last executing test programs:

5.087809935s ago: executing program 2 (id=1051):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r3=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r3}}], 0x20, 0x2400e044}, 0x0)

4.205794014s ago: executing program 2 (id=1067):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000004c0)={'ip_vti0\x00', &(0x7f0000000b00)={'tunl0\x00', 0x0, 0x8000, 0x1, 0x9, 0x6, {{0xe, 0x4, 0x2, 0x3d, 0x38, 0x66, 0x0, 0x0, 0x4, 0x0, @multicast2, @broadcast, {[@generic={0x94, 0x8, "fe03309b7b76"}, @rr={0x7, 0x13, 0xc5, [@broadcast, @multicast1, @multicast1, @broadcast]}, @generic={0x94, 0x2}, @end, @lsrr={0x83, 0x3, 0x2c}]}}}}})
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x53b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9f}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4060040}, 0x0)

4.116729723s ago: executing program 2 (id=1071):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
socket$inet(0x2, 0x3, 0x2)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0xffff, 0xb7, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x1e)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000080)=@gcm_128={{0x303}, "ba28597967d1b54c", "9712b0d86846b5ecc522bc6f13a6e30c", "ea0292da", "9e87dc79f4c04982"}, 0x28)
r4 = getgid()
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)='system_u:object_r:fsadm_log_t:s0\x00', 0x21, 0x0)
lchown(0x0, 0x0, r4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r5, 0x4b68, 0x0)
socket$caif_stream(0x25, 0x1, 0x4)
r6 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000001040), 0x2, 0x0)
r7 = fcntl$getown(0xffffffffffffffff, 0x9)
r8 = socket(0x10, 0x80000, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r9=>0x0}, &(0x7f0000cab000)=0xc)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000011c0)=[{{&(0x7f0000000280)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000300)}, {&(0x7f0000000340)="5073c81ce0ea0050bf6d8e62cc28e1fbdb734276e7f52385c4a949ff2d2b5eb36f73823b4afb8ee94f57272d64b05d681778e548a3e4adbc28115b673006aafa9dafa67b3258914e9069bbc5455b2a262b1aaa7d2b472b190110c1a6b99593a2954e5ced0d3693a120ba642ba5f4682b3614339ba932da6fc5c8801bf4170ad4018e620da5316bbb8b694a853cacf3f5178ab3c6c4ba8abe688bcfe8871339594d58417bc94898d7449f43e7aa1e1de3c609052dd10f3bb012e3393f4b9c638ba0434bdf89227ee279c7f196e5a671a3e2d78710cc15eaf293869836af1f110160", 0xe1}, {&(0x7f0000000580)="8e03e998606f03c4edaa3005c6d1209efbb05cfbb2c3e8d21cc9d5bdeda5d0d5808c83174122cb37396597d55ece0d66cf379b3f9893554197cf3442c03de7f2f9050da10408de5ac30fade1b22a7043e6af706d4daf6fc702aea31729de3952", 0x60}, {&(0x7f0000000600)="9398547bff33af243c4bd8c517f40d0ea19f3252be68774f3dcddd42556814478a09a2ba7b9f9d3b41628cc9371d47729ed798cdc160f2140ea1213e2530", 0x3e}], 0x4, &(0x7f0000000680), 0x0, 0x4000004}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000006c0)="e9599706d2b75d23b805e980521fef967746e36c0c9c469622b94320f992d713242f6a790ef9db042420c00dc4a0239f3502f32e7dae6419f5d349c677af8e888e", 0x41}, {&(0x7f0000000780)="159366cd13bd64ade137c202b7d165ff961ee96ff61cb6675f5290af50ace3d1719814092062028c65846f264dc208453386b0a3fdee553c8d694479fb68438ddca39290d787a7b5c151eccc2f71e453a22c9dfa1635ec17d5d09658fc7a4427a78cf330151bcd0e0ef27b62e68d9351ce5864b36101c6", 0x77}, {&(0x7f0000000e00)="bc4f8a4f6ed224cfccab2d9bb995c0458db0f9a728497664717b4747918dd28402c2ee8efbd45923d3daf06506259bf8ce2d4f065f4428cc87e959f972eaf5bd93387c43a1f4ed53f731e9e55b5678f3b74997817dbe8b39972ac206031177db9ed839aefe9cc943e735d0099d0fbe03b93ba6bb2d31695178a363843abe964b73090c9e7af8", 0x86}], 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r7, @ANYBLOB="ba000000"], 0x48, 0x880}}, {{&(0x7f0000000b00)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000dc0)=[{&(0x7f0000000980)="ccd185f9f51b3c932b5e18884f2b4eee1fd4865b0b", 0x15}, {&(0x7f0000000b80)="2e371c74460963951d0d864d861c82c22175d4467d2b3304cdb2bd504b44cd7dc7edb47c711fd4bfbdab4a875f0e502e7b9875383815dd727c080add56019ba31130818fd68f941109fbcc756ae7840ae3da7fca7da3798acc94aebcc593eb32a2faf3ff4b5e4543c3feae0a90ef4d2b5fb55a1521c793d49a73a48e5928b375a0be519da1b008d81f38", 0x8a}, {&(0x7f0000000c40)="f8751abe70332c305d4df35a129152f1cfdafec641fd66818b0b311b1206c05885b181f3794cda93a9020fa49b141b42a70ba00b32b7f040eddaa99782d0f44373782e4c4030a7de91f7c76526e7a3e4d652bcaff47a15f73233c33dcaad2a6932be8a2c47987f819c7ead8350022ea4a55d02df7d45505f90272e74b855d1ce0398a304f3262a382e3ab9b2f89aab75ef4c07ea9ddaf2aca788d6bbe1415f33ae2c891e8b561e809998aa14912c127700e6f879297a099388cdda3b97dcf954bbcf311cd8c841c7f0ae33369178670641fb962608a78151e7aced65710ce038a00bfb8c402c1661922564a6d8d482d67f2014", 0xf3}, {&(0x7f0000000d40)="61a9c44e0e98a02cad2d3c02a4a6c8961b29384d3a2edb9f86dcb9429c40d240d1f4f8052103ad5663f4f73ee7896bbd6167847ad6d7a0e0d5b5a066ab68e9220a2b6f77b4c1b9575a6a63ba2e8f19905743a52082251fb8725a864b7205710e6d", 0x61}], 0x4, &(0x7f0000001480)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32=r7, @ANYBLOB="0557f05bab18854e999e9ad9d4f56c3c16b873789d9f3d5cd569d2066befaaa9f004d6b0f26c9591d9c966357b0daf2eb676f33fe882d0d0dc365d1190d855f7bde754949d0b1e7d43b16088e0e8e920e57769462a01e41b131199d53bca5d36d7c95f1c7680e4db243f318845fb713732861755a626fcecefea501b6210125471ca653fa28ea842b35be34a79e6dc8e15b11e927a402e4f91da3ff8d1f03b5c53182d5eb68d11c1500223064b96e71cf26fbe71a9cf018ce11494abd4ba4385dd96a2d3cefbbfae214f8cccb475a048d7f4c60c6100a079452a9c40d710f4cc403425e2a69a9dd57ad436dbc5", @ANYRES32=r0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES64, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r3, @ANYBLOB="1c0000000000000001000000022ec84b7a6fe11adfee591e50c6d55cd170135e72ccbe5e4ece5879a76d85f78a3caa0370fda25aaebe701db1ab83ac03670ae5e4044121b9d9c71f4da7ebc06b301b149db64d112e5e1b29901815f84d9da5fbb7478b766ed5c44c1e43ee783f518f0155f1ff00b9f41459fa17a2a9f8bc88265913c57082c728b76f173310954f90a7944853ce931c4fd19dbf9a88f791929a700e01b70d20723ab4a1be15b97ea56a205ccc1ee0d8da87fd7a9e9a1526af899c6d76ed64bb", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRESDEC=r5, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRESHEX, @ANYRES32=r6, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r0, @ANYRES32=r9, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x110, 0x8880}}], 0x3, 0x8085)
close(r2)

4.065338528s ago: executing program 2 (id=1073):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000280)=[@mss={0x2, 0x7}], 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x110)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
umount2(&(0x7f0000000040)='./file0/../file0\x00', 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

4.018545343s ago: executing program 2 (id=1074):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
fcntl$setstatus(r0, 0x4, 0x2c00)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x4}, 0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r1}, &(0x7f0000000300), &(0x7f0000000940)=r2}, 0x20)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r4, 0xfffd, 0x0)

3.777516757s ago: executing program 2 (id=1078):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x9}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400"], 0x50) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000711241000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000c00)=@newtclass={0x4cc, 0x28, 0x300, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xe}, {0x9, 0xb}, {0xf, 0x8}}, [@TCA_RATE={0x6, 0x5, {0xf4, 0x7}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @tclass_kind_options=@c_tbf={0x8}, @tclass_kind_options=@c_htb={{0x8}, {0x478, 0x2, [@TCA_HTB_OFFLOAD={0x4}, @TCA_HTB_PARMS={0x30, 0x1, {{0x9, 0x6, 0x1, 0x1, 0x4, 0x1c00000}, {0x40, 0x1, 0x1, 0x7, 0xfff, 0x1}, 0x3, 0x0, 0x2, 0x1, 0x1}}, @TCA_HTB_PARMS={0x30, 0x1, {{0x1, 0x2, 0x2, 0x101, 0x2, 0x5}, {0x1, 0x2, 0xfffc, 0x8, 0x1, 0xa28}, 0x5, 0x7, 0x93, 0xa, 0x6}}, @TCA_HTB_CEIL64={0xc}, @TCA_HTB_RTAB={0x404, 0x4, [0x1, 0x8, 0x180, 0x2046, 0x10001, 0x0, 0xdf, 0x40, 0x4f87, 0x3, 0x6, 0x0, 0x6, 0xd1d3, 0x7be1, 0x2, 0x4, 0xb, 0x5, 0x200, 0x7, 0x2, 0x5, 0x72, 0x9, 0x6, 0x400, 0x5, 0x0, 0x401, 0x10, 0x1, 0xf, 0x6, 0x2, 0xfffffff6, 0x8000, 0x7f, 0x3, 0x8001, 0x7fff, 0xdd, 0x2, 0x0, 0x5, 0xfffffffb, 0x6, 0x1, 0x76, 0x8000, 0x529, 0xc, 0x4, 0x1, 0x1000, 0x10000000, 0xb, 0x5, 0x3, 0x4, 0x8, 0xfffffff8, 0x4, 0x166, 0x80000001, 0xb, 0x7fffffff, 0x0, 0x6, 0x4, 0x1, 0xe, 0x800, 0x1, 0x10001, 0x1ff, 0x1, 0x6, 0x4, 0x6, 0x8c50, 0x0, 0x3, 0x47d, 0x2, 0x0, 0x5, 0x2, 0x9, 0x3ff, 0x2, 0x9, 0x401, 0xcd, 0xd, 0x4, 0x4, 0x7, 0xfffffffb, 0x8, 0x433, 0x8, 0x3, 0x6, 0xc, 0xb, 0x80000001, 0x1, 0x2, 0x8, 0x400, 0x6, 0xf67, 0x6, 0x8, 0x2, 0x8, 0x1, 0x6, 0x10, 0x7, 0x24, 0xc, 0x27f9, 0x9, 0x615f8d35, 0x9, 0xf077, 0x7f, 0x5, 0xa, 0x9, 0xde6, 0x10001, 0x8, 0x400, 0x2, 0x10, 0x9, 0x0, 0xe840, 0x3, 0x9, 0xa, 0x7ff, 0x4, 0xa00f, 0x4, 0x3, 0x40, 0x8, 0x9, 0x5afeccfd, 0x9, 0xffffffff, 0x56f, 0x40, 0x757, 0x2, 0xb, 0xbd, 0x0, 0x1, 0x6, 0x6, 0x2698aeb4, 0x1, 0x0, 0x2, 0x8001, 0x4, 0x3, 0xed5, 0xc, 0x1, 0xc, 0x7, 0x6, 0x51, 0xffffffff, 0xaf, 0x401, 0xb42, 0x0, 0x4, 0x2, 0x101, 0x86ca, 0x4, 0xd, 0x4, 0x2, 0x2, 0x0, 0x9, 0x2, 0xfffff800, 0x86a6, 0x6, 0x7, 0x3, 0x1, 0xb5, 0x4, 0x80000000, 0x8001, 0x7ff, 0xe513, 0x8, 0x5, 0x10001, 0x4, 0x10c1, 0x1, 0x3, 0x2, 0x63, 0x5, 0x1, 0x1, 0x5, 0x4, 0x1, 0x9, 0x7, 0x9, 0x3, 0x6, 0x4, 0xa, 0x8, 0xfffffff9, 0x4, 0x8, 0x7, 0x6, 0x7, 0x4, 0x2, 0x7ff, 0x5, 0xfffffaae, 0x9, 0x2, 0x5, 0x2, 0x400, 0x1000, 0x1, 0x1, 0x9, 0x2, 0x4, 0x100, 0x6, 0x3]}]}}, @TCA_RATE={0x6, 0x5, {0x5, 0x7}}]}, 0x4cc}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000800) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x7, 0x0, 0x2}) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.numa_stat\x00', 0x0, 0x0) (async)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x80, 0x2, 0xfffe}, &(0x7f0000000280))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f00000095"], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r3}, 0x10) (async)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) (async)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0xd90}}, 0x10, 0x0}, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000040018110000", @ANYRES32=r5, @ANYBLOB="00000000000f0000b702000014000000b703000035ebeeb29544543232000000bf0957c80000000055090100000000009500000000000000bf91c3000000000055a00000000000217000000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000001"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10) (async)
perf_event_open(&(0x7f0000000500)={0x5, 0x80, 0x5, 0x7, 0x8, 0x42, 0x0, 0x3ff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x2, @perf_bp={0x0, 0x5}, 0x2000, 0x2, 0x800, 0x2, 0xc, 0x1, 0x81, 0x0, 0xc05, 0x0, 0x4e9c}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xa) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f00000003c0)='ethtool\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x6, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x72, &(0x7f0000000000)=""/114}, 0x94) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
process_madvise(r2, &(0x7f00000006c0)=[{&(0x7f0000000600)="bbb36b237ea8cdb25b92fb6d4bc44e990431209694ae405f671ec10fcefbe22dcc0b9fd6ab3ed12a9f416ad5382cfb01b8959e8ce60a924eed3484806b5e48f46c4ecc036172ef147146aac2b291e63b911d20754fc7081474fe8d9d5d0ea38c6f58c9ffe891edd389d7e915b084dfbfe60123294be50ccd4fd8f65c912cf3b99647e7", 0x83}, {&(0x7f0000000580)="32a6aae6266fdc24799412", 0xb}], 0x2, 0x10, 0x0) (async)
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000001400010027bd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="20100000000004001400030076657468315f766c616e000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)

