  do_syscall_64+0xd2/0x200
[  481.752334][T18466]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  481.752361][T18466]  ? clear_bhb_loop+0x40/0x90
[  481.752414][T18466]  ? clear_bhb_loop+0x40/0x90
[  481.752654][T18466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.752673][T18466] RIP: 0033:0x7f469b43e929
[  481.752686][T18466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.752703][T18466] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  481.752720][T18466] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  481.752732][T18466] RDX: 0000200000001400 RSI: 0000200000000080 RDI: 00002000000000c0
[  481.752802][T18466] RBP: 00007f4699aa7090 R08: 0000000000000002 R09: 0000000000000000
[  481.752813][T18466] R10: 0000000000000835 R11: 0000000000000246 R12: 0000000000000001
[  481.752825][T18466] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  481.752845][T18466]  </TASK>
[  481.955371][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  482.037785][T18485] lo speed is unknown, defaulting to 1000
[  482.065548][T18485] dummy0 speed is unknown, defaulting to 1000
[  482.537117][T18497] netlink: 'syz.4.5233': attribute type 3 has an invalid length.
[  482.562042][T18510] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5234'.
[  483.047343][T18519] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5237'.
[  483.405163][   T29] kauditd_printk_skb: 262 callbacks suppressed
[  483.405177][   T29] audit: type=1326 audit(2000000361.100:27636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.4.5240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  483.435256][   T29] audit: type=1326 audit(2000000361.100:27637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.4.5240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  483.522952][   T29] audit: type=1326 audit(2000000361.170:27638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.4.5240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  483.546824][   T29] audit: type=1326 audit(2000000361.170:27639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.4.5240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  483.570716][   T29] audit: type=1326 audit(2000000361.170:27640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.4.5240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f732b3de929 code=0x7ffc0000
[  483.692943][T18545] lo speed is unknown, defaulting to 1000
[  483.699554][T18545] dummy0 speed is unknown, defaulting to 1000
[  483.738871][T18550] netlink: 'syz.5.5245': attribute type 10 has an invalid length.
[  483.750241][T18550] dummy0: entered promiscuous mode
[  483.757860][T18550] bridge0: port 3(dummy0) entered blocking state
[  483.764341][T18550] bridge0: port 3(dummy0) entered disabled state
[  483.771130][T18550] dummy0: entered allmulticast mode
[  483.779277][T18550] bridge0: port 3(dummy0) entered blocking state
[  483.785746][T18550] bridge0: port 3(dummy0) entered forwarding state
[  483.801503][T18551] FAULT_INJECTION: forcing a failure.
[  483.801503][T18551] name failslab, interval 1, probability 0, space 0, times 0
[  483.814179][T18551] CPU: 0 UID: 0 PID: 18551 Comm: syz.1.5246 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  483.814208][T18551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  483.814255][T18551] Call Trace:
[  483.814264][T18551]  <TASK>
[  483.814275][T18551]  __dump_stack+0x1d/0x30
[  483.814301][T18551]  dump_stack_lvl+0xe8/0x140
[  483.814326][T18551]  dump_stack+0x15/0x1b
[  483.814346][T18551]  should_fail_ex+0x265/0x280
[  483.814463][T18551]  should_failslab+0x8c/0xb0
[  483.814486][T18551]  kmem_cache_alloc_node_noprof+0x57/0x320
[  483.814519][T18551]  ? __alloc_skb+0x101/0x320
[  483.814625][T18551]  __alloc_skb+0x101/0x320
[  483.814658][T18551]  ? radix_tree_lookup+0x117/0x140
[  483.814695][T18551]  netlink_ack+0xfd/0x500
[  483.814774][T18551]  ? should_fail_ex+0x30/0x280
[  483.814808][T18551]  netlink_rcv_skb+0x192/0x220
[  483.814847][T18551]  ? __pfx_genl_rcv_msg+0x10/0x10
[  483.814878][T18551]  genl_rcv+0x28/0x40
[  483.814961][T18551]  netlink_unicast+0x5a5/0x680
[  483.815002][T18551]  netlink_sendmsg+0x58b/0x6b0
[  483.815029][T18551]  ? __pfx_netlink_sendmsg+0x10/0x10
[  483.815049][T18551]  __sock_sendmsg+0x145/0x180
[  483.815121][T18551]  ____sys_sendmsg+0x31e/0x4e0
[  483.815167][T18551]  ___sys_sendmsg+0x17b/0x1d0
[  483.815298][T18551]  __x64_sys_sendmsg+0xd4/0x160
[  483.815347][T18551]  x64_sys_call+0x2999/0x2fb0
[  483.815372][T18551]  do_syscall_64+0xd2/0x200
[  483.815389][T18551]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  483.815431][T18551]  ? clear_bhb_loop+0x40/0x90
[  483.815506][T18551]  ? clear_bhb_loop+0x40/0x90
[  483.815528][T18551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.815548][T18551] RIP: 0033:0x7f276219e929
[  483.815606][T18551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.815629][T18551] RSP: 002b:00007f27607e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  483.815653][T18551] RAX: ffffffffffffffda RBX: 00007f27623c6080 RCX: 00007f276219e929
[  483.815670][T18551] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[  483.815685][T18551] RBP: 00007f27607e6090 R08: 0000000000000000 R09: 0000000000000000
[  483.815699][T18551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  483.815710][T18551] R13: 0000000000000001 R14: 00007f27623c6080 R15: 00007ffcec434598
[  483.815776][T18551]  </TASK>
[  484.354174][T18566] loop4: detected capacity change from 0 to 512
[  484.363091][T18566] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5251: bg 0: block 16: invalid block bitmap
[  484.378868][T18566] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  484.390988][T18566] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.5251: attempt to clear invalid blocks 1669132790 len 1
[  484.406565][T18566] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5251: invalid indirect mapped block 4294967295 (level 1)
[  484.422723][T18566] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5251: invalid indirect mapped block 4294967295 (level 2)
[  484.438099][T18566] EXT4-fs (loop4): 1 truncate cleaned up
[  484.444366][T18566] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  484.566793][   T29] audit: type=1326 audit(2000000362.260:27641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18575 comm="syz.1.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f276219e929 code=0x7ffc0000
[  484.591132][   T29] audit: type=1326 audit(2000000362.270:27642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18575 comm="syz.1.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f276219e929 code=0x7ffc0000
[  484.614763][   T29] audit: type=1326 audit(2000000362.270:27643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18575 comm="syz.1.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f276219e929 code=0x7ffc0000
[  484.695339][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.696100][   T29] audit: type=1326 audit(2000000362.270:27644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18575 comm="syz.1.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f276219e929 code=0x7ffc0000
[  484.728641][   T29] audit: type=1326 audit(2000000362.270:27645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18575 comm="syz.1.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f276219e929 code=0x7ffc0000
[  484.766582][T18589] __nla_validate_parse: 2 callbacks suppressed
[  484.766600][T18589] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5256'.
[  484.829791][T18592] loop4: detected capacity change from 0 to 164
[  484.863535][T18596] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5259'.
[  484.883837][T18592] syz.4.5258: attempt to access beyond end of device
[  484.883837][T18592] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  484.899045][T18592] syz.4.5258: attempt to access beyond end of device
[  484.899045][T18592] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  484.995198][T18593] lo speed is unknown, defaulting to 1000
[  485.002329][T18593] dummy0 speed is unknown, defaulting to 1000
[  485.144393][T18619] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  485.190045][T18593] chnl_net:caif_netlink_parms(): no params data found
[  485.253067][T18637] netlink: 256 bytes leftover after parsing attributes in process `syz.5.5270'.
[  485.262195][T18637] netlink: 80 bytes leftover after parsing attributes in process `syz.5.5270'.