3.776985777s ago: executing program 32 (id=1078):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x9}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400"], 0x50) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000711241000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000c00)=@newtclass={0x4cc, 0x28, 0x300, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xe}, {0x9, 0xb}, {0xf, 0x8}}, [@TCA_RATE={0x6, 0x5, {0xf4, 0x7}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @tclass_kind_options=@c_tbf={0x8}, @tclass_kind_options=@c_htb={{0x8}, {0x478, 0x2, [@TCA_HTB_OFFLOAD={0x4}, @TCA_HTB_PARMS={0x30, 0x1, {{0x9, 0x6, 0x1, 0x1, 0x4, 0x1c00000}, {0x40, 0x1, 0x1, 0x7, 0xfff, 0x1}, 0x3, 0x0, 0x2, 0x1, 0x1}}, @TCA_HTB_PARMS={0x30, 0x1, {{0x1, 0x2, 0x2, 0x101, 0x2, 0x5}, {0x1, 0x2, 0xfffc, 0x8, 0x1, 0xa28}, 0x5, 0x7, 0x93, 0xa, 0x6}}, @TCA_HTB_CEIL64={0xc}, @TCA_HTB_RTAB={0x404, 0x4, [0x1, 0x8, 0x180, 0x2046, 0x10001, 0x0, 0xdf, 0x40, 0x4f87, 0x3, 0x6, 0x0, 0x6, 0xd1d3, 0x7be1, 0x2, 0x4, 0xb, 0x5, 0x200, 0x7, 0x2, 0x5, 0x72, 0x9, 0x6, 0x400, 0x5, 0x0, 0x401, 0x10, 0x1, 0xf, 0x6, 0x2, 0xfffffff6, 0x8000, 0x7f, 0x3, 0x8001, 0x7fff, 0xdd, 0x2, 0x0, 0x5, 0xfffffffb, 0x6, 0x1, 0x76, 0x8000, 0x529, 0xc, 0x4, 0x1, 0x1000, 0x10000000, 0xb, 0x5, 0x3, 0x4, 0x8, 0xfffffff8, 0x4, 0x166, 0x80000001, 0xb, 0x7fffffff, 0x0, 0x6, 0x4, 0x1, 0xe, 0x800, 0x1, 0x10001, 0x1ff, 0x1, 0x6, 0x4, 0x6, 0x8c50, 0x0, 0x3, 0x47d, 0x2, 0x0, 0x5, 0x2, 0x9, 0x3ff, 0x2, 0x9, 0x401, 0xcd, 0xd, 0x4, 0x4, 0x7, 0xfffffffb, 0x8, 0x433, 0x8, 0x3, 0x6, 0xc, 0xb, 0x80000001, 0x1, 0x2, 0x8, 0x400, 0x6, 0xf67, 0x6, 0x8, 0x2, 0x8, 0x1, 0x6, 0x10, 0x7, 0x24, 0xc, 0x27f9, 0x9, 0x615f8d35, 0x9, 0xf077, 0x7f, 0x5, 0xa, 0x9, 0xde6, 0x10001, 0x8, 0x400, 0x2, 0x10, 0x9, 0x0, 0xe840, 0x3, 0x9, 0xa, 0x7ff, 0x4, 0xa00f, 0x4, 0x3, 0x40, 0x8, 0x9, 0x5afeccfd, 0x9, 0xffffffff, 0x56f, 0x40, 0x757, 0x2, 0xb, 0xbd, 0x0, 0x1, 0x6, 0x6, 0x2698aeb4, 0x1, 0x0, 0x2, 0x8001, 0x4, 0x3, 0xed5, 0xc, 0x1, 0xc, 0x7, 0x6, 0x51, 0xffffffff, 0xaf, 0x401, 0xb42, 0x0, 0x4, 0x2, 0x101, 0x86ca, 0x4, 0xd, 0x4, 0x2, 0x2, 0x0, 0x9, 0x2, 0xfffff800, 0x86a6, 0x6, 0x7, 0x3, 0x1, 0xb5, 0x4, 0x80000000, 0x8001, 0x7ff, 0xe513, 0x8, 0x5, 0x10001, 0x4, 0x10c1, 0x1, 0x3, 0x2, 0x63, 0x5, 0x1, 0x1, 0x5, 0x4, 0x1, 0x9, 0x7, 0x9, 0x3, 0x6, 0x4, 0xa, 0x8, 0xfffffff9, 0x4, 0x8, 0x7, 0x6, 0x7, 0x4, 0x2, 0x7ff, 0x5, 0xfffffaae, 0x9, 0x2, 0x5, 0x2, 0x400, 0x1000, 0x1, 0x1, 0x9, 0x2, 0x4, 0x100, 0x6, 0x3]}]}}, @TCA_RATE={0x6, 0x5, {0x5, 0x7}}]}, 0x4cc}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000800) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x7, 0x0, 0x2}) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.numa_stat\x00', 0x0, 0x0) (async)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x80, 0x2, 0xfffe}, &(0x7f0000000280))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f00000095"], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r3}, 0x10) (async)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) (async)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0xd90}}, 0x10, 0x0}, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000040018110000", @ANYRES32=r5, @ANYBLOB="00000000000f0000b702000014000000b703000035ebeeb29544543232000000bf0957c80000000055090100000000009500000000000000bf91c3000000000055a00000000000217000000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000001"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10) (async)
perf_event_open(&(0x7f0000000500)={0x5, 0x80, 0x5, 0x7, 0x8, 0x42, 0x0, 0x3ff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x2, @perf_bp={0x0, 0x5}, 0x2000, 0x2, 0x800, 0x2, 0xc, 0x1, 0x81, 0x0, 0xc05, 0x0, 0x4e9c}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xa) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f00000003c0)='ethtool\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x6, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x72, &(0x7f0000000000)=""/114}, 0x94) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
process_madvise(r2, &(0x7f00000006c0)=[{&(0x7f0000000600)="bbb36b237ea8cdb25b92fb6d4bc44e990431209694ae405f671ec10fcefbe22dcc0b9fd6ab3ed12a9f416ad5382cfb01b8959e8ce60a924eed3484806b5e48f46c4ecc036172ef147146aac2b291e63b911d20754fc7081474fe8d9d5d0ea38c6f58c9ffe891edd389d7e915b084dfbfe60123294be50ccd4fd8f65c912cf3b99647e7", 0x83}, {&(0x7f0000000580)="32a6aae6266fdc24799412", 0xb}], 0x2, 0x10, 0x0) (async)
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000001400010027bd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="20100000000004001400030076657468315f766c616e000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)

3.195002696s ago: executing program 1 (id=1091):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
shutdown(r0, 0x1)
mkdir(0x0, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000000)={[{}, {@data_err_ignore}]}, 0xfe, 0x55b, &(0x7f0000000980)="$eJzs3c9vFFUcAPDvbFt+FaUkhKgH04SDGGRLW39g4gGPRokkesdNOzSkW5Z0t4RWEuEgFy+GmBgjifEP8O6R+A/4V5AoCTGk0YOXNbOdhaXdH6UsdGU/n2TgvXmzvHkz8328t283G8DQmsz+KES8GhHfJhGHWspGIy+c3Dhu/cG1uWxLol7/7K8kknxf8/gk/3s8z7wSEb99HXGisLXe6uraYqlcTpfz/FRt6fJUdXXt5MWl0kK6kF6amZ09/c7szPvvvbv1xXt31tY3z/3zw6d3Pjr9zbH173+5d/hWEmfiYF7W2o6ncL01MxmT+TUZizObDpzuQ2WDJNntE2BHRvI4H4usDzgUI3nUAy++ryKiDgypRPzDkGqOA5pz+67z4PqLN8u7/+HGBGhr+5ON90ZiX2NudGA9eWxmlF2JiT7Un9Xx65+3b2Vb9O99CICert+IiFOjo4/1fy9HS/+3c6e2cczmOvR/8PzcycY/b+1tM/4pPBz/RJvxz3ib2N2J3vFfuNeHajrKxn8ftB3/Ply0mhjJcy81xnxjyYWL5TTr27Ju8niM7c3y3dZzTq/frXcqax3/ZVtWf3MsmJ/HvdFN613zpVrpadrc6v6NiNd6jH+TNvc/ux7ntlnH0fT2653Kerf/2ar/HPFG2/v/aK6TdF+fnGo8D1PNp2Krv28e/b1T/bvd/uz+H+je/omkdb22+uR1/LTv37RT2WSSL5o+4fO/J/m8kd6T77taqtWWpyP2JJ9s3T/z6LXNfPP4rP3Hj7WP/27P//6I+GKb7b955GbHQwfh/s8/0f3vkKgnHYvufvzlj53q317/93YjdTzfs53+r8uZPpZ4mmsHAAAAAAAAg6YQEQcjKRQfpguFYnHj8x1H4kChXKnWTlyorFyaj8Z3ZSdirNBc6R5v+TzEdP552GZ+ZlN+NiIOR8R3I/sb+eJcpTy/240HAAAAAAAAAAAAAAAAAACAATHe4fv/mT9GdvvsgGfOT37D8OoZ//34pSdgIPn/H4aX+IfhJf5heIl/GF7iH4aX+IfhJf5heIl/AAAAAAAAAAAAAAAAAAAAAAAAAAAA6KtzZ89mW339wbW5LD9/ZXVlsXLl5HxaXSwurcwV5yrLl4sLlcpCOS3OVZZ6/XvlSuXy9EysXJ2qpUltqrq6dn6psnKpdv7iUmkhPZ+OPZdWAQAAAAAAAAAAAAAAAAAAwP9LdXVtsVQup8sSEjtKjA7GaUj0ObHbPRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPPJfAAAA//9j0zaD")
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000008c0)='./file0\x00', 0x1008490, &(0x7f0000000a40)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000a80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x1, 0x246, 0x7fffffffffffffff, 0xfffffffffffffffa, 0xffffffffffffffff, 0x0, 0x7fff, 0x9b})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000180), 0x0, 0x0, 0x1)
rmdir(&(0x7f0000000080)='./file0\x00')
creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x182)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000200)={0x0, 0x3}, &(0x7f0000000540)=0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x18)
lsm_set_self_attr(0x68, &(0x7f0000000600)={0x67, 0x5, 0x20}, 0x20, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x98142, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x4190, 0xaea}, 0x4105, 0x2e, 0x6, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40000000000a9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)

2.980861828s ago: executing program 0 (id=1094):
io_uring_setup(0x1684, &(0x7f0000000080)={0x0, 0xce3d, 0x400, 0x1, 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000380)={0x0, 0x3}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendto$inet6(r0, &(0x7f0000000040)="be", 0x1, 0x4008014, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c)
shutdown(r0, 0x1)

2.968137979s ago: executing program 3 (id=1095):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, 0x0})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x81}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="dd99401b1f441a835c3dfe053e0e094515e504b6316f2a67a040e860c8118441fc09df1fd193dfa63fcceb82dbd8c0c71b933214389bdf97fd6c3e72b4b836a0ee9b4d75f459e9e7a400ad5c01c749b8e8c6fc439e19077b742f12af535044eab14e1a16e1ed9b2552408b230507bb3d8db6c4b28f2bc0e55df68ae70f3f51e1a6f9a3931a26f5"], 0x2, 0x699, &(0x7f0000000140)="$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")
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
rt_sigaction(0x1b, 0x0, 0x0, 0x8, &(0x7f00000001c0))
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000640)=0x1802, 0x4)
r3 = socket(0x10, 0x803, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x18)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0xfd, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)

2.902942856s ago: executing program 0 (id=1096):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x111001, 0x2)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='mm_page_free\x00', r5, 0x0, 0x10000000ca38}, 0x18)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
sendmsg$rds(r1, &(0x7f0000000580)={&(0x7f00000005c0)={0x2, 0x4, @rand_addr=0x64010101}, 0x10, 0x0, 0x0, &(0x7f0000003a80)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0x2}, {0x0}, &(0x7f0000003a00)=[{&(0x7f0000000300)=""/96, 0x60}], 0x1, 0x39, 0x2}}], 0x48, 0x4000000}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001c00010429bd7000ffdbdf2507000000", @ANYRES32=r6, @ANYBLOB="e0ff8b0a"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001d"], 0x30}, 0x1, 0x0, 0x0, 0x44}, 0xc31fe084736598c)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)

2.416538985s ago: executing program 0 (id=1101):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
ioctl$RTC_PIE_ON(r0, 0x7005)
socket$kcm(0x2, 0x200000000000001, 0x106)
r3 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x8b69, 0x8, 0x1, 0x40024e}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_setup(0x10a, &(0x7f0000000680)={0x0, 0x80334c, 0x10, 0x3, 0x3d3}, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000300))
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r7, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100, 0x23456})
io_uring_enter(r3, 0x627, 0xc1040000, 0x43, 0x0, 0x0)

2.408424206s ago: executing program 3 (id=1102):
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x7)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7c, 0x2, @perf_config_ext={0x1, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xdebd1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f0000000400))
open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

1.500262448s ago: executing program 3 (id=1103):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@orlov}, {@user_xattr}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@nodiscard}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='+}[@\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0x8ce}, 0x18)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x2000005, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x4b, 0x2, {0xb}}, 0x36f0516f)

1.494113619s ago: executing program 0 (id=1104):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x111001, 0x2)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='mm_page_free\x00', r5, 0x0, 0x10000000ca38}, 0x18)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
sendmsg$rds(r1, &(0x7f0000000580)={&(0x7f00000005c0)={0x2, 0x4, @rand_addr=0x64010101}, 0x10, 0x0, 0x0, &(0x7f0000003a80)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0x2}, {0x0}, &(0x7f0000003a00)=[{&(0x7f0000000300)=""/96, 0x60}], 0x1, 0x39, 0x2}}], 0x48, 0x4000000}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001c00010429bd7000ffdbdf2507000000", @ANYRES32=r6, @ANYBLOB="e0ff8b0a0a00"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001d"], 0x30}, 0x1, 0x0, 0x0, 0x44}, 0xc31fe084736598c)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)

1.055140793s ago: executing program 0 (id=1107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0xcf47, 0x3, 0xffff, 0x9dff, 0x1, "8003e3ffff072000"})
write$binfmt_aout(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7a5ae4c65dce95956162d85bf465d0b26b42af3277e9683cd5783e296ca2"], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x3, 0x7fff, 0x16, "b0bf2ebb48c849ac0000000003000018bfff40"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe468}, 0x94)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x0, 0x10000000, 0x0, 0x4}}, @TCA_ACT_BPF_FD={0x8, 0x5, r4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

957.694813ms ago: executing program 4 (id=1109):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x13, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="18090000000000000000013800000000858489f244e652aec56b409ea23c0000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000107010000f8ffffffb70200000085000000700000009500"/102], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r1}, &(0x7f0000000300), &(0x7f0000000940)=r2}, 0x20)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r4, 0xfffd, 0x0)

938.930365ms ago: executing program 4 (id=1110):
r0 = socket$inet6(0xa, 0x3, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20040051}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000c00)={0x2c, 0x17, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x2c}}, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffff", 0x8)
connect$inet6(r0, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, 0x0)
ioctl$sock_qrtr_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000600))
syz_io_uring_setup(0x10d, &(0x7f0000000540)={0x0, 0xd4bb, 0x0, 0xfffffffd}, 0x0, &(0x7f0000000280)=<r6=>0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000440)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {0x6, 0x0, 0x2}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x100000}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x58}}, 0x8000)
syz_io_uring_submit(0x0, r6, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80800})
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r8}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x7, 0x0, 0x0, 0x3, 0x82, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x8080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x10000000000007}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r10}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

802.865829ms ago: executing program 1 (id=1111):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000a80)={[0x9145]}, 0x8, 0x80000)
poll(&(0x7f0000000b40)=[{r0, 0x22}], 0x1, 0x1c)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00') (async)
r2 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r2, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, 0x0}, 0x0) (async, rerun: 32)
recvmsg(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000080)=""/248, 0xf8}], 0x1, 0x0, 0x18}, 0x10100) (async, rerun: 32)
sendmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000240)="e1", 0x1}], 0x1}, 0x4000004)
getdents(r1, &(0x7f0000000240)=""/45, 0x2d) (async)
getdents(r1, 0xffffffffffffffff, 0x5a)
ioctl$TCFLSH(r0, 0x540b, 0x0) (async, rerun: 32)
socket$netlink(0x10, 0x3, 0x0) (async, rerun: 32)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x5, &(0x7f00000001c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffdf3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) (async)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f00000004c0)) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]}) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000005c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000000005000000020000930100004700dd3c9600000000000000e2c0ed3dfa66406ad67cab02b4a41616eaebb6295c056435d88ec3698e4458a8df1638d79172d6210ed3065f6667500a6acff41a5d3685da84ce7ed751d871a78eac11567566bd9d2120853d94d59c6719af90afd3b2de3f48f19e42e4b10b22f769d0eb3b0c3900a5a170c1f063513f8f2296781bf58b4e66175984666a0bde699730b6425f0f6b3072a9e90354d41f667eb945d0bbec57e262378c64ed94e98baa51f7afbb2bb5e5d2458e0c593e02b54b754f345bb54d3b84257c364e5f240024b32ffdd6bf4db126833a8e4b7d18150a6a7184"], 0x0, 0x29, 0x0, 0x1, 0x1}, 0x28) (async)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6) (async)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) (async)
timer_create(0x3, 0x0, &(0x7f0000044000)) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (rerun: 32)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r7}, 0x10) (async, rerun: 32)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (rerun: 32)
socket$vsock_stream(0x28, 0x1, 0x0)

692.81582ms ago: executing program 3 (id=1112):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f0000002240)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x63bff000)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x100)
preadv2(r4, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x100000}], 0x2, 0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16], 0x54}}, 0x0)
process_madvise(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000000)="854b", 0x2}], 0x20, 0x14, 0x0)
socket$key(0xf, 0x3, 0x2)

635.529766ms ago: executing program 1 (id=1113):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = inotify_init()
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = dup(r3)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x5, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r3, 0x0, 0x4048043)
close_range(r2, 0xffffffffffffffff, 0x0)

599.176819ms ago: executing program 1 (id=1114):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x60, 0x60, 0x3, [@enum={0xa, 0x3, 0x0, 0x6, 0x4, [{0x8, 0x8000}, {0x5, 0xfffff1a8}, {0xa, 0x4}]}, @struct={0x2, 0x4, 0x0, 0x4, 0x1, 0x5, [{0xc, 0x2, 0xffffffff}, {0x9, 0x4, 0x6}, {0x9}, {0x4, 0x2, 0x4}]}]}, {0x0, [0x30]}}, &(0x7f00000003c0)=""/126, 0x7b, 0x7e, 0x0, 0x2, 0x10000}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0xc, <r2=>0x0}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001803000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
r4 = memfd_secret(0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="61124c000000000061138c0000000000bf200000000000000703000008ff0200ad0301000000000095000000000000006916000000000000bf67000000000000170600000fff07006706000002000000070600000ee60000bf050000000000001f650000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070500000419311f2d3001000000000095000000000000000500000000000000950000000000000032ed3c5be95e76b67754bb12dc8c27df8ecf264e0f84f9f17d3c30e3c72fe9751f008554bb4f2278af6d71d79a5e12810a089dc1d4681d295c45a674f888a08034b7dd399703d6c4f633a9a4f16d0a3e1282ee45a010fb94fa9de56c9d8a814261bdb94a65f78238b89dc6c60bf70d742a81b72bab8395fa64810b5b1bfd3782519518c505000000b8fab4d4d897db2c544c0e0895a9044f50c50b8eac8c63d2b1cd06a39702bd547f5ebaa69520bbb15f4f01cef3c9bacec15e2e3b2bd352e93a22adfe8efe33ff2f8ee5476d4ef7a6f0c4704403b9bad2b648e90fff24f69a5ef05f5408ea197ed09a9510ee6063229de2984abdd46ea3ec78e3127002ed37c2564bd98a621483fb2a5ff221e0d831f24759d17b8c59d0f2b0727f6b7958fb5b939af4be5e55a95f8c6d785a91c7c3f0c17ae7f9ac5ff05f5ecddf0cef90d50e763be96496661c749e21ab63a1f50b30a65a9027ba357bf8c614497ee59b68bf6a5d45c81c567e347d54574164bbea3e7b7f8a13cce7014137f250370b8a70ae3eaf6d6f17759c3886871e97d063b7f26eed3226bb0b9ee6320a2b02fea7a06a0e37182adf4b1be6f29358d4f5dfec405bde000000000000000000000000000000902e647cc5962eccaad64429335f3ce2a10ce72da82875427c1d16db24dca08487ba41a3fb337f8432d8176a515229e32ee11a1dd23dac038f989eafdd67f60b63f7be4d1bf325b57335b9973c73bfa89517a98b1fc15f8a2713718feb01059d570a0000e3b2a93bd745a74f9bf7f7abc5d15d56331055cc0820c5c9d676d92557c4e47cfbe27f91e0eb18e21dfdab3c84ec11377fbb00000000848060962bcbc47cefd1a2a7bd3b646614bf7cd3495663de5b63f6b5910daee8ebb7ba84a8b5b6f2d1fbc22a51a500f94c871d5e1d31ab5d7a89965bbdbf355a8544e1688a61f459f3618b3a5416eb143180d3d2c5f4e0b1a556422038801703e109e23944e53f230a3537a5412c7d0bf278c6c1684dd8de90aaa33f47dc2c7b5e4f73784fd31aa2f9d1b1623734f9cf84718b2bad31f651e3607f3ac6c427cb6c0652d21ecd4b29e96c0a3781ee820faab71040768f6b08a69fdfd0b2b7be25f19500c1b8330994efb57a53c1a67bda909630f75738ab40e7ab63d527d6c1e8cf611f05c1b6d0da1ba84d405b4d834162c88022a4625a5f7c431c39f3f9a7789f9b668ec4da9f1a981086dcf4c5a940691f9638ce34dba904483f2ed4e7a713b7eac29c5e122f1b6acd6f1da2"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r5, r4, 0x2e, 0x4608, @void}, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), 0xffffffffffffffff)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'ip6_vti0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x2000008, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0) (fail_nth: 12)

586.862131ms ago: executing program 4 (id=1115):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7030000003e7400850000001b000000b70000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0xff, 0x0, 0x7fff0026}]})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x16, 0x0, "0af5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d1408407e5a774ef95f2fc1b947e00f000000123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x3, @dev={0xfe, 0x80, '\x00', 0x3d}, 0xfffffffd}}, 0x0, 0x0, 0x15, 0x0, "a1c1dd75808473ba07d90000b03e10950cd4b347013e55eb4285bf274bca67efbff2fdf98328de9434031348589bf28046d14810d7d88b0abec04ebc00"}, 0xd8)
r6 = socket(0x10, 0x803, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, 0x0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$tipc(r10, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a", 0xb5}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0x17}], 0x4, 0x0, 0x0, 0x8010}, 0x0)
dup2(r11, r10)
setsockopt$sock_attach_bpf(r11, 0x1, 0x21, &(0x7f0000000040), 0x4)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000006100)=@delchain={0x51, 0x66, 0x1, 0x70bd2e, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff3}, {}, {0xb}}}, 0x51}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ec0)={&(0x7f0000000bc0)='kfree\x00', r1, 0x0, 0xfffffffffffffff4}, 0x18)

238.020566ms ago: executing program 1 (id=1116):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0xb, 0x200000, 0xffffffff, 0x1}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="18000000520001ff03000000000000251c"], 0x18}, 0x1, 0x0, 0x0, 0x81}, 0x20044884)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x0, 0x40000000, 0x0, 0x3}, 0x8})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xd, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x2, 0x2}, 0x100b28, 0x6, 0x0, 0x9, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00'})
setsockopt$MRT_ASSERT(r1, 0x0, 0xcf, &(0x7f0000000300), 0x4)
sendmmsg$inet(r3, &(0x7f0000000100)=[{{&(0x7f00000004c0)={0x2, 0x4e24, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r3, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0)
r4 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x1000)
setsockopt$nfc_llcp_NFC_LLCP_RW(r4, 0x118, 0x0, &(0x7f0000000140)=0xc, 0x4)
ioctl$PPPIOCGMRU(r1, 0x80047453, &(0x7f0000000240))

236.938486ms ago: executing program 3 (id=1117):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)

194.4463ms ago: executing program 1 (id=1118):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x15, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x82}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8004}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000300000001000000", @ANYRES32], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000006c0)='.\x00', 0x1a4243c, &(0x7f0000000700)=ANY=[@ANYRES16, @ANYRESDEC, @ANYRESHEX, @ANYRES8, @ANYRES32, @ANYRES8, @ANYRES64, @ANYRES8=0x0, @ANYRES64, @ANYRES8], 0x0, 0x0, &(0x7f0000000080))
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000200)={&(0x7f0000000180), &(0x7f0000000440)=""/179, &(0x7f0000000500), 0x0, 0x3, r4}, 0x38)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x800, @empty}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000080), 0x1)
sendto$inet6(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="c0", 0x1, 0x40050c4, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x14, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x18, r7, 0x4c1dad3e3d6a7499, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000080}, 0x2400c000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x1, 0x0, 0x6}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x3}, @CTA_NAT_SRC={0x20, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}]}]}]}, 0x68}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1818e58, &(0x7f00000003c0), 0x2a, 0x63f, &(0x7f0000000d80)="$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")
io_cancel(0x0, 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

184.550331ms ago: executing program 0 (id=1119):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000030000108500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0xcf47, 0x3, 0xffff, 0x9dff, 0x1, "8003e3ffff072000"})
write$binfmt_aout(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7a5ae4c65dce95956162d85bf465d0b26b42af3277e9683cd5783e296ca2"], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x3, 0x7fff, 0x16, "b0bf2ebb48c849ac0000000003000018bfff40"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe468}, 0x94)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x0, 0x10000000, 0x0, 0x4}}, @TCA_ACT_BPF_FD={0x8, 0x5, r4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

172.661133ms ago: executing program 3 (id=1120):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
ioctl$RTC_PIE_ON(r0, 0x7005)
socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x8b69, 0x8, 0x1, 0x40024e}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_setup(0x10a, &(0x7f0000000680)={0x0, 0x80334c, 0x10, 0x3, 0x3d3}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000300))
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100, 0x23456})
io_uring_enter(r2, 0x627, 0xc1040000, 0x43, 0x0, 0x0)

143.784956ms ago: executing program 4 (id=1121):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f00000004c0), &(0x7f0000001c40)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20)
recvmsg$unix(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000180)="1467", 0x2}], 0x1}, 0x200440c4)

36.503296ms ago: executing program 4 (id=1122):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00', @ANYRES16=r0, @ANYBLOB="01dbdf2502000000090001"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)

0s ago: executing program 4 (id=1123):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r3=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r3}}], 0x20, 0x2400e044}, 0x0)

kernel console output (not intermixed with test programs):