[  485.281345][T16966]  (unregistering): (slave bond_slave_0): Releasing backup interface
[  485.293890][T16966]  (unregistering): (slave bond_slave_1): Releasing backup interface
[  485.304709][T16966]  (unregistering): Released all slaves
[  485.312636][T18638] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5269'.
[  485.321903][T18593] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.329124][T18593] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.337195][T18593] bridge_slave_0: entered allmulticast mode
[  485.343696][T18593] bridge_slave_0: entered promiscuous mode
[  485.350542][T18593] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.357658][T18593] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.366248][T18593] bridge_slave_1: entered allmulticast mode
[  485.372914][T18593] bridge_slave_1: entered promiscuous mode
[  485.379321][T16966] tipc: Left network mode
[  485.385477][T16966] IPVS: stopping master sync thread 13521 ...
[  485.393966][T18593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  485.405207][T16966] hsr_slave_0: left promiscuous mode
[  485.410990][T16966] hsr_slave_1: left promiscuous mode
[  485.416569][T16966] batman_adv: batadv0: Removing interface: batadv_slave_1
[  485.470156][T16966] team0 (unregistering): Port device team_slave_1 removed
[  485.483681][T16966] team0 (unregistering): Port device team_slave_0 removed
[  485.518305][T18593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  485.543118][T18593] team0: Port device team_slave_0 added
[  485.552660][T18593] team0: Port device team_slave_1 added
[  485.563543][T18647] loop5: detected capacity change from 0 to 2048
[  485.577331][T18593] batman_adv: batadv0: Adding interface: batadv_slave_0
[  485.579236][T18647] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.584284][T18593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  485.584351][T18593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  485.585338][T18593] batman_adv: batadv0: Adding interface: batadv_slave_1
[  485.641266][T18593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  485.667989][T18593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  485.695982][T18593] hsr_slave_0: entered promiscuous mode
[  485.702511][T18593] hsr_slave_1: entered promiscuous mode
[  485.709187][T18593] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  485.717615][T18593] Cannot create hsr debugfs directory
[  485.801303][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.802728][T18653] FAULT_INJECTION: forcing a failure.
[  485.802728][T18653] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  485.823493][T18653] CPU: 0 UID: 0 PID: 18653 Comm: syz.3.5274 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  485.823641][T18653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  485.823654][T18653] Call Trace:
[  485.823659][T18653]  <TASK>
[  485.823676][T18653]  __dump_stack+0x1d/0x30
[  485.823700][T18653]  dump_stack_lvl+0xe8/0x140
[  485.823722][T18653]  dump_stack+0x15/0x1b
[  485.823741][T18653]  should_fail_ex+0x265/0x280
[  485.823928][T18653]  should_fail+0xb/0x20
[  485.823952][T18653]  should_fail_usercopy+0x1a/0x20
[  485.823981][T18653]  _copy_to_user+0x20/0xa0
[  485.824072][T18653]  simple_read_from_buffer+0xb5/0x130
[  485.824139][T18653]  proc_fail_nth_read+0x100/0x140
[  485.824171][T18653]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  485.824237][T18653]  vfs_read+0x1a0/0x6f0
[  485.824265][T18653]  ? __rcu_read_unlock+0x4f/0x70
[  485.824334][T18653]  ? __fget_files+0x184/0x1c0
[  485.824353][T18653]  ksys_read+0xda/0x1a0
[  485.824445][T18653]  __x64_sys_read+0x40/0x50
[  485.824473][T18653]  x64_sys_call+0x2d77/0x2fb0
[  485.824521][T18653]  do_syscall_64+0xd2/0x200
[  485.824613][T18653]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  485.824645][T18653]  ? clear_bhb_loop+0x40/0x90
[  485.824670][T18653]  ? clear_bhb_loop+0x40/0x90
[  485.824729][T18653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  485.824748][T18653] RIP: 0033:0x7f79ec12d33c
[  485.824762][T18653] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  485.824815][T18653] RSP: 002b:00007f79ea797030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  485.824832][T18653] RAX: ffffffffffffffda RBX: 00007f79ec355fa0 RCX: 00007f79ec12d33c
[  485.824843][T18653] RDX: 000000000000000f RSI: 00007f79ea7970a0 RDI: 0000000000000003
[  485.824854][T18653] RBP: 00007f79ea797090 R08: 0000000000000000 R09: 0000000000000000
[  485.824865][T18653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  485.824876][T18653] R13: 0000000000000001 R14: 00007f79ec355fa0 R15: 00007ffcf9b4d7d8
[  485.824894][T18653]  </TASK>
[  486.185662][T18663] netlink: 'syz.3.5278': attribute type 3 has an invalid length.
[  486.209803][T18666] FAULT_INJECTION: forcing a failure.
[  486.209803][T18666] name failslab, interval 1, probability 0, space 0, times 0
[  486.222604][T18666] CPU: 1 UID: 0 PID: 18666 Comm: syz.4.5280 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  486.222629][T18666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  486.222649][T18666] Call Trace:
[  486.222655][T18666]  <TASK>
[  486.222661][T18666]  __dump_stack+0x1d/0x30
[  486.222679][T18666]  dump_stack_lvl+0xe8/0x140
[  486.222700][T18666]  dump_stack+0x15/0x1b
[  486.222789][T18666]  should_fail_ex+0x265/0x280
[  486.222868][T18666]  should_failslab+0x8c/0xb0
[  486.222896][T18666]  __kvmalloc_node_noprof+0x123/0x4e0
[  486.222929][T18666]  ? traverse+0x9d/0x3a0
[  486.222958][T18666]  traverse+0x9d/0x3a0
[  486.222996][T18666]  ? path_openat+0x1bf8/0x2170
[  486.223035][T18666]  seq_read_iter+0x853/0x940
[  486.223065][T18666]  ? _parse_integer+0x27/0x40
[  486.223091][T18666]  seq_read+0x1f7/0x240
[  486.223117][T18666]  ? __pfx_seq_read+0x10/0x10
[  486.223186][T18666]  vfs_readv+0x3fb/0x690
[  486.223216][T18666]  __x64_sys_preadv+0xfd/0x1c0
[  486.223287][T18666]  x64_sys_call+0x1503/0x2fb0
[  486.223306][T18666]  do_syscall_64+0xd2/0x200
[  486.223322][T18666]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  486.223360][T18666]  ? clear_bhb_loop+0x40/0x90
[  486.223387][T18666]  ? clear_bhb_loop+0x40/0x90
[  486.223478][T18666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.223504][T18666] RIP: 0033:0x7f732b3de929
[  486.223592][T18666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.223615][T18666] RSP: 002b:00007f7329a47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  486.223656][T18666] RAX: ffffffffffffffda RBX: 00007f732b605fa0 RCX: 00007f732b3de929
[  486.223668][T18666] RDX: 0000000000000001 RSI: 0000200000000740 RDI: 0000000000000003
[  486.223680][T18666] RBP: 00007f7329a47090 R08: 0000000000000000 R09: 0000000000000000
[  486.223691][T18666] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[  486.223766][T18666] R13: 0000000000000000 R14: 00007f732b605fa0 R15: 00007ffddc4ee658
[  486.223792][T18666]  </TASK>
[  486.535173][T18675] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5281'.
[  486.545230][T18675] hsr_slave_1: left promiscuous mode
[  486.605545][T18593] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  486.636355][T18593] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  486.645671][T18593] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  486.669372][T18593] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  486.785186][T18684] loop4: detected capacity change from 0 to 512
[  486.810417][T18593] 8021q: adding VLAN 0 to HW filter on device bond0
[  486.827103][T18593] 8021q: adding VLAN 0 to HW filter on device team0
[  486.841168][ T5375] bridge0: port 1(bridge_slave_0) entered blocking state
[  486.848279][ T5375] bridge0: port 1(bridge_slave_0) entered forwarding state
[  486.878158][T18593] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  486.888726][T18593] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  486.925497][ T5375] bridge0: port 2(bridge_slave_1) entered blocking state
[  486.932725][ T5375] bridge0: port 2(bridge_slave_1) entered forwarding state
[  487.043113][T18593] 8021q: adding VLAN 0 to HW filter on device batadv0
[  487.104921][T18697] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5282'.