 58.034836][ T4684] loop0: detected capacity change from 0 to 1024
[   58.041751][ T4684] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   58.056986][ T4684] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.419: Invalid block bitmap block 0 in block_group 0
[   58.070496][ T4684] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.419: Failed to acquire dquot type 0
[   58.082349][ T4684] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.419: Freeing blocks not in datazone - block = 0, count = 4096
[   58.095756][ T4684] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.419: Invalid inode bitmap blk 0 in block_group 0
[   58.108530][ T4346] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:19: Failed to release dquot type 0
[   58.120294][ T4684] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   58.128944][ T4684] EXT4-fs (loop0): 1 orphan inode deleted
[   58.135232][ T4684] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.149084][ T4688] process 'syz.2.420' launched '/dev/fd/8' with NULL argv: empty string added
[   58.169365][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.254846][ T4698] syzkaller0: entered promiscuous mode
[   58.260408][ T4698] syzkaller0: entered allmulticast mode
[   58.330812][ T4709] loop3: detected capacity change from 0 to 164
[   58.337966][ T4709] Unable to read rock-ridge attributes
[   58.464508][ T4715] loop3: detected capacity change from 0 to 512
[   58.491809][ T4715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.504547][ T4715] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.532098][ T4715] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.430: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[   58.551515][ T4723] netlink: 'syz.0.433': attribute type 1 has an invalid length.
[   58.559197][ T4723] netlink: 16126 bytes leftover after parsing attributes in process `syz.0.433'.
[   58.561953][ T4715] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   58.577503][ T4715] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.430: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[   58.601849][ T4715] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   58.616314][ T4716] netlink: 32 bytes leftover after parsing attributes in process `syz.2.431'.
[   58.632978][ T4715] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.430: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[   58.651151][ T4715] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   58.691326][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.780285][ T4744] FAULT_INJECTION: forcing a failure.
[   58.780285][ T4744] name failslab, interval 1, probability 0, space 0, times 0
[   58.793055][ T4744] CPU: 0 UID: 0 PID: 4744 Comm: syz.3.440 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.793086][ T4744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   58.793106][ T4744] Call Trace:
[   58.793113][ T4744]  <TASK>
[   58.793121][ T4744]  __dump_stack+0x1d/0x30
[   58.793184][ T4744]  dump_stack_lvl+0xe8/0x140
[   58.793204][ T4744]  dump_stack+0x15/0x1b
[   58.793239][ T4744]  should_fail_ex+0x265/0x280
[   58.793271][ T4744]  ? __pfx_sock_alloc_inode+0x10/0x10
[   58.793294][ T4744]  should_failslab+0x8c/0xb0
[   58.793366][ T4744]  kmem_cache_alloc_lru_noprof+0x55/0x490
[   58.793394][ T4744]  ? sock_alloc_inode+0x34/0xa0
[   58.793419][ T4744]  ? __pfx_sock_alloc_inode+0x10/0x10
[   58.793518][ T4744]  sock_alloc_inode+0x34/0xa0
[   58.793544][ T4744]  alloc_inode+0x40/0x170
[   58.793568][ T4744]  __sock_create+0x122/0x5b0
[   58.793618][ T4744]  __sys_socketpair+0x170/0x430
[   58.793647][ T4744]  ? ksys_write+0x192/0x1a0
[   58.793682][ T4744]  __x64_sys_socketpair+0x52/0x60
[   58.793749][ T4744]  x64_sys_call+0x2bf6/0x3000
[   58.793839][ T4744]  do_syscall_64+0xd2/0x200
[   58.793866][ T4744]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   58.793960][ T4744]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   58.794065][ T4744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.794162][ T4744] RIP: 0033:0x7f76141cf6c9
[   58.794181][ T4744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.794204][ T4744] RSP: 002b:00007f7612c37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   58.794228][ T4744] RAX: ffffffffffffffda RBX: 00007f7614425fa0 RCX: 00007f76141cf6c9
[   58.794243][ T4744] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000001e
[   58.794257][ T4744] RBP: 00007f7612c37090 R08: 0000000000000000 R09: 0000000000000000
[   58.794270][ T4744] R10: 00002000000010c0 R11: 0000000000000246 R12: 0000000000000001
[   58.794320][ T4744] R13: 00007f7614426038 R14: 00007f7614425fa0 R15: 00007fff20b68208
[   58.794345][ T4744]  </TASK>
[   58.794354][ T4744] socket: no more sockets
[   58.931858][ T4749] loop1: detected capacity change from 0 to 1024
[   59.006338][ T4749] EXT4-fs: Ignoring removed mblk_io_submit option
[   59.013414][ T4749] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[   59.041487][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.048886][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.056391][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.063808][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.071221][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.078647][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.086070][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.093483][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.100918][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.108352][   T23] hid-generic 0000:0007:0001.0001: unknown main item tag 0x0
[   59.119853][   T23] hid-generic 0000:0007:0001.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[   59.182049][ T4758] random: crng reseeded on system resumption
[   59.207036][ T4760] tipc: Started in network mode
[   59.212038][ T4760] tipc: Node identity 2ed5212068a3, cluster identity 4711
[   59.219235][ T4760] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.226156][ T4760] syzkaller0: entered promiscuous mode
[   59.231920][ T4760] syzkaller0: entered allmulticast mode
[   59.241543][ T4760] tipc: Resetting bearer <eth:syzkaller0>
[   59.247415][ T4764] netlink: 'syz.3.449': attribute type 12 has an invalid length.
[   59.257272][ T4759] tipc: Resetting bearer <eth:syzkaller0>
[   59.264499][ T4759] tipc: Disabling bearer <eth:syzkaller0>
[   59.318183][ T4771] loop1: detected capacity change from 0 to 164
[   59.348081][ T4771] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.359347][ T4771] bond1 (unregistering): Released all slaves
[   59.365866][ T4777] netlink: 60 bytes leftover after parsing attributes in process `syz.4.453'.
[   59.374902][ T4777] netlink: 60 bytes leftover after parsing attributes in process `syz.4.453'.
[   59.383933][ T4773] netlink: 28 bytes leftover after parsing attributes in process `syz.2.452'.
[   59.392917][ T4773] netlink: 28 bytes leftover after parsing attributes in process `syz.2.452'.
[   59.393466][ T4782] netlink: 'syz.1.451': attribute type 10 has an invalid length.
[   59.417411][ T4777] netlink: 60 bytes leftover after parsing attributes in process `syz.4.453'.
[   59.426329][ T4777] netlink: 60 bytes leftover after parsing attributes in process `syz.4.453'.
[   59.443512][ T4782] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   59.488864][   T29] kauditd_printk_skb: 617 callbacks suppressed
[   59.488879][   T29] audit: type=1326 audit(1763449542.806:3196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.519169][   T29] audit: type=1326 audit(1763449542.806:3197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.542644][   T29] audit: type=1326 audit(1763449542.806:3198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.565961][   T29] audit: type=1326 audit(1763449542.806:3199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.589393][   T29] audit: type=1326 audit(1763449542.806:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.612774][   T29] audit: type=1326 audit(1763449542.806:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.636120][   T29] audit: type=1326 audit(1763449542.806:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.659441][   T29] audit: type=1326 audit(1763449542.806:3203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.682810][   T29] audit: type=1326 audit(1763449542.816:3204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.706165][   T29] audit: type=1326 audit(1763449542.816:3205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f65928ef6c9 code=0x7ffc0000
[   59.765159][ T4800] FAULT_INJECTION: forcing a failure.
[   59.765159][ T4800] name failslab, interval 1, probability 0, space 0, times 0
[   59.777831][ T4800] CPU: 1 UID: 0 PID: 4800 Comm: syz.1.460 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.777872][ T4800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   59.777884][ T4800] Call Trace:
[   59.777923][ T4800]  <TASK>
[   59.777932][ T4800]  __dump_stack+0x1d/0x30
[   59.777953][ T4800]  dump_stack_lvl+0xe8/0x140
[   59.778040][ T4800]  dump_stack+0x15/0x1b
[   59.778061][ T4800]  should_fail_ex+0x265/0x280
[   59.778101][ T4800]  should_failslab+0x8c/0xb0
[   59.778163][ T4800]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   59.778257][ T4800]  ? __alloc_skb+0x101/0x320
[   59.778292][ T4800]  __alloc_skb+0x101/0x320
[   59.778321][ T4800]  netlink_alloc_large_skb+0xbf/0xf0
[   59.778395][ T4800]  netlink_sendmsg+0x3cf/0x6b0
[   59.778420][ T4800]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.778443][ T4800]  __sock_sendmsg+0x145/0x180
[   59.778538][ T4800]  ____sys_sendmsg+0x31e/0x4e0
[   59.778558][ T4800]  ___sys_sendmsg+0x17b/0x1d0
[   59.778592][ T4800]  __x64_sys_sendmsg+0xd4/0x160
[   59.778624][ T4800]  x64_sys_call+0x191e/0x3000
[   59.778649][ T4800]  do_syscall_64+0xd2/0x200
[   59.778673][ T4800]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   59.778749][ T4800]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   59.778816][ T4800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.778904][ T4800] RIP: 0033:0x7fa68018f6c9
[   59.778919][ T4800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.778938][ T4800] RSP: 002b:00007fa67ebef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.778971][ T4800] RAX: ffffffffffffffda RBX: 00007fa6803e5fa0 RCX: 00007fa68018f6c9
[   59.778984][ T4800] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[   59.778997][ T4800] RBP: 00007fa67ebef090 R08: 0000000000000000 R09: 0000000000000000
[   59.779010][ T4800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.779083][ T4800] R13: 00007fa6803e6038 R14: 00007fa6803e5fa0 R15: 00007ffd001c3538
[   59.779102][ T4800]  </TASK>
[   60.023453][ T4808] hugetlbfs: Bad value 'g' for mount option 'nr_inodes'
[   60.023453][ T4808] 
[   60.024537][ T4810] FAULT_INJECTION: forcing a failure.
[   60.024537][ T4810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.045867][ T4810] CPU: 1 UID: 0 PID: 4810 Comm: syz.2.464 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.045895][ T4810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   60.045907][ T4810] Call Trace:
[   60.045912][ T4810]  <TASK>
[   60.045918][ T4810]  __dump_stack+0x1d/0x30
[   60.045955][ T4810]  dump_stack_lvl+0xe8/0x140
[   60.045980][ T4810]  dump_stack+0x15/0x1b
[   60.046011][ T4810]  should_fail_ex+0x265/0x280
[   60.046053][ T4810]  should_fail+0xb/0x20
[   60.046152][ T4810]  should_fail_usercopy+0x1a/0x20
[   60.046173][ T4810]  _copy_to_user+0x20/0xa0
[   60.046256][ T4810]  simple_read_from_buffer+0xb5/0x130
[   60.046343][ T4810]  proc_fail_nth_read+0x10e/0x150
[   60.046380][ T4810]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.046463][ T4810]  vfs_read+0x1a8/0x770
[   60.046491][ T4810]  ? __rcu_read_unlock+0x4f/0x70
[   60.046521][ T4810]  ? __fget_files+0x184/0x1c0
[   60.046623][ T4810]  ksys_read+0xda/0x1a0
[   60.046671][ T4810]  __x64_sys_read+0x40/0x50
[   60.046703][ T4810]  x64_sys_call+0x27c0/0x3000
[   60.046778][ T4810]  do_syscall_64+0xd2/0x200
[   60.046805][ T4810]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   60.046833][ T4810]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   60.046897][ T4808] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4808 comm=syz.1.463
[   60.046896][ T4810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.046924][ T4810] RIP: 0033:0x7f65928ee0dc
[   60.046941][ T4810] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   60.046962][ T4810] RSP: 002b:00007f659134f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   60.046987][ T4810] RAX: ffffffffffffffda RBX: 00007f6592b45fa0 RCX: 00007f65928ee0dc
[   60.047071][ T4810] RDX: 000000000000000f RSI: 00007f659134f0a0 RDI: 0000000000000004
[   60.047087][ T4810] RBP: 00007f659134f090 R08: 0000000000000000 R09: 0000000000000000
[   60.047104][ T4810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.047131][ T4810] R13: 00007f6592b46038 R14: 00007f6592b45fa0 R15: 00007ffd32ea64f8
[   60.047155][ T4810]  </TASK>
[   60.287485][ T4813] FAULT_INJECTION: forcing a failure.
[   60.287485][ T4813] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.300573][ T4813] CPU: 1 UID: 0 PID: 4813 Comm: syz.2.465 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.300602][ T4813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   60.300617][ T4813] Call Trace:
[   60.300622][ T4813]  <TASK>
[   60.300629][ T4813]  __dump_stack+0x1d/0x30
[   60.300724][ T4813]  dump_stack_lvl+0xe8/0x140
[   60.300846][ T4813]  dump_stack+0x15/0x1b
[   60.300876][ T4813]  should_fail_ex+0x265/0x280
[   60.300913][ T4813]  should_fail+0xb/0x20
[   60.301010][ T4813]  should_fail_usercopy+0x1a/0x20
[   60.301033][ T4813]  _copy_from_user+0x1c/0xb0
[   60.301073][ T4813]  vt_ioctl+0x98f/0x18a0
[   60.301099][ T4813]  tty_ioctl+0x7d8/0xb80
[   60.301124][ T4813]  ? __pfx_tty_ioctl+0x10/0x10
[   60.301147][ T4813]  __se_sys_ioctl+0xce/0x140
[   60.301198][ T4813]  __x64_sys_ioctl+0x43/0x50
[   60.301221][ T4813]  x64_sys_call+0x1816/0x3000
[   60.301299][ T4813]  do_syscall_64+0xd2/0x200
[   60.301360][ T4813]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   60.301388][ T4813]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   60.301427][ T4813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.301452][ T4813] RIP: 0033:0x7f65928ef6c9
[   60.301469][ T4813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.301527][ T4813] RSP: 002b:00007f659134f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.301548][ T4813] RAX: ffffffffffffffda RBX: 00007f6592b45fa0 RCX: 00007f65928ef6c9
[   60.301562][ T4813] RDX: 0000200000000080 RSI: 0000000000004b72 RDI: 000000000000000e
[   60.301575][ T4813] RBP: 00007f659134f090 R08: 0000000000000000 R09: 0000000000000000
[   60.301589][ T4813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.301602][ T4813] R13: 00007f6592b46038 R14: 00007f6592b45fa0 R15: 00007ffd32ea64f8
[   60.301689][ T4813]  </TASK>
[   60.510205][ T4819] loop2: detected capacity change from 0 to 4096
[   60.519108][ T4819] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.705901][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.777705][ T4834] netlink: 'syz.2.472': attribute type 10 has an invalid length.
[   60.787913][ T4834] 8021q: adding VLAN 0 to HW filter on device team0
[   60.796407][ T4834] bond0: (slave team0): Enslaving as an active interface with an up link
[   60.814730][ T4834] hub 9-0:1.0: USB hub found
[   60.819411][ T4834] hub 9-0:1.0: 8 ports detected
[   60.827961][ T4834] bridge: RTM_NEWNEIGH with invalid ether address
[   60.927559][ T4837] netlink: 'syz.2.473': attribute type 2 has an invalid length.
[   60.957320][ T4843] __nla_validate_parse: 3 callbacks suppressed
[   60.957334][ T4843] netlink: 8 bytes leftover after parsing attributes in process `syz.1.476'.
[   60.972492][ T4843] netlink: 4 bytes leftover after parsing attributes in process `syz.1.476'.
[   60.985720][ T4389] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   60.994506][ T4389] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   61.002550][ T4845] loop2: detected capacity change from 0 to 1024
[   61.009720][ T4389] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   61.010442][ T4845] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   61.018564][ T4389] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   61.039559][ T4845] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.477: Invalid block bitmap block 0 in block_group 0
[   61.054035][ T4845] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.477: Failed to acquire dquot type 0
[   61.065562][ T4845] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.477: Freeing blocks not in datazone - block = 0, count = 4096
[   61.079444][ T4845] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.477: Invalid inode bitmap blk 0 in block_group 0
[   61.092443][ T4389] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:47: Failed to release dquot type 0
[   61.104280][ T4845] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   61.113027][ T4845] EXT4-fs (loop2): 1 orphan inode deleted
[   61.119244][ T4845] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.143992][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.187927][ T4860] loop2: detected capacity change from 0 to 512
[   61.196928][ T4862] netlink: 'syz.1.484': attribute type 10 has an invalid length.
[   61.209536][ T4860] FAT-fs (loop2): error, corrupted directory (invalid entries)
[   61.217258][ T4860] FAT-fs (loop2): Filesystem has been set read-only
[   61.226707][ T4862] hub 9-0:1.0: USB hub found
[   61.232477][ T4862] hub 9-0:1.0: 8 ports detected
[   61.241333][ T4862] bridge: RTM_NEWNEIGH with invalid ether address
[   61.264674][ T4865] SELinux:  policydb version -1411311999 does not match my version range 15-35
[   61.274227][ T4865] SELinux: failed to load policy
[   61.279340][ T4865] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=4865 comm=gtp
[   61.398882][ T4871] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[   61.462186][   T10] IPVS: starting estimator thread 0...
[   61.562741][ T4876] IPVS: using max 2832 ests per chain, 141600 per kthread
[   61.620125][ T4885] loop3: detected capacity change from 0 to 2048
[   61.661319][ T4885]  loop3: p1 < > p4
[   61.666317][ T4885] loop3: p4 size 8388608 extends beyond EOD, truncated
[   61.815174][ T4894] loop3: detected capacity change from 0 to 512
[   61.822517][ T4894] EXT4-fs: Ignoring removed orlov option
[   61.828571][ T4894] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   61.839421][ T4894] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.495: corrupted in-inode xattr: e_value size too large
[   61.854571][ T4894] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.495: couldn't read orphan inode 15 (err -117)
[   61.867346][ T4894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.046071][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.073510][ T4901] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.497'.
[   62.083537][ T4901] netlink: zone id is out of range
[   62.088648][ T4901] netlink: zone id is out of range
[   62.093806][ T4901] netlink: zone id is out of range
[   62.098936][ T4901] netlink: zone id is out of range
[   62.104096][ T4901] netlink: zone id is out of range
[   62.109192][ T4901] netlink: zone id is out of range
[   62.114342][ T4901] netlink: zone id is out of range
[   62.119729][ T4901] netlink: zone id is out of range
[   62.307493][ T4904] loop2: detected capacity change from 0 to 2048
[   62.329973][ T4907] loop3: detected capacity change from 0 to 164
[   62.364851][ T4904]  loop2: unable to read partition table
[   62.371472][ T4904] loop2: partition table beyond EOD, truncated
[   62.377699][ T4904] loop_reread_partitions: partition scan of loop2 () failed (rc=-5)
[   62.448356][ T4912] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.455672][ T4912] syzkaller0: entered promiscuous mode
[   62.461171][ T4912] syzkaller0: entered allmulticast mode
[   62.579596][ T4911] iso9660: Corrupted directory entry in block 2 of inode 1920
[   62.646655][ T4910] tipc: Resetting bearer <eth:syzkaller0>
[   62.667880][ T4910] tipc: Disabling bearer <eth:syzkaller0>
[   62.710810][ T4927] netlink: 60 bytes leftover after parsing attributes in process `syz.4.507'.
[   62.837104][ T4938] netlink: 'syz.1.512': attribute type 10 has an invalid length.
[   62.888080][ T4938] hub 9-0:1.0: USB hub found
[   62.895443][ T4938] hub 9-0:1.0: 8 ports detected
[   62.896327][ T4947] netlink: '': attribute type 13 has an invalid length.
[   62.905050][ T4938] bridge: RTM_NEWNEIGH with invalid ether address
[   63.014344][ T4958] loop3: detected capacity change from 0 to 1024
[   63.040433][ T4953] loop1: detected capacity change from 0 to 512
[   63.054057][ T4958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.055551][ T4953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.116721][ T4958] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.522: missing EA_INODE flag
[   63.135158][ T4968] loop2: detected capacity change from 0 to 1024
[   63.140406][ T4958] EXT4-fs (loop3): Remounting filesystem read-only
[   63.142443][ T4968] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   63.183088][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.240069][ T4968] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.524: Invalid block bitmap block 0 in block_group 0
[   63.253849][ T4968] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.524: Failed to acquire dquot type 0
[   63.268477][ T4968] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.524: Freeing blocks not in datazone - block = 0, count = 4096
[   63.282826][ T4968] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.524: Invalid inode bitmap blk 0 in block_group 0
[   63.295457][ T4968] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   63.304191][ T4355] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:25: Failed to release dquot type 0
[   63.315947][ T4968] EXT4-fs (loop2): 1 orphan inode deleted
[   63.333235][ T4968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.360512][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.381060][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.390789][ T4977] loop2: detected capacity change from 0 to 164
[   63.509333][ T4980] loop1: detected capacity change from 0 to 164
[   63.524261][ T4980] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.534472][ T4980] bond1 (unregistering): Released all slaves
[   63.591538][ T4982] netlink: 'syz.1.527': attribute type 10 has an invalid length.
[   63.919172][ T4991] netlink: 'syz.4.530': attribute type 10 has an invalid length.
[   64.023590][ T4983] iso9660: Corrupted directory entry in block 2 of inode 1920
[   64.173383][ T5003] loop3: detected capacity change from 0 to 1024
[   64.180337][ T5003] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.308456][ T5013] netlink: 64 bytes leftover after parsing attributes in process `syz.2.536'.
[   64.343707][ T5016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.535'.
[   64.492147][ T5027] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=5027 comm=syz.4.541
[   64.526563][ T5024] netlink: 'syz.1.540': attribute type 12 has an invalid length.
[   64.535236][   T29] kauditd_printk_skb: 818 callbacks suppressed
[   64.535319][   T29] audit: type=1400 audit(1763449547.856:4012): avc:  denied  { getopt } for  pid=5023 comm="syz.1.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   64.560991][   T29] audit: type=1400 audit(1763449547.856:4013): avc:  denied  { write } for  pid=5023 comm="syz.1.540" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   64.602833][ T5022] netlink: 'syz.2.539': attribute type 3 has an invalid length.
[   64.612542][   T29] audit: type=1400 audit(1763449547.936:4014): avc:  denied  { execute } for  pid=5030 comm="syz.1.542" name="file0" dev="tmpfs" ino=546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   64.766372][   T29] audit: type=1400 audit(1763449548.086:4015): avc:  denied  { ioctl } for  pid=5037 comm="syz.2.544" path="socket:[9534]" dev="sockfs" ino=9534 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   64.818843][   T29] audit: type=1400 audit(1763449548.136:4016): avc:  denied  { read } for  pid=5041 comm="syz.0.546" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   64.842924][   T29] audit: type=1400 audit(1763449548.136:4017): avc:  denied  { open } for  pid=5041 comm="syz.0.546" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   65.113859][   T29] audit: type=1326 audit(1763449548.436:4018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5047 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   65.137856][   T29] audit: type=1326 audit(1763449548.436:4019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5047 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   65.161293][   T29] audit: type=1326 audit(1763449548.466:4020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5047 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   65.184782][   T29] audit: type=1326 audit(1763449548.466:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5047 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   65.210017][ T5048] loop3: detected capacity change from 0 to 2048
[   65.222099][ T5048] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.237508][ T5048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.246162][ T5048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.498421][ T5052] netlink: 28 bytes leftover after parsing attributes in process `syz.4.550'.
[   65.763696][ T5075] program syz.0.556 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.838291][ T5082] nfs4: Bad value for 'source'
[   65.847007][ T5082] netlink: 60 bytes leftover after parsing attributes in process `syz.3.559'.
[   65.856279][ T5082] unsupported nlmsg_type 40
[   65.980983][ T5113] netlink: 96 bytes leftover after parsing attributes in process `syz.0.570'.
[   66.008384][ T5116] loop0: detected capacity change from 0 to 164
[   66.017377][ T5117] program syz.3.571 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.024985][ T5116] 8021q: adding VLAN 0 to HW filter on device bond1
[   66.038585][ T5116] bond1 (unregistering): Released all slaves
[   66.069242][ T5126] netlink: 'syz.0.579': attribute type 10 has an invalid length.
[   66.201034][ T5144] FAULT_INJECTION: forcing a failure.
[   66.201034][ T5144] name failslab, interval 1, probability 0, space 0, times 0
[   66.213764][ T5144] CPU: 0 UID: 0 PID: 5144 Comm: syz.0.582 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.213795][ T5144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   66.213811][ T5144] Call Trace:
[   66.213818][ T5144]  <TASK>
[   66.213827][ T5144]  __dump_stack+0x1d/0x30
[   66.213867][ T5144]  dump_stack_lvl+0xe8/0x140
[   66.213892][ T5144]  dump_stack+0x15/0x1b
[   66.213914][ T5144]  should_fail_ex+0x265/0x280
[   66.214012][ T5144]  should_failslab+0x8c/0xb0
[   66.214044][ T5144]  __kmalloc_noprof+0xa5/0x570
[   66.214096][ T5144]  ? sock_kmalloc+0x85/0xc0
[   66.214121][ T5144]  sock_kmalloc+0x85/0xc0
[   66.214201][ T5144]  __ipv6_sock_mc_join+0x1cc/0x360
[   66.214235][ T5144]  ipv6_sock_mc_join+0x24/0x30
[   66.214261][ T5144]  ipv6_mcast_join_leave+0x10d/0x160
[   66.214312][ T5144]  do_ipv6_setsockopt+0x14c0/0x2160
[   66.214359][ T5144]  ? kstrtoull+0x111/0x140
[   66.214404][ T5144]  ? __rcu_read_unlock+0x4f/0x70
[   66.214440][ T5144]  ? avc_has_perm_noaudit+0x1b1/0x200
[   66.214467][ T5144]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   66.214526][ T5144]  ipv6_setsockopt+0x59/0x130
[   66.214567][ T5144]  tcp_setsockopt+0x98/0xb0
[   66.214673][ T5144]  sock_common_setsockopt+0x69/0x80
[   66.214704][ T5144]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   66.214738][ T5144]  __sys_setsockopt+0x184/0x200
[   66.214779][ T5144]  __x64_sys_setsockopt+0x64/0x80
[   66.214911][ T5144]  x64_sys_call+0x20ec/0x3000
[   66.214938][ T5144]  do_syscall_64+0xd2/0x200
[   66.214974][ T5144]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   66.215008][ T5144]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   66.215050][ T5144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.215075][ T5144] RIP: 0033:0x7fcd8776f6c9
[   66.215117][ T5144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.215139][ T5144] RSP: 002b:00007fcd861d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   66.215179][ T5144] RAX: ffffffffffffffda RBX: 00007fcd879c5fa0 RCX: 00007fcd8776f6c9
[   66.215193][ T5144] RDX: 000000000000002a RSI: 0000000000000029 RDI: 0000000000000006
[   66.215242][ T5144] RBP: 00007fcd861d7090 R08: 0000000000000088 R09: 0000000000000000
[   66.215256][ T5144] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[   66.215269][ T5144] R13: 00007fcd879c6038 R14: 00007fcd879c5fa0 R15: 00007ffd68314178
[   66.215292][ T5144]  </TASK>
[   66.481171][ T5150] netlink: 'syz.4.587': attribute type 10 has an invalid length.
[   66.552116][ T5156] loop3: detected capacity change from 0 to 8192
[   66.599030][ T5156]  loop3: p1 p2 p3 p4
[   66.603287][ T5156] loop3: p1 size 196608 extends beyond EOD, truncated
[   66.621569][ T5156] loop3: p2 start 164919041 is beyond EOD, truncated
[   66.628285][ T5156] loop3: p3 size 66846464 extends beyond EOD, truncated
[   66.658164][ T5156] loop3: p4 size 37048832 extends beyond EOD, truncated
[   66.744958][ T5174] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   66.778038][ T5174] tipc: Disabling bearer <eth:syzkaller0>
[   66.819156][ T5192] FAULT_INJECTION: forcing a failure.
[   66.819156][ T5192] name failslab, interval 1, probability 0, space 0, times 0
[   66.831866][ T5192] CPU: 1 UID: 0 PID: 5192 Comm: syz.3.602 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.831897][ T5192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   66.831911][ T5192] Call Trace:
[   66.831918][ T5192]  <TASK>
[   66.831925][ T5192]  __dump_stack+0x1d/0x30
[   66.831970][ T5192]  dump_stack_lvl+0xe8/0x140
[   66.832013][ T5192]  dump_stack+0x15/0x1b
[   66.832035][ T5192]  should_fail_ex+0x265/0x280
[   66.832071][ T5192]  ? ip_ra_control+0xd6/0x2c0
[   66.832115][ T5192]  should_failslab+0x8c/0xb0
[   66.832151][ T5192]  __kmalloc_cache_noprof+0x4c/0x4a0
[   66.832248][ T5192]  ip_ra_control+0xd6/0x2c0
[   66.832341][ T5192]  do_ip_setsockopt+0xbbb/0x2240
[   66.832425][ T5192]  ip_setsockopt+0x58/0x110
[   66.832464][ T5192]  raw_setsockopt+0xbd/0x150
[   66.832509][ T5192]  sock_common_setsockopt+0x69/0x80
[   66.832535][ T5192]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   66.832574][ T5192]  __sys_setsockopt+0x184/0x200
[   66.832627][ T5192]  __x64_sys_setsockopt+0x64/0x80
[   66.832668][ T5192]  x64_sys_call+0x20ec/0x3000
[   66.832692][ T5192]  do_syscall_64+0xd2/0x200
[   66.832711][ T5192]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   66.832763][ T5192]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   66.832822][ T5192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.832895][ T5192] RIP: 0033:0x7f76141cf6c9
[   66.832913][ T5192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.832934][ T5192] RSP: 002b:00007f7612c37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   66.832957][ T5192] RAX: ffffffffffffffda RBX: 00007f7614425fa0 RCX: 00007f76141cf6c9
[   66.832972][ T5192] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000007
[   66.832987][ T5192] RBP: 00007f7612c37090 R08: 0000000000000004 R09: 0000000000000000
[   66.833002][ T5192] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   66.833018][ T5192] R13: 00007f7614426038 R14: 00007f7614425fa0 R15: 00007fff20b68208
[   66.833124][ T5192]  </TASK>
[   67.073819][ T5197] FAULT_INJECTION: forcing a failure.
[   67.073819][ T5197] name failslab, interval 1, probability 0, space 0, times 0
[   67.086574][ T5197] CPU: 1 UID: 0 PID: 5197 Comm: syz.1.603 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.086605][ T5197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   67.086616][ T5197] Call Trace:
[   67.086621][ T5197]  <TASK>
[   67.086627][ T5197]  __dump_stack+0x1d/0x30
[   67.086658][ T5197]  dump_stack_lvl+0xe8/0x140
[   67.086680][ T5197]  dump_stack+0x15/0x1b
[   67.086701][ T5197]  should_fail_ex+0x265/0x280
[   67.086776][ T5197]  should_failslab+0x8c/0xb0
[   67.086808][ T5197]  kmem_cache_alloc_noprof+0x50/0x480
[   67.086842][ T5197]  ? skb_clone+0x151/0x1f0
[   67.086864][ T5197]  skb_clone+0x151/0x1f0
[   67.086923][ T5197]  __netlink_deliver_tap+0x2c9/0x500
[   67.086949][ T5197]  ? netlink_attachskb+0x2cc/0x650
[   67.086988][ T5197]  netlink_sendskb+0x126/0x150
[   67.087016][ T5197]  netlink_unicast+0x2a2/0x690
[   67.087051][ T5197]  netlink_ack+0x4c8/0x500
[   67.087096][ T5197]  netlink_rcv_skb+0x192/0x220
[   67.087132][ T5197]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   67.087222][ T5197]  rtnetlink_rcv+0x1c/0x30
[   67.087242][ T5197]  netlink_unicast+0x5c0/0x690
[   67.087288][ T5197]  netlink_sendmsg+0x58b/0x6b0
[   67.087310][ T5197]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.087331][ T5197]  __sock_sendmsg+0x145/0x180
[   67.087416][ T5197]  ____sys_sendmsg+0x31e/0x4e0
[   67.087442][ T5197]  ___sys_sendmsg+0x17b/0x1d0
[   67.087484][ T5197]  __x64_sys_sendmsg+0xd4/0x160
[   67.087553][ T5197]  x64_sys_call+0x191e/0x3000
[   67.087580][ T5197]  do_syscall_64+0xd2/0x200
[   67.087606][ T5197]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   67.087659][ T5197]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   67.087700][ T5197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.087726][ T5197] RIP: 0033:0x7fa68018f6c9
[   67.087740][ T5197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.087756][ T5197] RSP: 002b:00007fa67ebef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.087844][ T5197] RAX: ffffffffffffffda RBX: 00007fa6803e5fa0 RCX: 00007fa68018f6c9
[   67.087858][ T5197] RDX: 0000000020004804 RSI: 0000200000000000 RDI: 0000000000000006
[   67.087889][ T5197] RBP: 00007fa67ebef090 R08: 0000000000000000 R09: 0000000000000000
[   67.087904][ T5197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.087917][ T5197] R13: 00007fa6803e6038 R14: 00007fa6803e5fa0 R15: 00007ffd001c3538
[   67.087957][ T5197]  </TASK>
[   67.350039][ T5203] xt_hashlimit: max too large, truncated to 1048576
[   67.370627][ T5203] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   67.518495][ T5225] netlink: 'syz.4.613': attribute type 3 has an invalid length.
[   67.733019][ T5258] loop3: detected capacity change from 0 to 512
[   67.823563][ T5261] 9pnet_fd: Insufficient options for proto=fd
[   67.853806][ T5258] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   67.896226][ T5258] EXT4-fs (loop3): invalid journal inode
[   67.902051][ T5258] EXT4-fs (loop3): can't get journal size
[   67.908572][ T5258] EXT4-fs (loop3): 1 truncate cleaned up
[   67.915988][ T5258] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   68.018586][ T5270] netlink: 52 bytes leftover after parsing attributes in process `syz.1.620'.
[   68.028127][ T5270] SELinux: security_context_str_to_sid ($�ՙ`L�6k�
[   68.028127][ T5270] @�c�85�T
[   68.028127][ T5270] ��ǿy���a5%�${) failed with errno=-22
[   68.204859][ T5272] loop0: detected capacity change from 0 to 164
[   68.221408][ T5272] 8021q: adding VLAN 0 to HW filter on device bond1
[   68.231943][ T5272] bond1 (unregistering): Released all slaves
[   68.266395][ T5274] netlink: 'syz.0.622': attribute type 10 has an invalid length.
[   68.546699][ T5291] loop0: detected capacity change from 0 to 2048
[   68.553810][ T5291] EXT4-fs: quotafile must be on filesystem root
[   68.859096][ T5303] loop1: detected capacity change from 0 to 164
[   68.870994][ T5306] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[   68.901075][ T5312] netlink: 'syz.3.637': attribute type 10 has an invalid length.
[   68.901363][ T5303] 8021q: adding VLAN 0 to HW filter on device bond1
[   68.920092][ T5303] bond1 (unregistering): Released all slaves
[   68.955948][ T5316] netlink: 'syz.1.634': attribute type 10 has an invalid length.
[   68.971163][ T5319] hub 9-0:1.0: USB hub found
[   68.976435][ T5319] hub 9-0:1.0: 8 ports detected
[   68.996017][ T5319] bridge: RTM_NEWNEIGH with invalid ether address
[   69.099838][ T5323] loop3: detected capacity change from 0 to 512
[   69.109358][ T5325] loop1: detected capacity change from 0 to 512
[   69.184114][ T5325] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.431875][ T5337] FAULT_INJECTION: forcing a failure.
[   69.431875][ T5337] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.445103][ T5337] CPU: 0 UID: 0 PID: 5337 Comm: syz.3.644 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.445129][ T5337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   69.445143][ T5337] Call Trace:
[   69.445150][ T5337]  <TASK>
[   69.445158][ T5337]  __dump_stack+0x1d/0x30
[   69.445183][ T5337]  dump_stack_lvl+0xe8/0x140
[   69.445330][ T5337]  dump_stack+0x15/0x1b
[   69.445410][ T5337]  should_fail_ex+0x265/0x280
[   69.445450][ T5337]  should_fail+0xb/0x20
[   69.445469][ T5337]  should_fail_usercopy+0x1a/0x20
[   69.445492][ T5337]  _copy_to_user+0x20/0xa0
[   69.445569][ T5337]  simple_read_from_buffer+0xb5/0x130
[   69.445599][ T5337]  proc_fail_nth_read+0x10e/0x150
[   69.445636][ T5337]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.445671][ T5337]  vfs_read+0x1a8/0x770
[   69.445706][ T5337]  ? __rcu_read_unlock+0x4f/0x70
[   69.445747][ T5337]  ? __fget_files+0x184/0x1c0
[   69.445829][ T5337]  ksys_read+0xda/0x1a0
[   69.445851][ T5337]  __x64_sys_read+0x40/0x50
[   69.445876][ T5337]  x64_sys_call+0x27c0/0x3000
[   69.445910][ T5337]  do_syscall_64+0xd2/0x200
[   69.445947][ T5337]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   69.446029][ T5337]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   69.446068][ T5337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.446103][ T5337] RIP: 0033:0x7f76141ce0dc
[   69.446118][ T5337] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   69.446137][ T5337] RSP: 002b:00007f7612c37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   69.446215][ T5337] RAX: ffffffffffffffda RBX: 00007f7614425fa0 RCX: 00007f76141ce0dc
[   69.446229][ T5337] RDX: 000000000000000f RSI: 00007f7612c370a0 RDI: 0000000000000005
[   69.446244][ T5337] RBP: 00007f7612c37090 R08: 0000000000000000 R09: 0000000000000000
[   69.446257][ T5337] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000001
[   69.446268][ T5337] R13: 00007f7614426038 R14: 00007f7614425fa0 R15: 00007fff20b68208
[   69.446397][ T5337]  </TASK>
[   69.447404][ T5349] loop2: detected capacity change from 0 to 1024
[   69.487311][ T5352] loop3: detected capacity change from 0 to 164
[   69.511773][ T5349] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   69.535748][ T5352] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.572034][ T5349] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.649: Invalid block bitmap block 0 in block_group 0
[   69.596562][ T5360] netlink: 'syz.3.651': attribute type 10 has an invalid length.
[   69.616589][ T5349] __quota_error: 1179 callbacks suppressed
[   69.616605][ T5349] Quota error (device loop2): write_blk: dquota write failed
[   69.711774][ T5349] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   69.721804][ T5349] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.649: Failed to acquire dquot type 0
[   69.733776][ T5349] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.649: Freeing blocks not in datazone - block = 0, count = 4096
[   69.738467][ T5352] bond1 (unregistering): Released all slaves
[   69.770592][   T29] audit: type=1326 audit(1763449553.086:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd87766567 code=0x7ffc0000
[   69.794282][ T5349] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.649: Invalid inode bitmap blk 0 in block_group 0
[   69.801363][ T5364] loop0: detected capacity change from 0 to 1024
[   69.807220][ T5349] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   69.813385][   T29] audit: type=1326 audit(1763449553.116:5202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd8770b789 code=0x7ffc0000