[  487.177400][T18593] veth0_vlan: entered promiscuous mode
[  487.190468][T18593] veth1_vlan: entered promiscuous mode
[  487.213826][T18593] veth0_macvtap: entered promiscuous mode
[  487.221590][T18593] veth1_macvtap: entered promiscuous mode
[  487.252559][T18593] batman_adv: batadv0: Interface activated: batadv_slave_0
[  487.265244][T18593] batman_adv: batadv0: Interface activated: batadv_slave_1
[  487.279646][T18593] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  487.288553][T18593] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  487.297353][T18593] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  487.306193][T18593] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  487.347142][T18728] serio: Serial port ptm0
[  488.208932][T18765] netlink: 344 bytes leftover after parsing attributes in process `syz.4.5301'.
[  488.508247][T18775] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5304'.
[  488.555682][T18773] lo speed is unknown, defaulting to 1000
[  488.578410][T18777] loop4: detected capacity change from 0 to 2048
[  488.596512][T18773] dummy0 speed is unknown, defaulting to 1000
[  488.606629][   T29] kauditd_printk_skb: 290 callbacks suppressed
[  488.606645][   T29] audit: type=1326 audit(2000000366.310:27936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.753446][T18777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  488.801148][T18791] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5307'.
[  488.856811][   T29] audit: type=1326 audit(2000000366.310:27937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.880685][   T29] audit: type=1326 audit(2000000366.310:27938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.904300][   T29] audit: type=1326 audit(2000000366.310:27939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.927994][   T29] audit: type=1326 audit(2000000366.310:27940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.951809][   T29] audit: type=1326 audit(2000000366.310:27941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.975504][   T29] audit: type=1326 audit(2000000366.310:27942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  488.999146][   T29] audit: type=1326 audit(2000000366.310:27943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5d8902e963 code=0x7ffc0000
[  489.022620][   T29] audit: type=1326 audit(2000000366.310:27944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5d8902e963 code=0x7ffc0000
[  489.035362][T18796] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=144 sclass=netlink_route_socket pid=18796 comm=syz.5.5310
[  489.046132][   T29] audit: type=1326 audit(2000000366.310:27945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18779 comm="syz.0.5306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  489.055503][T18795] xt_hashlimit: size too large, truncated to 1048576
[  489.341450][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.515246][T18817] loop4: detected capacity change from 0 to 512
[  489.567219][T18817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  489.645800][T18817] ext4 filesystem being mounted at /416/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  489.706825][T18817] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.5319: corrupted inode contents
[  489.748481][T18817] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.5319: mark_inode_dirty error
[  489.788479][T18817] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.5319: corrupted inode contents
[  489.808568][T18817] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.5319: mark_inode_dirty error
[  489.859934][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.913445][T18838] SELinux:  Context system_u:object_r:inetd_var_run_t:s0 is not valid (left unmapped).
[  489.925950][T18839] __nla_validate_parse: 3 callbacks suppressed
[  489.925968][T18839] netlink: 256 bytes leftover after parsing attributes in process `syz.4.5325'.
[  489.937408][T18841] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5329'.
[  489.941991][T18839] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5325'.
[  489.963257][T18838] netlink: 'syz.5.5328': attribute type 10 has an invalid length.
[  489.971360][T18838] bridge0: port 4(team0) entered blocking state
[  489.977764][T18838] bridge0: port 4(team0) entered disabled state
[  489.980854][T18836] netlink: 344 bytes leftover after parsing attributes in process `syz.3.5327'.
[  489.993320][T18838] team0: entered allmulticast mode
[  489.993339][T18838] team_slave_0: entered allmulticast mode
[  490.005732][T18838] team_slave_1: entered allmulticast mode
[  490.013419][T18838] team0: entered promiscuous mode
[  490.026354][T18838] team_slave_0: entered promiscuous mode
[  490.032214][T18838] team_slave_1: entered promiscuous mode
[  490.048942][T18838] bridge0: port 4(team0) entered blocking state
[  490.055291][T18838] bridge0: port 4(team0) entered forwarding state
[  490.252162][T18864] FAULT_INJECTION: forcing a failure.
[  490.252162][T18864] name failslab, interval 1, probability 0, space 0, times 0
[  490.265082][T18864] CPU: 1 UID: 0 PID: 18864 Comm: syz.3.5336 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  490.265108][T18864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  490.265122][T18864] Call Trace:
[  490.265130][T18864]  <TASK>
[  490.265139][T18864]  __dump_stack+0x1d/0x30
[  490.265164][T18864]  dump_stack_lvl+0xe8/0x140
[  490.265253][T18864]  dump_stack+0x15/0x1b
[  490.265330][T18864]  should_fail_ex+0x265/0x280
[  490.265369][T18864]  should_failslab+0x8c/0xb0
[  490.265412][T18864]  kmem_cache_alloc_node_noprof+0x57/0x320
[  490.265545][T18864]  ? perf_event_alloc+0x14c/0x1680
[  490.265580][T18864]  perf_event_alloc+0x14c/0x1680
[  490.265612][T18864]  __se_sys_perf_event_open+0x4a5/0x11c0
[  490.265639][T18864]  ? __rcu_read_unlock+0x4f/0x70
[  490.265723][T18864]  __x64_sys_perf_event_open+0x67/0x80
[  490.265757][T18864]  x64_sys_call+0x27ec/0x2fb0
[  490.265778][T18864]  do_syscall_64+0xd2/0x200
[  490.265800][T18864]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  490.265882][T18864]  ? clear_bhb_loop+0x40/0x90
[  490.265902][T18864]  ? clear_bhb_loop+0x40/0x90
[  490.265922][T18864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.265976][T18864] RIP: 0033:0x7f79ec12e929
[  490.265999][T18864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.266023][T18864] RSP: 002b:00007f79ea797038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  490.266078][T18864] RAX: ffffffffffffffda RBX: 00007f79ec355fa0 RCX: 00007f79ec12e929
[  490.266089][T18864] RDX: 0000000800000000 RSI: ffffffffffffffff RDI: 00002000000002c0
[  490.266143][T18864] RBP: 00007f79ea797090 R08: 0000000000000003 R09: 0000000000000000
[  490.266159][T18864] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  490.266174][T18864] R13: 0000000000000000 R14: 00007f79ec355fa0 R15: 00007ffcf9b4d7d8
[  490.266199][T18864]  </TASK>
[  490.323352][T18865] lo speed is unknown, defaulting to 1000
[  490.465796][T18865] dummy0 speed is unknown, defaulting to 1000
[  491.004928][T18875] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5340'.
[  491.163404][T18893] netlink: 216 bytes leftover after parsing attributes in process `syz.5.5347'.
[  491.172536][T18893] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5347'.
[  491.182153][T18893] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5347'.
[  491.224896][T18898] netlink: 344 bytes leftover after parsing attributes in process `syz.3.5350'.
[  491.242450][T18900] loop4: detected capacity change from 0 to 512
[  491.265960][T18904] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5352'.
[  492.453867][T18970] loop5: detected capacity change from 0 to 512
[  492.713665][T18974] netlink: 'syz.4.5375': attribute type 4 has an invalid length.
[  492.826719][T18974] netlink: 'syz.4.5375': attribute type 4 has an invalid length.