[   69.822285][ T4331] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[   69.845015][   T29] audit: type=1326 audit(1763449553.116:5203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd87766567 code=0x7ffc0000
[   69.853991][ T4331] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:17: Failed to release dquot type 0
[   69.877118][   T29] audit: type=1326 audit(1763449553.116:5204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd8770b789 code=0x7ffc0000
[   69.877142][   T29] audit: type=1326 audit(1763449553.116:5205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   69.877200][   T29] audit: type=1326 audit(1763449553.116:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   69.891620][ T5364] ext2: Unknown parameter 'subj_user'
[   69.911996][   T29] audit: type=1326 audit(1763449553.116:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5363 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fcd8776f703 code=0x7ffc0000
[   69.937421][ T5349] EXT4-fs (loop2): 1 orphan inode deleted
[   70.016096][ T5364] sd 0:0:1:0: device reset
[   70.065856][ T5377] loop3: detected capacity change from 0 to 512
[   70.075628][ T5374] loop0: detected capacity change from 0 to 512
[   70.092843][ T5374] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.111715][ T5377] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.657: Failed to acquire dquot type 1
[   70.137800][ T5377] EXT4-fs (loop3): 1 truncate cleaned up
[   70.145968][ T5377] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.174101][ T5387] wireguard0: entered promiscuous mode
[   70.194809][ T5392] netlink: 'syz.1.664': attribute type 10 has an invalid length.
[   70.207839][ T5377] netlink: 36 bytes leftover after parsing attributes in process `syz.3.657'.
[   70.226442][ T5392] hub 9-0:1.0: USB hub found
[   70.239499][ T5392] hub 9-0:1.0: 8 ports detected
[   70.262128][ T5392] bridge: RTM_NEWNEIGH with invalid ether address
[   70.375582][ T5410] loop1: detected capacity change from 0 to 1024
[   70.382740][ T5410] ext2: Unknown parameter 'subj_user'
[   70.394033][ T5410] sd 0:0:1:0: device reset
[   70.466458][ T5420] SELinux: security_context_str_to_sid (vV�{"K������t:�{}H0��Z�4���}�H/�t=�� �V4)��+��=kڌ�J'Ł��w����!~���(Ѧʲyb�9�KC�]@���Ak8���r��jI����'����qG���U������4��*G����eP���9��������Q�u��~8�u��m3$�w�p���M]�BA2.����W�1=q�d��7�F����������ho�xg-{�S8��?�}5�ދ�ɤ?�z�D�D\�O�) failed with errno=-22
[   70.522823][ T5424] netlink: 'syz.0.676': attribute type 10 has an invalid length.
[   70.539470][ T5424] hub 9-0:1.0: USB hub found
[   70.544343][ T5424] hub 9-0:1.0: 8 ports detected
[   70.552689][ T5424] bridge: RTM_NEWNEIGH with invalid ether address
[   70.712320][ T5441] FAULT_INJECTION: forcing a failure.
[   70.712320][ T5441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.725466][ T5441] CPU: 1 UID: 0 PID: 5441 Comm: syz.0.684 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.725560][ T5441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   70.725575][ T5441] Call Trace:
[   70.725582][ T5441]  <TASK>
[   70.725591][ T5441]  __dump_stack+0x1d/0x30
[   70.725642][ T5441]  dump_stack_lvl+0xe8/0x140
[   70.725662][ T5441]  dump_stack+0x15/0x1b
[   70.725678][ T5441]  should_fail_ex+0x265/0x280
[   70.725832][ T5441]  should_fail+0xb/0x20
[   70.725846][ T5441]  should_fail_usercopy+0x1a/0x20
[   70.725864][ T5441]  _copy_from_user+0x1c/0xb0
[   70.725890][ T5441]  do_seccomp+0x118/0xa40
[   70.725928][ T5441]  __x64_sys_seccomp+0x40/0x50
[   70.726014][ T5441]  x64_sys_call+0x2ad8/0x3000
[   70.726039][ T5441]  do_syscall_64+0xd2/0x200
[   70.726057][ T5441]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   70.726181][ T5441]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   70.726312][ T5441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.726368][ T5441] RIP: 0033:0x7fcd8776f6c9
[   70.726441][ T5441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.726524][ T5441] RSP: 002b:00007fcd861d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[   70.726540][ T5441] RAX: ffffffffffffffda RBX: 00007fcd879c5fa0 RCX: 00007fcd8776f6c9
[   70.726553][ T5441] RDX: 00002000000000c0 RSI: 000000000000000c RDI: 0000000000000001
[   70.726567][ T5441] RBP: 00007fcd861d7090 R08: 0000000000000000 R09: 0000000000000000
[   70.726581][ T5441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.726595][ T5441] R13: 00007fcd879c6038 R14: 00007fcd879c5fa0 R15: 00007ffd68314178
[   70.726640][ T5441]  </TASK>
[   70.934238][ T5443] netlink: 36 bytes leftover after parsing attributes in process `syz.0.685'.
[   71.167354][ T5454] loop0: detected capacity change from 0 to 512
[   71.410348][ T5255] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   71.440904][ T5487] netlink: 'syz.2.704': attribute type 10 has an invalid length.
[   71.491005][ T5495] lo speed is unknown, defaulting to 1000
[   71.497870][ T5495] lo speed is unknown, defaulting to 1000
[   71.509352][ T5495] lo speed is unknown, defaulting to 1000
[   71.519515][ T5487] hub 9-0:1.0: USB hub found
[   71.525877][ T5487] hub 9-0:1.0: 8 ports detected
[   71.531297][ T5495] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   71.540809][ T5495] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   71.551967][ T5487] bridge: RTM_NEWNEIGH with invalid ether address
[   71.581372][ T5495] lo speed is unknown, defaulting to 1000
[   71.591489][ T5495] lo speed is unknown, defaulting to 1000
[   71.601065][ T5495] lo speed is unknown, defaulting to 1000
[   71.607516][ T5495] lo speed is unknown, defaulting to 1000
[   71.614414][ T5495] lo speed is unknown, defaulting to 1000
[   71.787098][ T5524] loop2: detected capacity change from 0 to 1024
[   71.799372][ T5530] loop3: detected capacity change from 0 to 512
[   71.817325][ T5524] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.829152][ T5533] netlink: 'syz.4.722': attribute type 10 has an invalid length.
[   71.832690][ T5524] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.719: Invalid block bitmap block 0 in block_group 0
[   71.854351][ T5524] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.719: Failed to acquire dquot type 0
[   71.866642][ T5530] EXT4-fs mount: 14 callbacks suppressed
[   71.866658][ T5530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.885563][ T5524] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.719: Freeing blocks not in datazone - block = 0, count = 4096
[   71.898894][ T5530] ext4 filesystem being mounted at /154/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.909433][ T5524] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.719: Invalid inode bitmap blk 0 in block_group 0
[   71.972576][ T5255] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:63: Failed to release dquot type 0
[   71.988184][ T5524] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   72.011269][ T5530] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.716: Failed to acquire dquot type 0
[   72.020002][ T5524] EXT4-fs (loop2): 1 orphan inode deleted
[   72.032286][ T5524] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.054479][ T5546] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.070930][ T5546] bond1 (unregistering): Released all slaves
[   72.089730][ T5528] sd 0:0:1:0: device reset
[   72.098246][ T5551] netlink: 'syz.4.726': attribute type 10 has an invalid length.
[   72.141812][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.270271][ T5569] netlink: 'syz.2.735': attribute type 10 has an invalid length.
[   72.291164][ T5569] hub 9-0:1.0: USB hub found
[   72.295834][ T5569] hub 9-0:1.0: 8 ports detected
[   72.461868][ T5579] loop1: detected capacity change from 0 to 1024
[   72.469074][ T5579] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   72.484751][ T5579] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.739: Invalid block bitmap block 0 in block_group 0
[   72.498472][ T5579] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.739: Failed to acquire dquot type 0
[   72.510017][ T5579] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.739: Freeing blocks not in datazone - block = 0, count = 4096
[   72.524433][ T5579] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.739: Invalid inode bitmap blk 0 in block_group 0
[   72.542841][ T5242] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:54: Failed to release dquot type 0
[   72.554603][ T5579] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   72.563615][ T5579] EXT4-fs (loop1): 1 orphan inode deleted
[   72.572499][ T5579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.616730][ T5583] lo speed is unknown, defaulting to 1000
[   72.768059][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.922218][ T5588] loop2: detected capacity change from 0 to 164
[   72.938286][ T5588] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.948992][ T5588] bond1 (unregistering): Released all slaves
[   73.053657][ T5608] loop1: detected capacity change from 0 to 1024
[   73.060550][ T5608] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   73.084598][ T5600] sd 0:0:1:0: device reset
[   73.274809][ T5629] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.290942][ T5629] bond1 (unregistering): Released all slaves
[   73.318926][ T5640] validate_nla: 1 callbacks suppressed
[   73.318941][ T5640] netlink: 'syz.4.755': attribute type 10 has an invalid length.
[   73.477708][ T5645] loop0: detected capacity change from 0 to 1024
[   73.485100][ T5645] ext2: Unknown parameter 'subj_user'
[   73.519437][ T5647] loop2: detected capacity change from 0 to 1024
[   73.527695][ T5647] ext2: Unknown parameter 'subj_user'
[   73.715335][ T5666] loop0: detected capacity change from 0 to 164
[   73.760084][ T5666] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.770455][ T5666] bond1 (unregistering): Released all slaves
[   73.781844][ T5669] netlink: 'syz.0.769': attribute type 10 has an invalid length.
[   73.848278][ T5671] loop0: detected capacity change from 0 to 1024
[   73.871226][ T5671] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   73.883109][ T5671] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.770: Invalid block bitmap block 0 in block_group 0
[   73.897375][ T5671] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.770: Failed to acquire dquot type 0
[   73.908952][ T5671] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.770: Freeing blocks not in datazone - block = 0, count = 4096
[   73.922565][ T5671] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.770: Invalid inode bitmap blk 0 in block_group 0
[   73.940928][ T4356] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:26: Failed to release dquot type 0
[   73.953552][ T5671] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   73.962744][ T5671] EXT4-fs (loop0): 1 orphan inode deleted
[   73.970109][ T5671] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.997664][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.050702][ T5684] FAULT_INJECTION: forcing a failure.
[   74.050702][ T5684] name failslab, interval 1, probability 0, space 0, times 0
[   74.063449][ T5684] CPU: 1 UID: 0 PID: 5684 Comm: syz.0.776 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.063513][ T5684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   74.063524][ T5684] Call Trace:
[   74.063529][ T5684]  <TASK>
[   74.063534][ T5684]  __dump_stack+0x1d/0x30
[   74.063558][ T5684]  dump_stack_lvl+0xe8/0x140
[   74.063635][ T5684]  dump_stack+0x15/0x1b
[   74.063657][ T5684]  should_fail_ex+0x265/0x280
[   74.063692][ T5684]  ? sctp_add_bind_addr+0x71/0x1e0
[   74.063745][ T5684]  should_failslab+0x8c/0xb0
[   74.063772][ T5684]  __kmalloc_cache_noprof+0x4c/0x4a0
[   74.063859][ T5684]  sctp_add_bind_addr+0x71/0x1e0
[   74.063912][ T5684]  sctp_copy_local_addr_list+0x199/0x220
[   74.063946][ T5684]  sctp_copy_one_addr+0x7f/0x280
[   74.063965][ T5684]  sctp_bind_addr_copy+0x79/0x290
[   74.063990][ T5684]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[   74.064085][ T5684]  sctp_connect_new_asoc+0x1c3/0x3a0
[   74.064112][ T5684]  __sctp_connect+0x424/0x7a0
[   74.064140][ T5684]  ? selinux_sctp_bind_connect+0x20d/0x250
[   74.064178][ T5684]  sctp_getsockopt_connectx3+0x220/0x300
[   74.064208][ T5684]  sctp_getsockopt+0x910/0xaa0
[   74.064238][ T5684]  sock_common_getsockopt+0x60/0x70
[   74.064374][ T5684]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   74.064407][ T5684]  do_sock_getsockopt+0x200/0x240
[   74.064441][ T5684]  __x64_sys_getsockopt+0x11e/0x1a0
[   74.064546][ T5684]  x64_sys_call+0x2bca/0x3000
[   74.064626][ T5684]  do_syscall_64+0xd2/0x200
[   74.064644][ T5684]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   74.064676][ T5684]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   74.064711][ T5684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.064808][ T5684] RIP: 0033:0x7fcd8776f6c9
[   74.064824][ T5684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.064841][ T5684] RSP: 002b:00007fcd861d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   74.064857][ T5684] RAX: ffffffffffffffda RBX: 00007fcd879c5fa0 RCX: 00007fcd8776f6c9
[   74.064868][ T5684] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000006
[   74.064926][ T5684] RBP: 00007fcd861d7090 R08: 0000200000000180 R09: 0000000000000000
[   74.064936][ T5684] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.064946][ T5684] R13: 00007fcd879c6038 R14: 00007fcd879c5fa0 R15: 00007ffd68314178
[   74.064984][ T5684]  </TASK>
[   74.495817][ T5687] hub 5-0:1.0: USB hub found
[   74.500545][ T5687] hub 5-0:1.0: 8 ports detected
[   74.503485][ T5695] loop1: detected capacity change from 0 to 164
[   74.522204][ T5695] 8021q: adding VLAN 0 to HW filter on device bond1
[   74.534669][ T5695] bond1 (unregistering): Released all slaves
[   74.567382][ T5700] netlink: 'syz.1.781': attribute type 10 has an invalid length.
[   74.590503][ T5702] loop2: detected capacity change from 0 to 1024
[   74.597962][ T5702] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   74.611649][ T5702] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.783: Invalid block bitmap block 0 in block_group 0
[   74.629145][ T5702] __quota_error: 702 callbacks suppressed
[   74.629165][ T5702] Quota error (device loop2): write_blk: dquota write failed
[   74.642439][ T5702] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   74.652627][ T5702] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.783: Failed to acquire dquot type 0
[   74.663970][   T29] audit: type=1326 audit(1763449557.976:5897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.687339][   T29] audit: type=1326 audit(1763449557.976:5898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.710754][   T29] audit: type=1326 audit(1763449557.976:5899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.734251][   T29] audit: type=1326 audit(1763449557.976:5900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.757597][   T29] audit: type=1326 audit(1763449557.976:5901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.780991][   T29] audit: type=1326 audit(1763449557.976:5902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.790820][ T5702] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.783: Freeing blocks not in datazone - block = 0, count = 4096
[   74.804431][   T29] audit: type=1326 audit(1763449557.976:5903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.845071][ T5702] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.783: Invalid inode bitmap blk 0 in block_group 0
[   74.852621][   T29] audit: type=1326 audit(1763449557.986:5904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5705 comm="syz.1.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   74.881252][ T5702] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   74.889848][ T4356] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:26: Failed to release dquot type 0
[   74.897576][ T5702] EXT4-fs (loop2): 1 orphan inode deleted
[   74.907659][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.907873][ T5702] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.950163][   T10] Process accounting resumed
[   74.964184][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.986380][ T5711] loop1: detected capacity change from 0 to 1024
[   74.993746][ T5711] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   75.005688][ T5711] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.796: Invalid block bitmap block 0 in block_group 0
[   75.019624][ T5711] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.796: Failed to acquire dquot type 0
[   75.031300][ T5711] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.796: Freeing blocks not in datazone - block = 0, count = 4096
[   75.044739][ T5711] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.796: Invalid inode bitmap blk 0 in block_group 0
[   75.057552][ T5242] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:54: Failed to release dquot type 0
[   75.057831][ T5711] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   75.078019][ T5711] EXT4-fs (loop1): 1 orphan inode deleted
[   75.084210][ T5711] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.111355][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.173046][ T5735] loop1: detected capacity change from 0 to 512
[   75.179684][ T5735] EXT4-fs: dax option not supported
[   75.441072][ T5761] netlink: 'syz.0.807': attribute type 10 has an invalid length.
[   75.460196][ T5761] hub 9-0:1.0: USB hub found
[   75.465010][ T5761] hub 9-0:1.0: 8 ports detected
[   75.476141][ T5761] bridge: RTM_NEWNEIGH with invalid ether address
[   75.499390][ T5767] netlink: 64 bytes leftover after parsing attributes in process `syz.0.811'.
[   75.550923][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   75.573472][ T5774] netlink: 12 bytes leftover after parsing attributes in process `syz.4.814'.
[   75.610214][ T5777] loop0: detected capacity change from 0 to 1024
[   75.617242][ T5777] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   75.629524][ T5777] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.815: Invalid block bitmap block 0 in block_group 0
[   75.644088][ T5777] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.815: Failed to acquire dquot type 0
[   75.655570][ T5777] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.815: Freeing blocks not in datazone - block = 0, count = 4096
[   75.669153][ T5777] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.815: Invalid inode bitmap blk 0 in block_group 0
[   75.685158][ T5242] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:54: Failed to release dquot type 0
[   75.697523][ T5777] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   75.706258][ T5777] EXT4-fs (loop0): 1 orphan inode deleted
[   75.712398][ T5777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.737545][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.802938][ T5709] Process accounting resumed
[   75.851283][ T5794] loop3: detected capacity change from 0 to 164
[   75.870274][ T5794] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.882490][ T5794] bond1 (unregistering): Released all slaves
[   75.892272][ T5799] netlink: 64 bytes leftover after parsing attributes in process `syz.4.825'.
[   75.915240][ T5802] netlink: 'syz.3.821': attribute type 10 has an invalid length.
[   75.945179][ T5805] Invalid ELF header len 1
[   76.195533][ T5823] 8021q: adding VLAN 0 to HW filter on device bond1
[   76.314921][ T5823] bond1 (unregistering): Released all slaves
[   76.329023][ T5832] lo speed is unknown, defaulting to 1000
[   76.335889][ T5832] lo speed is unknown, defaulting to 1000
[   76.342052][ T5832] lo speed is unknown, defaulting to 1000
[   76.377338][ T5832] infiniband s
z1: set active
[   76.382119][ T5832] infiniband s
z1: added lo
[   76.386663][ T3415] lo speed is unknown, defaulting to 1000
[   76.414771][ T5832] RDS/IB: s
z1: added
[   76.437704][ T5832] smc: adding ib device s
z1 with port count 1
[   76.493859][ T5840] loop2: detected capacity change from 0 to 512