[  492.894006][T18979] lo speed is unknown, defaulting to 1000
[  492.922946][T18979] dummy0 speed is unknown, defaulting to 1000
[  492.992340][T18974] loop4: detected capacity change from 0 to 1024
[  493.640408][   T29] kauditd_printk_skb: 512 callbacks suppressed
[  493.640424][   T29] audit: type=1326 audit(2000000371.340:28458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.670393][   T29] audit: type=1326 audit(2000000371.340:28459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.693976][   T29] audit: type=1326 audit(2000000371.340:28460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.719521][   T29] audit: type=1326 audit(2000000371.400:28461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.743161][   T29] audit: type=1326 audit(2000000371.400:28462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.766874][   T29] audit: type=1326 audit(2000000371.400:28463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.790577][   T29] audit: type=1326 audit(2000000371.420:28464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.804211][T19006] lo speed is unknown, defaulting to 1000
[  493.814392][   T29] audit: type=1326 audit(2000000371.420:28465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.814560][   T29] audit: type=1326 audit(2000000371.420:28466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.814594][   T29] audit: type=1326 audit(2000000371.420:28467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19005 comm="syz.0.5383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f5d8902e929 code=0x7ffc0000
[  493.893622][T19006] dummy0 speed is unknown, defaulting to 1000
[  494.225019][T19040] loop4: detected capacity change from 0 to 512
[  494.232851][T19040] journal_path: Lookup failure for './file0/../file0'
[  494.239708][T19040] EXT4-fs: error: could not find journal device path
[  494.486338][T19056] FAULT_INJECTION: forcing a failure.
[  494.486338][T19056] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  494.500208][T19056] CPU: 1 UID: 0 PID: 19056 Comm: syz.0.5401 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  494.500238][T19056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  494.500252][T19056] Call Trace:
[  494.500260][T19056]  <TASK>
[  494.500269][T19056]  __dump_stack+0x1d/0x30
[  494.500339][T19056]  dump_stack_lvl+0xe8/0x140
[  494.500367][T19056]  dump_stack+0x15/0x1b
[  494.500382][T19056]  should_fail_ex+0x265/0x280
[  494.500431][T19056]  should_fail+0xb/0x20
[  494.500461][T19056]  should_fail_usercopy+0x1a/0x20
[  494.500591][T19056]  _copy_to_user+0x20/0xa0
[  494.500614][T19056]  simple_read_from_buffer+0xb5/0x130
[  494.500687][T19056]  proc_fail_nth_read+0x100/0x140
[  494.500715][T19056]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  494.500819][T19056]  vfs_read+0x1a0/0x6f0
[  494.500842][T19056]  ? __rcu_read_unlock+0x4f/0x70
[  494.500860][T19056]  ? __fget_files+0x184/0x1c0
[  494.500883][T19056]  ksys_read+0xda/0x1a0
[  494.501069][T19056]  __x64_sys_read+0x40/0x50
[  494.501101][T19056]  x64_sys_call+0x2d77/0x2fb0
[  494.501149][T19056]  do_syscall_64+0xd2/0x200
[  494.501164][T19056]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  494.501192][T19056]  ? clear_bhb_loop+0x40/0x90
[  494.501217][T19056]  ? clear_bhb_loop+0x40/0x90
[  494.501265][T19056]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.501289][T19056] RIP: 0033:0x7f5d8902d33c
[  494.501352][T19056] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  494.501367][T19056] RSP: 002b:00007f5d87697030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  494.501425][T19056] RAX: ffffffffffffffda RBX: 00007f5d89255fa0 RCX: 00007f5d8902d33c
[  494.501453][T19056] RDX: 000000000000000f RSI: 00007f5d876970a0 RDI: 0000000000000004
[  494.501467][T19056] RBP: 00007f5d87697090 R08: 0000000000000000 R09: 0000000000000000
[  494.501481][T19056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  494.501493][T19056] R13: 0000000000000000 R14: 00007f5d89255fa0 R15: 00007ffc875f5ab8
[  494.501510][T19056]  </TASK>
[  494.731479][T19057] lo speed is unknown, defaulting to 1000
[  494.738921][T19057] dummy0 speed is unknown, defaulting to 1000
[  494.757517][T19059] loop4: detected capacity change from 0 to 2048
[  494.796622][T19059]  loop4: p1 < > p4
[  494.820178][T19059] loop4: p4 size 8388608 extends beyond EOD, truncated
[  495.074226][T19078] __nla_validate_parse: 8 callbacks suppressed
[  495.074242][T19078] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5408'.
[  495.104083][T19078] SELinux:  policydb version 555861952 does not match my version range 15-34
[  495.133095][T19078] SELinux: failed to load policy
[  495.140302][T19078] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5408'.
[  495.250624][T19086] netlink: 216 bytes leftover after parsing attributes in process `syz.5.5413'.
[  495.259857][T19086] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5413'.
[  495.269003][T19086] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5413'.
[  495.302612][T19087] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  495.479610][T19099] FAULT_INJECTION: forcing a failure.
[  495.479610][T19099] name failslab, interval 1, probability 0, space 0, times 0
[  495.492315][T19099] CPU: 1 UID: 0 PID: 19099 Comm: syz.5.5418 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  495.492342][T19099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  495.492368][T19099] Call Trace:
[  495.492374][T19099]  <TASK>
[  495.492382][T19099]  __dump_stack+0x1d/0x30
[  495.492406][T19099]  dump_stack_lvl+0xe8/0x140
[  495.492428][T19099]  dump_stack+0x15/0x1b
[  495.492448][T19099]  should_fail_ex+0x265/0x280
[  495.492483][T19099]  should_failslab+0x8c/0xb0
[  495.492503][T19099]  kmem_cache_alloc_noprof+0x50/0x310
[  495.492525][T19099]  ? audit_log_start+0x365/0x6c0
[  495.492557][T19099]  audit_log_start+0x365/0x6c0
[  495.492664][T19099]  audit_seccomp+0x48/0x100
[  495.492691][T19099]  ? __seccomp_filter+0x68c/0x10d0
[  495.492710][T19099]  __seccomp_filter+0x69d/0x10d0
[  495.492729][T19099]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  495.492812][T19099]  ? vfs_write+0x75e/0x8e0
[  495.492847][T19099]  ? kmem_cache_free+0xdf/0x300
[  495.492910][T19099]  __secure_computing+0x82/0x150
[  495.492927][T19099]  syscall_trace_enter+0xcf/0x1e0
[  495.492953][T19099]  do_syscall_64+0xac/0x200
[  495.492972][T19099]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  495.493060][T19099]  ? clear_bhb_loop+0x40/0x90
[  495.493083][T19099]  ? clear_bhb_loop+0x40/0x90
[  495.493104][T19099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.493121][T19099] RIP: 0033:0x7f469b43e929
[  495.493134][T19099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.493149][T19099] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  495.493267][T19099] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  495.493281][T19099] RDX: 0000000000000000 RSI: 0000000000000402 RDI: 0000000000000003
[  495.493313][T19099] RBP: 00007f4699aa7090 R08: 0000000000000000 R09: 0000000000000000
[  495.493327][T19099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.493339][T19099] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  495.493356][T19099]  </TASK>
[  495.781686][T19106] netlink: 344 bytes leftover after parsing attributes in process `syz.1.5422'.
[  495.841910][T19111] loop5: detected capacity change from 0 to 512
[  495.862122][T19111] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  495.969152][T19111] EXT4-fs (loop5): 1 truncate cleaned up
[  495.975306][T19111] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.384944][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.098640][T19140] loop5: detected capacity change from 0 to 512
[  497.121049][T19140] journal_path: Lookup failure for './file0/../file0'
[  497.128540][T19140] EXT4-fs: error: could not find journal device path
[  497.581067][T19144] wireguard0: entered promiscuous mode
[  497.628219][T19143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5434'.