[   76.503292][ T5840] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   76.511405][ T5840] EXT4-fs (loop2): orphan cleanup on readonly fs
[   76.524660][ T5840] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm +}[@: corrupted inode contents
[   76.538329][ T5840] EXT4-fs (loop2): Remounting filesystem read-only
[   76.544998][ T5840] EXT4-fs (loop2): 1 truncate cleaned up
[   76.551239][ T5254] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   76.561776][ T5254] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   76.581538][ T5254] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   76.592339][ T5832] smc:    ib device s
z1 port 1 has no pnetid
[   76.614931][   T10] lo speed is unknown, defaulting to 1000
[   76.637026][ T5832] lo speed is unknown, defaulting to 1000
[   76.669785][ T5840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.682801][ T5840] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.939277][ T5832] lo speed is unknown, defaulting to 1000
[   76.947638][ T5833] lo speed is unknown, defaulting to 1000
[   76.979058][ T5833] lo speed is unknown, defaulting to 1000
[   77.016286][ T5832] lo speed is unknown, defaulting to 1000
[   77.040498][ T3415] IPVS: starting estimator thread 0...
[   77.072390][ T5832] lo speed is unknown, defaulting to 1000
[   77.108028][ T5832] lo speed is unknown, defaulting to 1000
[   77.133479][ T5853] IPVS: using max 2064 ests per chain, 103200 per kthread
[   77.275649][ T5868] loop1: detected capacity change from 0 to 164
[   77.297312][ T5868] 8021q: adding VLAN 0 to HW filter on device bond1
[   77.308081][ T5868] bond1 (unregistering): Released all slaves
[   77.340329][ T5873] netlink: 'syz.1.849': attribute type 10 has an invalid length.
[   77.554884][ T5894] loop2: detected capacity change from 0 to 1024
[   77.588843][ T5894] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.612190][ T5894] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.856: Invalid block bitmap block 0 in block_group 0
[   77.629294][ T5906] loop3: detected capacity change from 0 to 512
[   77.647064][ T5906] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   77.663767][ T5894] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.856: Failed to acquire dquot type 0
[   77.675626][ T5894] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.856: Freeing blocks not in datazone - block = 0, count = 4096
[   77.689647][ T5894] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.856: Invalid inode bitmap blk 0 in block_group 0
[   77.694912][ T5906] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[   77.703102][ T4376] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:36: Failed to release dquot type 0
[   77.720478][ T5906] System zones: 1-2, 4-12, 8-8
[   77.726651][ T5906] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.859: iget: bad i_size value: 38620345925642
[   77.739237][ T5894] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   77.748109][ T5906] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.859: couldn't read orphan inode 15 (err -117)
[   77.748607][ T5894] EXT4-fs (loop2): 1 orphan inode deleted
[   77.761413][ T5906] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.781744][ T5894] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.806682][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.820465][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.031658][ T5930] FAULT_INJECTION: forcing a failure.
[   78.031658][ T5930] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.044773][ T5930] CPU: 1 UID: 0 PID: 5930 Comm: syz.2.870 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.044796][ T5930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   78.044807][ T5930] Call Trace:
[   78.044813][ T5930]  <TASK>
[   78.044819][ T5930]  __dump_stack+0x1d/0x30
[   78.044955][ T5930]  dump_stack_lvl+0xe8/0x140
[   78.044972][ T5930]  dump_stack+0x15/0x1b
[   78.045063][ T5930]  should_fail_ex+0x265/0x280
[   78.045091][ T5930]  should_fail+0xb/0x20
[   78.045104][ T5930]  should_fail_usercopy+0x1a/0x20
[   78.045147][ T5930]  _copy_to_iter+0xd2/0xe70
[   78.045241][ T5930]  ? _raw_spin_unlock+0x26/0x50
[   78.045270][ T5930]  ? finish_task_switch+0xad/0x2b0
[   78.045292][ T5930]  ? __schedule+0x6b9/0xb30
[   78.045316][ T5930]  copy_page_to_iter+0x18f/0x2d0
[   78.045356][ T5930]  anon_pipe_read+0x236/0x750
[   78.045436][ T5930]  ? __pfx_autoremove_wake_function+0x10/0x10
[   78.045455][ T5930]  ? __pfx_anon_pipe_read+0x10/0x10
[   78.045524][ T5930]  vfs_read+0x64c/0x770
[   78.045545][ T5930]  ? __pfx_anon_pipe_read+0x10/0x10
[   78.045574][ T5930]  ksys_read+0xda/0x1a0
[   78.045608][ T5930]  __x64_sys_read+0x40/0x50
[   78.045707][ T5930]  x64_sys_call+0x27c0/0x3000
[   78.045726][ T5930]  do_syscall_64+0xd2/0x200
[   78.045770][ T5930]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   78.045867][ T5930]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   78.045966][ T5930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.045990][ T5930] RIP: 0033:0x7f65928ef6c9
[   78.046008][ T5930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.046029][ T5930] RSP: 002b:00007f659134f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   78.046045][ T5930] RAX: ffffffffffffffda RBX: 00007f6592b45fa0 RCX: 00007f65928ef6c9
[   78.046055][ T5930] RDX: 000000000000006f RSI: 0000200000000000 RDI: 0000000000000003
[   78.046065][ T5930] RBP: 00007f659134f090 R08: 0000000000000000 R09: 0000000000000000
[   78.046128][ T5930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.046137][ T5930] R13: 00007f6592b46038 R14: 00007f6592b45fa0 R15: 00007ffd32ea64f8
[   78.046154][ T5930]  </TASK>
[   78.718042][ T5980] FAULT_INJECTION: forcing a failure.
[   78.718042][ T5980] name failslab, interval 1, probability 0, space 0, times 0
[   78.730805][ T5980] CPU: 1 UID: 0 PID: 5980 Comm: syz.3.884 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.730843][ T5980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   78.730860][ T5980] Call Trace:
[   78.730868][ T5980]  <TASK>
[   78.730877][ T5980]  __dump_stack+0x1d/0x30
[   78.730959][ T5980]  dump_stack_lvl+0xe8/0x140
[   78.730983][ T5980]  dump_stack+0x15/0x1b
[   78.731063][ T5980]  should_fail_ex+0x265/0x280
[   78.731094][ T5980]  ? __request_region+0x55/0x420
[   78.731131][ T5980]  should_failslab+0x8c/0xb0
[   78.731206][ T5980]  __kmalloc_cache_noprof+0x4c/0x4a0
[   78.731248][ T5980]  __request_region+0x55/0x420
[   78.731285][ T5980]  ? _raw_spin_unlock+0x26/0x50
[   78.731316][ T5980]  ? finish_task_switch+0xad/0x2b0
[   78.731387][ T5980]  serial8250_request_std_resource+0x11d/0x260
[   78.731488][ T5980]  serial8250_config_port+0x38/0x2b70
[   78.731526][ T5980]  ? free_resource+0x11b/0x270
[   78.731602][ T5980]  ? __release_region+0x1e1/0x240
[   78.731636][ T5980]  univ8250_config_port+0x299/0x370
[   78.731731][ T5980]  uart_ioctl+0xb87/0xe80
[   78.731762][ T5980]  ? do_vfs_ioctl+0x866/0xe10
[   78.731785][ T5980]  ? tty_jobctrl_ioctl+0x29e/0x810
[   78.731888][ T5980]  tty_ioctl+0x7d8/0xb80
[   78.731915][ T5980]  ? __pfx_tty_ioctl+0x10/0x10
[   78.731941][ T5980]  __se_sys_ioctl+0xce/0x140
[   78.731978][ T5980]  __x64_sys_ioctl+0x43/0x50
[   78.731995][ T5980]  x64_sys_call+0x1816/0x3000
[   78.732095][ T5980]  do_syscall_64+0xd2/0x200
[   78.732194][ T5980]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   78.732252][ T5980]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   78.732290][ T5980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.732308][ T5980] RIP: 0033:0x7f76141cf6c9
[   78.732375][ T5980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.732395][ T5980] RSP: 002b:00007f7612c37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.732424][ T5980] RAX: ffffffffffffffda RBX: 00007f7614425fa0 RCX: 00007f76141cf6c9
[   78.732438][ T5980] RDX: 0000000000000000 RSI: 0000000000005453 RDI: 0000000000000004
[   78.732451][ T5980] RBP: 00007f7612c37090 R08: 0000000000000000 R09: 0000000000000000
[   78.732463][ T5980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.732473][ T5980] R13: 00007f7614426038 R14: 00007f7614425fa0 R15: 00007fff20b68208
[   78.732490][ T5980]  </TASK>
[   79.115642][ T6008] xt_hashlimit: max too large, truncated to 1048576
[   79.123044][ T6008] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   79.140410][ T6008] loop3: detected capacity change from 0 to 512
[   79.147340][ T6008] ext4: Unknown parameter 'smackfshat'
[   79.185979][ T6001] lo speed is unknown, defaulting to 1000
[   79.206890][ T6001] lo speed is unknown, defaulting to 1000
[   79.255439][ T6014] loop2: detected capacity change from 0 to 512
[   79.281184][ T6014] EXT4-fs: Ignoring removed orlov option
[   79.290905][ T6014] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   79.311970][ T6014] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.896: corrupted in-inode xattr: e_value size too large
[   79.331150][ T6014] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.896: couldn't read orphan inode 15 (err -117)
[   79.377309][ T6014] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.634463][   T29] kauditd_printk_skb: 534 callbacks suppressed
[   79.634482][   T29] audit: type=1326 audit(1763449562.956:6423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6023 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   79.664543][   T29] audit: type=1326 audit(1763449562.956:6424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6023 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   79.698261][ T6033] loop0: detected capacity change from 0 to 512
[   79.841224][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.912291][ T6046] netlink: 24 bytes leftover after parsing attributes in process `syz.1.907'.
[   79.921577][   T29] audit: type=1326 audit(1763449563.226:6425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   79.945033][   T29] audit: type=1326 audit(1763449563.226:6426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   79.964171][ T6051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.909'.
[   79.968368][   T29] audit: type=1326 audit(1763449563.226:6427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   79.968393][   T29] audit: type=1326 audit(1763449563.226:6428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   80.023907][   T29] audit: type=1326 audit(1763449563.226:6429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   80.047283][   T29] audit: type=1326 audit(1763449563.226:6430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   80.070616][   T29] audit: type=1326 audit(1763449563.226:6431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   80.094049][   T29] audit: type=1326 audit(1763449563.226:6432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6045 comm="syz.1.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fa68018f6c9 code=0x7ffc0000
[   80.146751][ T6054] netlink: 8 bytes leftover after parsing attributes in process `syz.1.907'.
[   80.168949][ T6064] netlink: 'syz.3.914': attribute type 10 has an invalid length.
[   80.195231][ T6066] netlink: 64 bytes leftover after parsing attributes in process `syz.0.915'.
[   80.227907][ T6064] hub 9-0:1.0: USB hub found
[   80.241578][ T6064] hub 9-0:1.0: 8 ports detected
[   80.404605][ T6081] netlink: 24 bytes leftover after parsing attributes in process `syz.0.920'.
[   80.432226][ T6081] IPVS: Error connecting to the multicast addr
[   80.455591][ T6096] loop2: detected capacity change from 0 to 1024
[   80.462579][ T6096] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   80.490373][ T6096] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.926: Invalid block bitmap block 0 in block_group 0
[   80.525106][ T6108] netlink: 'syz.4.931': attribute type 10 has an invalid length.
[   80.538610][ T6104] FAULT_INJECTION: forcing a failure.
[   80.538610][ T6104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.551781][ T6104] CPU: 0 UID: 0 PID: 6104 Comm: syz.1.930 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.551898][ T6104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   80.551914][ T6104] Call Trace:
[   80.551922][ T6104]  <TASK>
[   80.551928][ T6104]  __dump_stack+0x1d/0x30
[   80.551955][ T6104]  dump_stack_lvl+0xe8/0x140
[   80.552020][ T6104]  dump_stack+0x15/0x1b
[   80.552041][ T6104]  should_fail_ex+0x265/0x280
[   80.552085][ T6104]  should_fail+0xb/0x20
[   80.552128][ T6104]  should_fail_usercopy+0x1a/0x20
[   80.552155][ T6104]  _copy_from_user+0x1c/0xb0
[   80.552187][ T6104]  kstrtouint_from_user+0x69/0xf0
[   80.552209][ T6104]  ? 0xffffffff81000000
[   80.552225][ T6104]  ? selinux_file_permission+0x1e4/0x320
[   80.552287][ T6104]  proc_fail_nth_write+0x50/0x160
[   80.552323][ T6104]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.552360][ T6104]  vfs_write+0x269/0x960
[   80.552422][ T6104]  ? vfs_read+0x4e6/0x770
[   80.552450][ T6104]  ? __rcu_read_unlock+0x4f/0x70
[   80.552482][ T6104]  ? __fget_files+0x184/0x1c0
[   80.552521][ T6104]  ksys_write+0xda/0x1a0
[   80.552712][ T6104]  __x64_sys_write+0x40/0x50
[   80.552744][ T6104]  x64_sys_call+0x2802/0x3000
[   80.552797][ T6104]  do_syscall_64+0xd2/0x200
[   80.552823][ T6104]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   80.552858][ T6104]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   80.552909][ T6104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.552930][ T6104] RIP: 0033:0x7fa68018e17f
[   80.552944][ T6104] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   80.552962][ T6104] RSP: 002b:00007fa67ebef030 EFLAGS: 00000293
[   80.552979][ T6096] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.926: Failed to acquire dquot type 0
[   80.553050][ T6104]  ORIG_RAX: 0000000000000001
[   80.553061][ T6104] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa68018e17f
[   80.553126][ T6104] RDX: 0000000000000001 RSI: 00007fa67ebef0a0 RDI: 0000000000000003
[   80.553143][ T6104] RBP: 00007fa67ebef090 R08: 0000000000000000 R09: 0000000000000000
[   80.553159][ T6104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   80.553177][ T6104] R13: 00007fa6803e6038 R14: 00007fa6803e5fa0 R15: 00007ffd001c3538
[   80.553206][ T6104]  </TASK>
[   80.781070][ T6096] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.926: Freeing blocks not in datazone - block = 0, count = 4096
[   80.795647][ T6096] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.926: Invalid inode bitmap blk 0 in block_group 0
[   80.808272][ T4352] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:22: Failed to release dquot type 0
[   80.808343][ T6096] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   80.808407][ T6096] EXT4-fs (loop2): 1 orphan inode deleted
[   80.835671][ T6096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.903253][ T6115] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.911373][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.912204][ T6115] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.000740][ T6134] netlink: 'syz.2.939': attribute type 3 has an invalid length.
[   81.092743][ T6147] netlink: 64 bytes leftover after parsing attributes in process `syz.2.945'.
[   81.216018][ T6156] loop3: detected capacity change from 0 to 1024
[   81.232597][ T6156] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.317027][ T6166] loop2: detected capacity change from 0 to 512
[   81.370318][ T6174] loop0: detected capacity change from 0 to 1024
[   81.377473][ T6174] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   81.389421][ T6174] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.956: Invalid block bitmap block 0 in block_group 0
[   81.412888][ T6174] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.956: Failed to acquire dquot type 0
[   81.424821][ T6174] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.956: Freeing blocks not in datazone - block = 0, count = 4096
[   81.438526][ T6174] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.956: Invalid inode bitmap blk 0 in block_group 0
[   81.451510][ T6174] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   81.467082][ T6174] EXT4-fs (loop0): 1 orphan inode deleted
[   81.473820][ T6174] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.828386][ T6188] loop2: detected capacity change from 0 to 512
[   81.936682][ T6188] EXT4-fs error (device loop2): ext4_init_orphan_info:581: comm syz.2.959: inode #0: comm syz.2.959: iget: illegal inode #
[   82.240621][ T6199] netlink: 64 bytes leftover after parsing attributes in process `syz.4.965'.
[   82.284247][ T6188] EXT4-fs (loop2): get orphan inode failed
[   82.290306][ T6188] EXT4-fs (loop2): mount failed
[   82.310932][ T4352] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:22: Failed to release dquot type 0
[   82.519305][ T6211] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.538335][ T6211] bond1 (unregistering): Released all slaves
[   82.559345][ T6213] netlink: 'syz.4.970': attribute type 10 has an invalid length.
[   82.911692][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.042345][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.070016][ T6182] syz.2.959 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   83.084074][ T6182] CPU: 1 UID: 0 PID: 6182 Comm: syz.2.959 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.084098][ T6182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   83.084176][ T6182] Call Trace:
[   83.084182][ T6182]  <TASK>
[   83.084188][ T6182]  __dump_stack+0x1d/0x30
[   83.084207][ T6182]  dump_stack_lvl+0xe8/0x140
[   83.084334][ T6182]  dump_stack+0x15/0x1b
[   83.084356][ T6182]  dump_header+0x81/0x220
[   83.084378][ T6182]  oom_kill_process+0x342/0x400
[   83.084484][ T6182]  out_of_memory+0x979/0xb80
[   83.084523][ T6182]  try_charge_memcg+0x610/0xa10
[   83.084589][ T6182]  obj_cgroup_charge_pages+0xa6/0x150
[   83.084613][ T6182]  __memcg_kmem_charge_page+0x9f/0x170
[   83.084697][ T6182]  __alloc_frozen_pages_noprof+0x188/0x360
[   83.084733][ T6182]  alloc_pages_mpol+0xb3/0x260
[   83.084767][ T6182]  alloc_pages_noprof+0x90/0x130
[   83.084859][ T6182]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   83.084909][ T6182]  __kvmalloc_node_noprof+0x483/0x670
[   83.084947][ T6182]  ? ip_set_alloc+0x24/0x30
[   83.085010][ T6182]  ? ip_set_alloc+0x24/0x30
[   83.085041][ T6182]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   83.085113][ T6182]  ip_set_alloc+0x24/0x30
[   83.085161][ T6182]  hash_netiface_create+0x282/0x740
[   83.085201][ T6182]  ? __pfx_hash_netiface_create+0x10/0x10
[   83.085269][ T6182]  ip_set_create+0x3cc/0x970
[   83.085306][ T6182]  nfnetlink_rcv_msg+0x4c6/0x590
[   83.085378][ T6182]  netlink_rcv_skb+0x123/0x220
[   83.085419][ T6182]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   83.085502][ T6182]  nfnetlink_rcv+0x167/0x16c0
[   83.085530][ T6182]  ? kmem_cache_free+0xe4/0x3d0
[   83.085608][ T6182]  ? __kfree_skb+0x109/0x150
[   83.085651][ T6182]  ? nlmon_xmit+0x4f/0x60
[   83.085680][ T6182]  ? consume_skb+0x49/0x150
[   83.085788][ T6182]  ? nlmon_xmit+0x4f/0x60
[   83.085811][ T6182]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   83.085858][ T6182]  ? __dev_queue_xmit+0x1200/0x2000
[   83.085877][ T6182]  ? __dev_queue_xmit+0x182/0x2000
[   83.085969][ T6182]  ? ref_tracker_free+0x37d/0x3e0
[   83.086022][ T6182]  ? __netlink_deliver_tap+0x4dc/0x500
[   83.086049][ T6182]  netlink_unicast+0x5c0/0x690
[   83.086110][ T6182]  netlink_sendmsg+0x58b/0x6b0
[   83.086216][ T6182]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.086239][ T6182]  __sock_sendmsg+0x145/0x180
[   83.086269][ T6182]  ____sys_sendmsg+0x31e/0x4e0
[   83.086294][ T6182]  ___sys_sendmsg+0x17b/0x1d0
[   83.086331][ T6182]  __x64_sys_sendmsg+0xd4/0x160
[   83.086393][ T6182]  x64_sys_call+0x191e/0x3000
[   83.086444][ T6182]  do_syscall_64+0xd2/0x200
[   83.086483][ T6182]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   83.086552][ T6182]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   83.086592][ T6182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.086690][ T6182] RIP: 0033:0x7f65928ef6c9