[  497.647031][T19147] netlink: 344 bytes leftover after parsing attributes in process `syz.5.5435'.
[  497.830175][T19158] netlink: 216 bytes leftover after parsing attributes in process `syz.1.5440'.
[  497.839288][T19158] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5440'.
[  497.942286][T11767] block device autoloading is deprecated and will be removed.
[  498.059243][T19171] loop4: detected capacity change from 0 to 512
[  498.108451][T19171] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5445: bg 0: block 16: invalid block bitmap
[  498.125286][T19171] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  498.145512][T19171] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.5445: attempt to clear invalid blocks 1669132790 len 1
[  498.319374][T19171] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5445: invalid indirect mapped block 4294967295 (level 1)
[  498.351432][T19171] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5445: invalid indirect mapped block 4294967295 (level 2)
[  498.382724][T19171] EXT4-fs (loop4): 1 truncate cleaned up
[  498.395081][T19171] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  498.696790][   T29] kauditd_printk_skb: 382 callbacks suppressed
[  498.696809][   T29] audit: type=1326 audit(2000000376.400:28848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.831664][   T29] audit: type=1326 audit(2000000376.430:28849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.855358][   T29] audit: type=1326 audit(2000000376.430:28850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.879181][   T29] audit: type=1326 audit(2000000376.430:28851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.902806][   T29] audit: type=1326 audit(2000000376.430:28852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.926477][   T29] audit: type=1326 audit(2000000376.430:28853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.950308][   T29] audit: type=1326 audit(2000000376.430:28854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.973965][   T29] audit: type=1326 audit(2000000376.430:28855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  498.997784][   T29] audit: type=1326 audit(2000000376.430:28856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  499.021548][   T29] audit: type=1326 audit(2000000376.430:28857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19189 comm="syz.5.5451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f469b43d290 code=0x7ffc0000
[  499.049503][T19207] hsr_slave_0: left promiscuous mode
[  499.064721][T19207] hsr_slave_1: left promiscuous mode
[  499.076585][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.160593][T19212] loop4: detected capacity change from 0 to 2048
[  499.171083][T19206] lo speed is unknown, defaulting to 1000
[  499.193562][T19206] dummy0 speed is unknown, defaulting to 1000
[  499.218891][T19212] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.453927][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.689113][T19235] FAULT_INJECTION: forcing a failure.
[  499.689113][T19235] name failslab, interval 1, probability 0, space 0, times 0
[  499.701883][T19235] CPU: 1 UID: 0 PID: 19235 Comm: syz.1.5468 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  499.701915][T19235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  499.701965][T19235] Call Trace:
[  499.701995][T19235]  <TASK>
[  499.702003][T19235]  __dump_stack+0x1d/0x30
[  499.702023][T19235]  dump_stack_lvl+0xe8/0x140
[  499.702077][T19235]  dump_stack+0x15/0x1b
[  499.702096][T19235]  should_fail_ex+0x265/0x280
[  499.702158][T19235]  should_failslab+0x8c/0xb0
[  499.702178][T19235]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  499.702234][T19235]  ? __d_alloc+0x3d/0x350
[  499.702259][T19235]  ? cmp_ex_search+0x25/0x40
[  499.702284][T19235]  __d_alloc+0x3d/0x350
[  499.702331][T19235]  ? search_extable+0x53/0x80
[  499.702351][T19235]  d_alloc_parallel+0x53/0xc40
[  499.702378][T19235]  ? selinux_inode_permission+0x532/0x620
[  499.702403][T19235]  ? make_vfsuid+0x49/0xa0
[  499.702433][T19235]  ? lockref_get_not_dead+0x120/0x1c0
[  499.702499][T19235]  ? __rcu_read_unlock+0x4f/0x70
[  499.702579][T19235]  __lookup_slow+0x8c/0x250
[  499.702610][T19235]  lookup_slow+0x3c/0x60
[  499.702635][T19235]  walk_component+0x1ec/0x220
[  499.702655][T19235]  path_lookupat+0xfe/0x2a0
[  499.702686][T19235]  filename_lookup+0x147/0x340
[  499.702791][T19235]  user_path_at+0x3e/0x130
[  499.702815][T19235]  __se_sys_mount+0x25b/0x2e0
[  499.702866][T19235]  ? fput+0x8f/0xc0
[  499.702941][T19235]  __x64_sys_mount+0x67/0x80
[  499.702969][T19235]  x64_sys_call+0xd36/0x2fb0
[  499.702989][T19235]  do_syscall_64+0xd2/0x200
[  499.703007][T19235]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  499.703077][T19235]  ? clear_bhb_loop+0x40/0x90
[  499.703102][T19235]  ? clear_bhb_loop+0x40/0x90
[  499.703128][T19235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  499.703178][T19235] RIP: 0033:0x7f276219e929
[  499.703193][T19235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  499.703214][T19235] RSP: 002b:00007f2760807038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  499.703308][T19235] RAX: ffffffffffffffda RBX: 00007f27623c5fa0 RCX: 00007f276219e929
[  499.703323][T19235] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000
[  499.703336][T19235] RBP: 00007f2760807090 R08: 0000000000000000 R09: 0000000000000000
[  499.703347][T19235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  499.703357][T19235] R13: 0000000000000001 R14: 00007f27623c5fa0 R15: 00007ffcec434598
[  499.703445][T19235]  </TASK>
[  500.153105][T19238] __nla_validate_parse: 6 callbacks suppressed
[  500.153119][T19238] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5466'.
[  500.168556][T19238] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5466'.
[  500.177634][T19238] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5466'.
[  500.408531][T19247] netlink: 'syz.4.5471': attribute type 3 has an invalid length.
[  500.863156][T19265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5476'.
[  501.328416][T19272] netlink: 'syz.4.5479': attribute type 1 has an invalid length.
[  501.435740][T19277] loop4: detected capacity change from 0 to 512
[  501.443762][T19277] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5481: bg 0: block 16: invalid block bitmap
[  501.456421][T19277] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  501.465258][T19277] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.5481: attempt to clear invalid blocks 1669132790 len 1
[  501.483733][T19277] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5481: invalid indirect mapped block 4294967295 (level 1)
[  501.508145][T19277] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5481: invalid indirect mapped block 4294967295 (level 2)
[  501.533500][T19277] EXT4-fs (loop4): 1 truncate cleaned up
[  501.544943][T19277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.654864][T19287] FAULT_INJECTION: forcing a failure.
[  501.654864][T19287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.668728][T19287] CPU: 1 UID: 0 PID: 19287 Comm: syz.5.5486 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  501.668755][T19287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  501.668796][T19287] Call Trace:
[  501.668804][T19287]  <TASK>
[  501.668812][T19287]  __dump_stack+0x1d/0x30
[  501.668839][T19287]  dump_stack_lvl+0xe8/0x140
[  501.668862][T19287]  dump_stack+0x15/0x1b
[  501.668884][T19287]  should_fail_ex+0x265/0x280
[  501.668941][T19287]  should_fail+0xb/0x20
[  501.669041][T19287]  should_fail_usercopy+0x1a/0x20
[  501.669076][T19287]  _copy_from_user+0x1c/0xb0
[  501.669097][T19287]  ___sys_sendmsg+0xc1/0x1d0
[  501.669223][T19287]  __x64_sys_sendmsg+0xd4/0x160
[  501.669264][T19287]  x64_sys_call+0x2999/0x2fb0
[  501.669306][T19287]  do_syscall_64+0xd2/0x200
[  501.669322][T19287]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  501.669347][T19287]  ? clear_bhb_loop+0x40/0x90
[  501.669368][T19287]  ? clear_bhb_loop+0x40/0x90
[  501.669450][T19287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.669476][T19287] RIP: 0033:0x7f469b43e929
[  501.669490][T19287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.669512][T19287] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  501.669535][T19287] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  501.669551][T19287] RDX: 0000000000008084 RSI: 0000200000000080 RDI: 0000000000000003
[  501.669625][T19287] RBP: 00007f4699aa7090 R08: 0000000000000000 R09: 0000000000000000
[  501.669640][T19287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.669654][T19287] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  501.669679][T19287]  </TASK>
[  501.673770][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.929109][T19294] loop4: detected capacity change from 0 to 2048
[  501.969408][T19294] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  502.030036][T19296] netlink: 'syz.5.5489': attribute type 1 has an invalid length.
[  502.095712][T19296] 8021q: adding VLAN 0 to HW filter on device bond1
[  502.155063][T19301] bond1: (slave geneve2): making interface the new active one
[  502.178381][T11767] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.198121][T19301] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  502.240513][T19302] vlan2: entered allmulticast mode
[  502.245776][T19302] veth1_to_team: entered allmulticast mode
[  502.265627][    T9] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  502.273125][    T9] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  502.280583][    T9] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  502.303795][    T9] hid-generic 0003:0004:0000.0005: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  502.319341][T19305] netlink: 'syz.4.5490': attribute type 3 has an invalid length.
[  502.473287][T19313] loop5: detected capacity change from 0 to 128
[  502.513088][T19313] FAULT_INJECTION: forcing a failure.
[  502.513088][T19313] name failslab, interval 1, probability 0, space 0, times 0
[  502.525918][T19313] CPU: 0 UID: 0 PID: 19313 Comm: syz.5.5493 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  502.526052][T19313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  502.526065][T19313] Call Trace:
[  502.526073][T19313]  <TASK>
[  502.526083][T19313]  __dump_stack+0x1d/0x30
[  502.526106][T19313]  dump_stack_lvl+0xe8/0x140
[  502.526130][T19313]  dump_stack+0x15/0x1b
[  502.526148][T19313]  should_fail_ex+0x265/0x280
[  502.526235][T19313]  should_failslab+0x8c/0xb0
[  502.526263][T19313]  __kmalloc_noprof+0xa5/0x3e0
[  502.526293][T19313]  ? copy_splice_read+0xc2/0x5f0
[  502.526328][T19313]  copy_splice_read+0xc2/0x5f0
[  502.526417][T19313]  ? __pfx_filemap_splice_read+0x10/0x10
[  502.526453][T19313]  splice_direct_to_actor+0x290/0x680
[  502.526488][T19313]  ? __pfx_direct_splice_actor+0x10/0x10
[  502.526544][T19313]  do_splice_direct+0xda/0x150
[  502.526576][T19313]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  502.526618][T19313]  do_sendfile+0x380/0x650
[  502.526706][T19313]  __x64_sys_sendfile64+0x105/0x150
[  502.526852][T19313]  x64_sys_call+0xb39/0x2fb0
[  502.526878][T19313]  do_syscall_64+0xd2/0x200
[  502.526956][T19313]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  502.526982][T19313]  ? clear_bhb_loop+0x40/0x90
[  502.527025][T19313]  ? clear_bhb_loop+0x40/0x90
[  502.527050][T19313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.527114][T19313] RIP: 0033:0x7f469b43e929
[  502.527129][T19313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.527151][T19313] RSP: 002b:00007f4699aa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  502.527172][T19313] RAX: ffffffffffffffda RBX: 00007f469b665fa0 RCX: 00007f469b43e929
[  502.527200][T19313] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007
[  502.527214][T19313] RBP: 00007f4699aa7090 R08: 0000000000000000 R09: 0000000000000000
[  502.527228][T19313] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[  502.527243][T19313] R13: 0000000000000000 R14: 00007f469b665fa0 R15: 00007ffd359509a8
[  502.527266][T19313]  </TASK>
[  503.127864][T19323] netlink: 216 bytes leftover after parsing attributes in process `syz.0.5497'.
[  503.137103][T19323] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5497'.
[  503.146183][T19323] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5497'.
[  503.306229][T19328] loop4: detected capacity change from 0 to 128
[  503.445352][T19328] syz.4.5500: attempt to access beyond end of device
[  503.445352][T19328] loop4: rw=2049, sector=753, nr_sectors = 128 limit=128
[  503.966113][   T29] kauditd_printk_skb: 104 callbacks suppressed
[  503.966129][   T29] audit: type=1326 audit(2000000381.610:28962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  503.996022][   T29] audit: type=1326 audit(2000000381.610:28963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.019637][   T29] audit: type=1326 audit(2000000381.610:28964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.043256][   T29] audit: type=1326 audit(2000000381.610:28965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f469b43d290 code=0x7ffc0000
[  504.066970][   T29] audit: type=1326 audit(2000000381.610:28966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.090656][   T29] audit: type=1326 audit(2000000381.610:28967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.114270][   T29] audit: type=1326 audit(2000000381.610:28968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.137872][   T29] audit: type=1326 audit(2000000381.610:28969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.161586][   T29] audit: type=1326 audit(2000000381.610:28970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.185164][   T29] audit: type=1326 audit(2000000381.620:28971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19345 comm="syz.5.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f469b43e929 code=0x7ffc0000
[  504.415232][T19351] netlink: 216 bytes leftover after parsing attributes in process `syz.3.5510'.
[  504.424473][T19351] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5510'.
[  504.433495][T19351] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5510'.
[  504.435349][ T6953] kworker/u8:27: attempt to access beyond end of device
[  504.435349][ T6953] loop4: rw=1, sector=881, nr_sectors = 160 limit=128
[  504.690160][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.697758][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.705220][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.712777][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.720403][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.728033][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.735429][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.743145][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.750710][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.758159][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.765569][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.773005][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.780578][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.788122][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.795502][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.802931][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.810411][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.817957][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.825358][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.832879][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.840300][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.847714][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.855134][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.862586][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.870010][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.877420][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.884824][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.892230][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.899714][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.907137][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.914534][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.921972][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.929391][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.936821][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.944219][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.951652][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.959171][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.966581][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.973987][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.981423][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.988849][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  504.996271][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.003749][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.011148][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.018565][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.026103][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.033490][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.040949][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.048359][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.055746][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.063217][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.070688][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.078169][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.085642][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.093063][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.100514][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.107995][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.115403][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.122906][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.130318][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.137729][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.145163][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.152660][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.160174][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.167584][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.174975][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.182419][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.189861][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.197327][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.204812][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.212244][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.219653][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.227114][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.234509][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.242054][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.249465][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.256880][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.264323][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.271741][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.279187][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.286716][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.294855][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.302480][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  505.310691][   T10] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  505.384586][T19383] loop5: detected capacity change from 0 to 512
[  505.404234][T19383] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.5521: bg 0: block 16: invalid block bitmap
[  505.418643][T19383] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  505.428178][T19383] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.5521: attempt to clear invalid blocks 1669132790 len 1
[  505.443465][T19383] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.5521: invalid indirect mapped block 4294967295 (level 1)
[  505.497266][T19383] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.5521: invalid indirect mapped block 4294967295 (level 2)
[  505.515666][T19392] __nla_validate_parse: 1 callbacks suppressed
[  505.515680][T19392] netlink: 1204 bytes leftover after parsing attributes in process `syz.1.5523'.
[  505.534549][T19393] netlink: 1204 bytes leftover after parsing attributes in process `syz.4.5522'.
[  505.556300][T19383] EXT4-fs (loop5): 1 truncate cleaned up
[  505.562588][T19383] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  505.650304][T19398] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5527'.
[  505.745578][T15563] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.772602][T19404] netlink: 'syz.3.5528': attribute type 3 has an invalid length.
[  505.795111][T19405] FAULT_INJECTION: forcing a failure.
[  505.795111][T19405] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  505.808454][T19405] CPU: 0 UID: 0 PID: 19405 Comm: syz.0.5529 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  505.808481][T19405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  505.808493][T19405] Call Trace:
[  505.808499][T19405]  <TASK>
[  505.808506][T19405]  __dump_stack+0x1d/0x30
[  505.808528][T19405]  dump_stack_lvl+0xe8/0x140
[  505.808552][T19405]  dump_stack+0x15/0x1b
[  505.808571][T19405]  should_fail_ex+0x265/0x280
[  505.808680][T19405]  should_fail+0xb/0x20
[  505.808710][T19405]  should_fail_usercopy+0x1a/0x20
[  505.808874][T19405]  _copy_from_user+0x1c/0xb0
[  505.808965][T19405]  __sys_sendto+0x19e/0x330
[  505.809013][T19405]  __x64_sys_sendto+0x76/0x90
[  505.809123][T19405]  x64_sys_call+0x2eb6/0x2fb0
[  505.809148][T19405]  do_syscall_64+0xd2/0x200
[  505.809168][T19405]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  505.809264][T19405]  ? clear_bhb_loop+0x40/0x90
[  505.809289][T19405]  ? clear_bhb_loop+0x40/0x90
[  505.809314][T19405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.809414][T19405] RIP: 0033:0x7f5d8902e929
[  505.809428][T19405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.809474][T19405] RSP: 002b:00007f5d87697038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  505.809492][T19405] RAX: ffffffffffffffda RBX: 00007f5d89255fa0 RCX: 00007f5d8902e929
[  505.809504][T19405] RDX: 0000000000010300 RSI: 0000200000000180 RDI: 0000000000000005
[  505.809515][T19405] RBP: 00007f5d87697090 R08: 0000200000000140 R09: 0000000000000014
[  505.809527][T19405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.809538][T19405] R13: 0000000000000000 R14: 00007f5d89255fa0 R15: 00007ffc875f5ab8
[  505.809558][T19405]  </TASK>
[  506.009689][T19409] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5531'.
[  506.018828][T19409] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5531'.
[  506.030956][T19409] gretap0: entered promiscuous mode
[  506.037659][T19409] batadv_slave_1: entered promiscuous mode
[  506.048353][T19409] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  506.062713][T19409] Cannot create hsr debugfs directory
[  506.352409][T19424] random: crng reseeded on system resumption
[  506.689879][T19437] loop4: detected capacity change from 0 to 512
[  506.741015][T19440] netlink: 'syz.3.5540': attribute type 5 has an invalid length.
[  506.955625][T19457] netlink: 344 bytes leftover after parsing attributes in process `syz.1.5546'.
[  507.020307][T19455] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5539'.
[  507.051928][T19465] FAULT_INJECTION: forcing a failure.
[  507.051928][T19465] name failslab, interval 1, probability 0, space 0, times 0
[  507.064661][T19465] CPU: 0 UID: 0 PID: 19465 Comm: syz.1.5549 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  507.064692][T19465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  507.064708][T19465] Call Trace:
[  507.064716][T19465]  <TASK>
[  507.064725][T19465]  __dump_stack+0x1d/0x30
[  507.064758][T19465]  dump_stack_lvl+0xe8/0x140
[  507.064825][T19465]  dump_stack+0x15/0x1b
[  507.064843][T19465]  should_fail_ex+0x265/0x280
[  507.064873][T19465]  should_failslab+0x8c/0xb0
[  507.064901][T19465]  __kmalloc_cache_node_noprof+0x54/0x320
[  507.064968][T19465]  ? __get_vm_area_node+0x106/0x1d0
[  507.064999][T19465]  ? search_extable+0x53/0x80
[  507.065075][T19465]  __get_vm_area_node+0x106/0x1d0
[  507.065194][T19465]  __vmalloc_node_range_noprof+0x273/0xe00
[  507.065293][T19465]  ? ip_set_sockfn_get+0x10a/0x6b0
[  507.065403][T19465]  ? __bpf_trace_sys_enter+0x10/0x30
[  507.065471][T19465]  ? __rcu_read_unlock+0x4f/0x70
[  507.065536][T19465]  ? selinux_capable+0x1f9/0x270
[  507.065586][T19465]  ? ip_set_sockfn_get+0x10a/0x6b0
[  507.065722][T19465]  vmalloc_noprof+0x82/0xc0
[  507.065760][T19465]  ? ip_set_sockfn_get+0x10a/0x6b0
[  507.065797][T19465]  ip_set_sockfn_get+0x10a/0x6b0
[  507.065890][T19465]  nf_getsockopt+0x18d/0x1b0
[  507.065910][T19465]  ip_getsockopt+0x137/0x180
[  507.065939][T19465]  raw_getsockopt+0xb0/0x190
[  507.066037][T19465]  sock_common_getsockopt+0x5d/0x70
[  507.066080][T19465]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  507.066107][T19465]  do_sock_getsockopt+0x1fd/0x240
[  507.066153][T19465]  __x64_sys_getsockopt+0x11e/0x1a0
[  507.066189][T19465]  x64_sys_call+0x12aa/0x2fb0
[  507.066212][T19465]  do_syscall_64+0xd2/0x200
[  507.066231][T19465]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  507.066277][T19465]  ? clear_bhb_loop+0x40/0x90
[  507.066300][T19465]  ? clear_bhb_loop+0x40/0x90
[  507.066349][T19465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.066448][T19465] RIP: 0033:0x7f276219e929
[  507.066461][T19465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.066481][T19465] RSP: 002b:00007f2760807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  507.066499][T19465] RAX: ffffffffffffffda RBX: 00007f27623c5fa0 RCX: 00007f276219e929
[  507.066551][T19465] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000003
[  507.066564][T19465] RBP: 00007f2760807090 R08: 0000200000000040 R09: 0000000000000000
[  507.066575][T19465] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.066589][T19465] R13: 0000000000000000 R14: 00007f27623c5fa0 R15: 00007ffcec434598
[  507.066612][T19465]  </TASK>
[  507.324910][T19465] warn_alloc: 1 callbacks suppressed
[  507.324921][T19465] syz.1.5549: vmalloc error: size 40, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0
[  507.344183][T19465] CPU: 0 UID: 0 PID: 19465 Comm: syz.1.5549 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  507.344208][T19465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  507.344219][T19465] Call Trace:
[  507.344266][T19465]  <TASK>
[  507.344273][T19465]  __dump_stack+0x1d/0x30
[  507.344292][T19465]  dump_stack_lvl+0xe8/0x140
[  507.344308][T19465]  dump_stack+0x15/0x1b
[  507.344322][T19465]  warn_alloc+0x12b/0x1a0
[  507.344421][T19465]  __vmalloc_node_range_noprof+0x297/0xe00
[  507.344488][T19465]  ? __bpf_trace_sys_enter+0x10/0x30
[  507.344509][T19465]  ? __rcu_read_unlock+0x4f/0x70
[  507.344607][T19465]  ? selinux_capable+0x1f9/0x270
[  507.344638][T19465]  ? ip_set_sockfn_get+0x10a/0x6b0
[  507.344722][T19465]  vmalloc_noprof+0x82/0xc0
[  507.344754][T19465]  ? ip_set_sockfn_get+0x10a/0x6b0
[  507.344795][T19465]  ip_set_sockfn_get+0x10a/0x6b0
[  507.344827][T19465]  nf_getsockopt+0x18d/0x1b0
[  507.344896][T19465]  ip_getsockopt+0x137/0x180
[  507.344999][T19465]  raw_getsockopt+0xb0/0x190
[  507.345027][T19465]  sock_common_getsockopt+0x5d/0x70
[  507.345059][T19465]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  507.345150][T19465]  do_sock_getsockopt+0x1fd/0x240
[  507.345224][T19465]  __x64_sys_getsockopt+0x11e/0x1a0
[  507.345262][T19465]  x64_sys_call+0x12aa/0x2fb0
[  507.345342][T19465]  do_syscall_64+0xd2/0x200
[  507.345407][T19465]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  507.345436][T19465]  ? clear_bhb_loop+0x40/0x90
[  507.345460][T19465]  ? clear_bhb_loop+0x40/0x90
[  507.345602][T19465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.345625][T19465] RIP: 0033:0x7f276219e929
[  507.345640][T19465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.345678][T19465] RSP: 002b:00007f2760807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  507.345700][T19465] RAX: ffffffffffffffda RBX: 00007f27623c5fa0 RCX: 00007f276219e929
[  507.345715][T19465] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000003
[  507.345754][T19465] RBP: 00007f2760807090 R08: 0000200000000040 R09: 0000000000000000
[  507.345765][T19465] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.345776][T19465] R13: 0000000000000000 R14: 00007f27623c5fa0 R15: 00007ffcec434598
[  507.345795][T19465]  </TASK>
[  507.345802][T19465] Mem-Info:
[  507.452185][T19463] netlink: 1204 bytes leftover after parsing attributes in process `syz.3.5547'.
[  507.587450][T19465] active_anon:33501 inactive_anon:1 isolated_anon:0
[  507.587450][T19465]  active_file:20357 inactive_file:4776 isolated_file:0
[  507.587450][T19465]  unevictable:0 dirty:118 writeback:0
[  507.587450][T19465]  slab_reclaimable:3208 slab_unreclaimable:52978
[  507.587450][T19465]  mapped:40318 shmem:19771 pagetables:1297
[  507.587450][T19465]  sec_pagetables:0 bounce:0
[  507.587450][T19465]  kernel_misc_reclaimable:0
[  507.587450][T19465]  free:1661667 free_pcp:137227 free_cma:0
[  507.632948][T19465] Node 0 active_anon:134584kB inactive_anon:16kB active_file:81956kB inactive_file:19104kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:161828kB dirty:500kB writeback:0kB shmem:79764kB writeback_tmp:0kB kernel_stack:3520kB pagetables:5264kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  507.662096][T19465] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  507.691043][T19465] lowmem_reserve[]: 0 2882 7860 7860
[  507.696392][T19465] Node 0 DMA32 free:2947828kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951356kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  507.726838][T19465] lowmem_reserve[]: 0 0 4978 4978
[  507.731940][T19465] Node 0 Normal free:3687536kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:135976kB inactive_anon:16kB active_file:83232kB inactive_file:19104kB unevictable:0kB writepending:500kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:537500kB local_pcp:251140kB free_cma:0kB
[  507.764315][T19465] lowmem_reserve[]: 0 0 0 0
[  507.768904][T19465] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  507.781781][T19465] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 4*16kB (M) 3*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947828kB
[  507.798138][T19465] Node 0 Normal: 285*4kB (U) 142*8kB (U) 107*16kB (UE) 94*32kB (UME) 105*64kB (UE) 638*128kB (UME) 190*256kB (UME) 283*512kB (UM) 237*1024kB (UM) 49*2048kB (UME) 745*4096kB (UM) = 3683476kB
[  507.817084][T19465] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  507.826504][T19465] 46430 total pagecache pages
[  507.831195][T19465] 15 pages in swap cache
[  507.835444][T19465] Free swap  = 124652kB
[  507.839641][T19465] Total swap = 124996kB
[  507.843804][T19465] 2097051 pages RAM
[  507.847688][T19465] 0 pages HighMem/MovableOnly
[  507.852443][T19465] 80812 pages reserved
[  508.007829][T19474] netlink: 'syz.1.5551': attribute type 3 has an invalid length.
[  508.295001][T19487] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5557'.
[  508.304758][T19487] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5557'.
[  508.479260][T19489] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  508.488673][T19489] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  508.568760][T19489] lo speed is unknown, defaulting to 1000
[  508.656616][T19489] dummy0 speed is unknown, defaulting to 1000
[  509.016259][   T29] kauditd_printk_skb: 423 callbacks suppressed
[  509.016319][   T29] audit: type=1326 audit(2000000386.550:29395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19488 comm="syz.3.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f79ec0cab19 code=0x7ffc0000
[  509.046748][   T29] audit: type=1326 audit(2000000386.720:29396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19488 comm="syz.3.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ec12e929 code=0x7ffc0000
[  509.199311][T19505] ==================================================================
[  509.207456][T19505] BUG: KCSAN: data-race in __bpf_get_stackid / bcmp
[  509.214065][T19505] 
[  509.216409][T19505] write to 0xffff8881293f8870 of 96 bytes by task 19501 on cpu 1:
[  509.224217][T19505]  __bpf_get_stackid+0x761/0x800
[  509.229260][T19505]  bpf_get_stackid+0xee/0x120
[  509.233949][T19505]  bpf_get_stackid_raw_tp+0xf6/0x120
[  509.239243][T19505]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[  509.244706][T19505]  bpf_trace_run2+0x104/0x1c0
[  509.249387][T19505]  __traceiter_kfree+0x2e/0x50
[  509.254171][T19505]  kfree+0x27b/0x320
[  509.258075][T19505]  __bpf_prog_put_noref+0xd0/0x230
[  509.263208][T19505]  bpf_prog_load+0xfc9/0x1070
[  509.267920][T19505]  __sys_bpf+0x51d/0x790
[  509.272191][T19505]  __x64_sys_bpf+0x41/0x50
[  509.276625][T19505]  x64_sys_call+0x2478/0x2fb0
[  509.281308][T19505]  do_syscall_64+0xd2/0x200
[  509.285810][T19505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.291710][T19505] 
[  509.294038][T19505] read to 0xffff8881293f8898 of 8 bytes by task 19505 on cpu 0:
[  509.301671][T19505]  bcmp+0x23/0x90
[  509.305306][T19505]  __bpf_get_stackid+0x371/0x800
[  509.310273][T19505]  bpf_get_stackid+0xee/0x120
[  509.314958][T19505]  bpf_get_stackid_raw_tp+0xf6/0x120
[  509.320252][T19505]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[  509.325714][T19505]  bpf_trace_run2+0x104/0x1c0
[  509.330401][T19505]  __traceiter_kfree+0x2e/0x50
[  509.335203][T19505]  kfree+0x27b/0x320
[  509.339106][T19505]  security_compute_sid+0x11da/0x1290
[  509.344483][T19505]  security_transition_sid+0x5a/0x70
[  509.349791][T19505]  selinux_determine_inode_label+0x1e3/0x210
[  509.355783][T19505]  may_create+0x1e2/0x2b0
[  509.360116][T19505]  selinux_inode_symlink+0x22/0x30
[  509.365245][T19505]  security_inode_symlink+0x79/0xc0
[  509.370459][T19505]  vfs_symlink+0x84/0x1e0
[  509.374807][T19505]  do_symlinkat+0xc7/0x3c0
[  509.379241][T19505]  __x64_sys_symlinkat+0x5a/0x70
[  509.384197][T19505]  x64_sys_call+0x1558/0x2fb0
[  509.388879][T19505]  do_syscall_64+0xd2/0x200
[  509.393402][T19505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.399302][T19505] 
[  509.401652][T19505] value changed: 0xffffffff81d5a54a -> 0xffffffff8161de00
[  509.408786][T19505] 
[  509.411133][T19505] Reported by Kernel Concurrency Sanitizer on:
[  509.417285][T19505] CPU: 0 UID: 0 PID: 19505 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  509.429971][T19505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  509.440037][T19505] ==================================================================