[   83.086707][ T6182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.086750][ T6182] RSP: 002b:00007f659134f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   83.086769][ T6182] RAX: ffffffffffffffda RBX: 00007f6592b45fa0 RCX: 00007f65928ef6c9
[   83.086781][ T6182] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[   83.086793][ T6182] RBP: 00007f6592971f91 R08: 0000000000000000 R09: 0000000000000000
[   83.086805][ T6182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.086872][ T6182] R13: 00007f6592b46038 R14: 00007f6592b45fa0 R15: 00007ffd32ea64f8
[   83.086891][ T6182]  </TASK>
[   83.086898][ T6182] memory: usage 307200kB, limit 307200kB, failcnt 491
[   83.133390][ T6226] netlink: 'syz.3.975': attribute type 1 has an invalid length.
[   83.135244][ T6182] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[   83.175922][ T6226] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.176941][ T6182] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   83.176959][ T6182] Memory cgroup stats for /syz2
[   83.184218][ T6224] tc_dump_action: action bad kind
[   83.186842][ T6182] :
[   83.264951][ T6226] can: request_module (can-proto-0) failed.
[   83.303809][ T6182] cache 0
[   83.479031][ T6182] rss 0
[   83.481799][ T6182] shmem 0
[   83.484723][ T6182] mapped_file 0
[   83.488168][ T6182] dirty 0
[   83.491144][ T6182] writeback 0
[   83.494421][ T6182] workingset_refault_anon 41
[   83.499016][ T6182] workingset_refault_file 378
[   83.503695][ T6182] swap 217088
[   83.506968][ T6182] swapcached 0
[   83.510328][ T6182] pgpgin 50874
[   83.513757][ T6182] pgpgout 50874
[   83.517228][ T6182] pgfault 50356
[   83.520680][ T6182] pgmajfault 20
[   83.524143][ T6182] inactive_anon 0
[   83.527768][ T6182] active_anon 0
[   83.531230][ T6182] inactive_file 0
[   83.534857][ T6182] active_file 0
[   83.538388][ T6182] unevictable 0
[   83.541847][ T6182] hierarchical_memory_limit 314572800
[   83.547200][ T6182] hierarchical_memsw_limit 9223372036854771712
[   83.553361][ T6182] total_cache 0
[   83.556892][ T6182] total_rss 0
[   83.560168][ T6182] total_shmem 0
[   83.563649][ T6182] total_mapped_file 0
[   83.567688][ T6182] total_dirty 0
[   83.571162][ T6182] total_writeback 0
[   83.574953][ T6182] total_workingset_refault_anon 41
[   83.580061][ T6182] total_workingset_refault_file 378
[   83.585262][ T6182] total_swap 217088
[   83.589137][ T6182] total_swapcached 0
[   83.593044][ T6182] total_pgpgin 50874
[   83.596984][ T6182] total_pgpgout 50874
[   83.600990][ T6182] total_pgfault 50356
[   83.604966][ T6182] total_pgmajfault 20
[   83.609017][ T6182] total_inactive_anon 0
[   83.613177][ T6182] total_active_anon 0
[   83.617152][ T6182] total_inactive_file 0
[   83.621317][ T6182] total_active_file 0
[   83.625356][ T6182] total_unevictable 0
[   83.629330][ T6182] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.959,pid=6181,uid=0
[   83.643955][ T6182] Memory cgroup out of memory: Killed process 6181 (syz.2.959) total-vm:96136kB, anon-rss:1264kB, file-rss:22504kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[   83.728562][ T6233] loop0: detected capacity change from 0 to 1024
[   83.738350][ T6233] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.781621][ T6233] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.976: Invalid block bitmap block 0 in block_group 0
[   83.811118][ T6233] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.976: Failed to acquire dquot type 0
[   83.841378][ T6233] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.976: Freeing blocks not in datazone - block = 0, count = 4096
[   83.866746][ T6233] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.976: Invalid inode bitmap blk 0 in block_group 0
[   83.913838][ T6247] mmap: syz.1.981 (6247) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   83.925810][   T52] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 0
[   83.933435][ T6233] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   83.981623][ T6233] EXT4-fs (loop0): 1 orphan inode deleted
[   83.991957][ T6233] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.138818][ T6253] 8021q: adding VLAN 0 to HW filter on device bond1
[   84.149063][ T6253] bond1 (unregistering): Released all slaves
[   84.165974][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.186136][ T6257] netlink: 'syz.4.984': attribute type 10 has an invalid length.
[   84.270895][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   84.460617][ T6291] netlink: 'syz.1.998': attribute type 10 has an invalid length.
[   84.516348][ T6291] hub 9-0:1.0: USB hub found
[   84.521212][ T6291] hub 9-0:1.0: 8 ports detected
[   84.531267][ T6291] netlink: 12 bytes leftover after parsing attributes in process `syz.1.998'.
[   84.580639][ T6298] FAULT_INJECTION: forcing a failure.
[   84.580639][ T6298] name failslab, interval 1, probability 0, space 0, times 0
[   84.593285][ T6298] CPU: 1 UID: 0 PID: 6298 Comm: syz.0.1001 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.593398][ T6298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   84.593412][ T6298] Call Trace:
[   84.593417][ T6298]  <TASK>
[   84.593423][ T6298]  __dump_stack+0x1d/0x30
[   84.593453][ T6298]  dump_stack_lvl+0xe8/0x140
[   84.593471][ T6298]  dump_stack+0x15/0x1b
[   84.593490][ T6298]  should_fail_ex+0x265/0x280
[   84.593529][ T6298]  should_failslab+0x8c/0xb0
[   84.593570][ T6298]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[   84.593602][ T6298]  ? kvasprintf_const+0xb3/0x130
[   84.593633][ T6298]  kvasprintf+0x8a/0x110
[   84.593711][ T6298]  ? format_decode+0xaf/0x580
[   84.593740][ T6298]  kvasprintf_const+0xb3/0x130
[   84.593773][ T6298]  kobject_set_name_vargs+0x44/0xe0
[   84.593798][ T6298]  dev_set_name+0x83/0xb0
[   84.593892][ T6298]  ? hrtimer_setup+0x31/0x100
[   84.593917][ T6298]  ? swiotlb_dev_init+0x19/0x30
[   84.593940][ T6298]  ? swiotlb_dev_init+0x19/0x30
[   84.594015][ T6298]  ? device_initialize+0x1fe/0x210
[   84.594037][ T6298]  __serio_register_port+0xfc/0x1d0
[   84.594234][ T6298]  serport_ldisc_read+0x1d6/0x300
[   84.594319][ T6298]  ? terminate_walk+0x27f/0x2a0
[   84.594413][ T6298]  tty_read+0x154/0x4a0
[   84.594449][ T6298]  ? __import_iovec+0x428/0x540
[   84.594480][ T6298]  do_iter_readv_writev+0x4a1/0x540
[   84.594540][ T6298]  vfs_readv+0x1ea/0x690
[   84.594587][ T6298]  do_readv+0xe7/0x210
[   84.594643][ T6298]  __x64_sys_readv+0x45/0x50
[   84.594676][ T6298]  x64_sys_call+0x29fc/0x3000
[   84.594726][ T6298]  do_syscall_64+0xd2/0x200
[   84.594751][ T6298]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   84.594795][ T6298]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   84.594829][ T6298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.594854][ T6298] RIP: 0033:0x7fcd8776f6c9
[   84.594879][ T6298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.594966][ T6298] RSP: 002b:00007fcd861d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[   84.594991][ T6298] RAX: ffffffffffffffda RBX: 00007fcd879c5fa0 RCX: 00007fcd8776f6c9
[   84.595006][ T6298] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[   84.595021][ T6298] RBP: 00007fcd861d7090 R08: 0000000000000000 R09: 0000000000000000
[   84.595167][ T6298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.595181][ T6298] R13: 00007fcd879c6038 R14: 00007fcd879c5fa0 R15: 00007ffd68314178
[   84.595263][ T6298]  </TASK>
[   84.595278][ T6298] serio: Serial port ptm0
[   84.846688][ T3415] serio (null): device_add() failed for ptm0/serio0 (Serial port), error: -22
[   84.900018][ T6311] loop1: detected capacity change from 0 to 512
[   84.930219][ T6311] EXT4-fs: Ignoring removed orlov option
[   84.940732][ T6311] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   84.950099][ T6311] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.1006: corrupted in-inode xattr: e_value size too large
[   84.965058][ T6311] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1006: couldn't read orphan inode 15 (err -117)
[   84.977424][ T6311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.029930][ T6324] netlink: 'syz.3.1012': attribute type 10 has an invalid length.
[   85.038972][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.080783][   T29] kauditd_printk_skb: 718 callbacks suppressed
[   85.080799][   T29] audit: type=1326 audit(1763449568.396:7133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76141c6567 code=0x7ffc0000
[   85.115523][   T29] audit: type=1326 audit(1763449568.406:7134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f761416b789 code=0x7ffc0000
[   85.138900][   T29] audit: type=1326 audit(1763449568.406:7135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76141c6567 code=0x7ffc0000
[   85.162352][   T29] audit: type=1326 audit(1763449568.406:7136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f761416b789 code=0x7ffc0000
[   85.185891][   T29] audit: type=1326 audit(1763449568.406:7137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   85.209518][   T29] audit: type=1326 audit(1763449568.406:7138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   85.233067][   T29] audit: type=1326 audit(1763449568.406:7139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   85.256484][   T29] audit: type=1326 audit(1763449568.406:7140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76141cf6c9 code=0x7ffc0000
[   85.279980][   T29] audit: type=1326 audit(1763449568.406:7141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76141c6567 code=0x7ffc0000
[   85.303441][   T29] audit: type=1326 audit(1763449568.406:7142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6323 comm="syz.3.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f761416b789 code=0x7ffc0000
[   85.341469][ T6324] hub 9-0:1.0: USB hub found
[   85.350207][ T6324] hub 9-0:1.0: 8 ports detected
[   85.358567][ T6324] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1012'.
[   85.410160][ T6343] FAULT_INJECTION: forcing a failure.
[   85.410160][ T6343] name failslab, interval 1, probability 0, space 0, times 0
[   85.422908][ T6343] CPU: 0 UID: 0 PID: 6343 Comm: wޣ� Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.422947][ T6343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   85.422959][ T6343] Call Trace:
[   85.422964][ T6343]  <TASK>
[   85.422970][ T6343]  __dump_stack+0x1d/0x30
[   85.422993][ T6343]  dump_stack_lvl+0xe8/0x140
[   85.423017][ T6343]  dump_stack+0x15/0x1b
[   85.423032][ T6343]  should_fail_ex+0x265/0x280
[   85.423044][ T6344] loop1: detected capacity change from 0 to 1024
[   85.423073][ T6343]  should_failslab+0x8c/0xb0
[   85.423106][ T6343]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   85.423145][ T6343]  ? __alloc_skb+0x101/0x320
[   85.423221][ T6343]  ? tcp_chrono_stop+0x19d/0x210
[   85.423251][ T6343]  __alloc_skb+0x101/0x320
[   85.423289][ T6343]  tcp_stream_alloc_skb+0x2d/0x1d0
[   85.423385][ T6343]  tcp_connect+0xcd7/0x23a0
[   85.423418][ T6343]  ? xfrm_lookup_route+0xd6/0x110
[   85.423523][ T6343]  ? tcp_fastopen_defer_connect+0x69/0x1e0
[   85.423574][ T6343]  tcp_v4_connect+0xa23/0xaf0
[   85.423661][ T6343]  __inet_stream_connect+0x169/0x7d0
[   85.423713][ T6343]  ? tcp_sendmsg_fastopen+0x172/0x520
[   85.423748][ T6343]  ? __slab_alloc+0x25/0x50
[   85.423771][ T6343]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   85.423840][ T6343]  tcp_sendmsg_fastopen+0x43a/0x520
[   85.423880][ T6343]  tcp_sendmsg_locked+0x26e1/0x2c00
[   85.423916][ T6343]  ? mntput_no_expire+0x6f/0x440
[   85.424017][ T6343]  ? __rcu_read_unlock+0x4f/0x70
[   85.424050][ T6343]  ? avc_has_perm_noaudit+0x1b1/0x200
[   85.424077][ T6343]  ? avc_has_perm+0xf7/0x180
[   85.424133][ T6343]  ? _raw_spin_unlock_bh+0x36/0x40
[   85.424168][ T6343]  ? __pfx_tcp_sendmsg+0x10/0x10
[   85.424205][ T6343]  tcp_sendmsg+0x2f/0x50
[   85.424239][ T6343]  inet_sendmsg+0x76/0xd0
[   85.424328][ T6343]  __sock_sendmsg+0x102/0x180
[   85.424361][ T6343]  __sys_sendto+0x268/0x330
[   85.424425][ T6343]  __x64_sys_sendto+0x76/0x90
[   85.424462][ T6343]  x64_sys_call+0x2d14/0x3000
[   85.424555][ T6343]  do_syscall_64+0xd2/0x200
[   85.424580][ T6343]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   85.424617][ T6343]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   85.424749][ T6343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.424778][ T6343] RIP: 0033:0x7f76141cf6c9
[   85.424797][ T6343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.424822][ T6343] RSP: 002b:00007f7612c37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   85.424848][ T6343] RAX: ffffffffffffffda RBX: 00007f7614425fa0 RCX: 00007f76141cf6c9
[   85.424923][ T6343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   85.424988][ T6343] RBP: 00007f7612c37090 R08: 0000200000e68000 R09: 0000000000000010
[   85.425005][ T6343] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001
[   85.425022][ T6343] R13: 00007f7614426038 R14: 00007f7614425fa0 R15: 00007fff20b68208
[   85.425048][ T6343]  </TASK>
[   86.205966][ T6385] loop2: detected capacity change from 0 to 512
[   86.212515][ T6385] EXT4-fs: Ignoring removed orlov option
[   86.218430][ T6385] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   86.227786][ T6385] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.1035: corrupted in-inode xattr: e_value size too large
[   86.242094][ T6385] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1035: couldn't read orphan inode 15 (err -117)
[   86.254720][ T6385] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.279746][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.315211][ T6390] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1037'.
[   86.341414][ T6392] loop2: detected capacity change from 0 to 512
[   86.363206][ T6392] EXT4-fs (loop2): too many log groups per flexible block group
[   86.372170][ T6392] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   86.378974][ T6392] EXT4-fs (loop2): mount failed
[   86.521838][ T6402] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1041'.
[   86.549971][ T6404] loop2: detected capacity change from 0 to 1024
[   86.557456][ T6404] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.569391][ T6404] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1042: Invalid block bitmap block 0 in block_group 0
[   86.582960][ T6404] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1042: Failed to acquire dquot type 0
[   86.595178][ T6404] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.1042: Freeing blocks not in datazone - block = 0, count = 4096
[   86.608727][ T6404] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.1042: Invalid inode bitmap blk 0 in block_group 0
[   86.621563][ T4356] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:26: Failed to release dquot type 0
[   86.633085][ T6404] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   86.641926][ T6404] EXT4-fs (loop2): 1 orphan inode deleted
[   86.648202][ T6404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.701040][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.859559][ T6428] loop1: detected capacity change from 0 to 512
[   86.866183][ T6428] EXT4-fs: Ignoring removed orlov option
[   86.872364][ T6428] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   86.890708][ T6428] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.1052: corrupted in-inode xattr: e_value size too large
[   86.908280][ T6428] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1052: couldn't read orphan inode 15 (err -117)
[   86.920987][ T6428] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.956017][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.985123][ T6432] lo speed is unknown, defaulting to 1000
[   86.991727][ T6432] lo speed is unknown, defaulting to 1000
[   87.004492][ T6436] FAULT_INJECTION: forcing a failure.
[   87.004492][ T6436] name failslab, interval 1, probability 0, space 0, times 0
[   87.017386][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz.0.1054 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.017418][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   87.017464][ T6436] Call Trace:
[   87.017472][ T6436]  <TASK>
[   87.017478][ T6436]  __dump_stack+0x1d/0x30
[   87.017499][ T6436]  dump_stack_lvl+0xe8/0x140
[   87.017523][ T6436]  dump_stack+0x15/0x1b
[   87.017570][ T6436]  should_fail_ex+0x265/0x280
[   87.017661][ T6436]  ? __pfx_proc_alloc_inode+0x10/0x10
[   87.017704][ T6436]  should_failslab+0x8c/0xb0
[   87.017740][ T6436]  kmem_cache_alloc_lru_noprof+0x55/0x490
[   87.017775][ T6436]  ? proc_alloc_inode+0x34/0x90
[   87.017793][ T6436]  ? __pfx_proc_alloc_inode+0x10/0x10
[   87.017877][ T6436]  proc_alloc_inode+0x34/0x90
[   87.017893][ T6436]  alloc_inode+0x40/0x170
[   87.017917][ T6436]  new_inode+0x1d/0xe0
[   87.017997][ T6436]  proc_get_inode+0x21/0x370
[   87.018022][ T6436]  proc_lookup_de+0x196/0x240
[   87.018047][ T6436]  proc_lookup+0x7e/0x90
[   87.018069][ T6436]  __lookup_slow+0x193/0x250
[   87.018089][ T6436]  lookup_slow+0x3c/0x60
[   87.018106][ T6436]  link_path_walk+0x753/0x900
[   87.018206][ T6436]  path_openat+0x1de/0x2170
[   87.018233][ T6436]  ? _parse_integer_limit+0x170/0x190
[   87.018286][ T6436]  do_filp_open+0x109/0x230
[   87.018336][ T6436]  do_sys_openat2+0xa6/0x110
[   87.018356][ T6436]  __x64_sys_openat+0xf2/0x120
[   87.018384][ T6436]  x64_sys_call+0x2eab/0x3000
[   87.018407][ T6436]  do_syscall_64+0xd2/0x200
[   87.018486][ T6436]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   87.018512][ T6436]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   87.018560][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.018587][ T6436] RIP: 0033:0x7fcd8776f6c9
[   87.018605][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.018655][ T6436] RSP: 002b:00007fcd861d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   87.018672][ T6436] RAX: ffffffffffffffda RBX: 00007fcd879c5fa0 RCX: 00007fcd8776f6c9
[   87.018683][ T6436] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[   87.018696][ T6436] RBP: 00007fcd861d7090 R08: 0000000000000000 R09: 0000000000000000
[   87.018711][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   87.018725][ T6436] R13: 00007fcd879c6038 R14: 00007fcd879c5fa0 R15: 00007ffd68314178
[   87.018750][ T6436]  </TASK>
[   87.432114][ T6442] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1056'.
[   87.467122][ T6444] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1057'.
[   87.685228][ T6471] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1068'.
[   88.042982][ T4369] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.092522][ T4369] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.152392][ T4369] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.173160][ T6491] lo speed is unknown, defaulting to 1000
[   88.179131][ T6491] lo speed is unknown, defaulting to 1000
[   88.192642][ T4369] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.262497][ T6491] chnl_net:caif_netlink_parms(): no params data found
[   88.274059][ T4369] batadv1: left allmulticast mode
[   88.279236][ T4369] batadv1: left promiscuous mode
[   88.284501][ T4369] bridge0: port 3(batadv1) entered disabled state
[   88.292099][ T4369] bridge_slave_1: left allmulticast mode
[   88.297768][ T4369] bridge_slave_1: left promiscuous mode
[   88.303490][ T4369] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.313128][ T4369] bridge_slave_0: left allmulticast mode
[   88.318783][ T4369] bridge_slave_0: left promiscuous mode
[   88.324475][ T4369] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.362730][ T6505] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1081'.
[   88.423425][ T6511] netlink: 'syz.4.1084': attribute type 10 has an invalid length.
[   88.433942][ T4369] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.443715][ T4369] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.453295][ T4369] bond0 (unregistering): (slave team0): Releasing backup interface
[   88.461811][ T4369] bond0 (unregistering): Released all slaves
[   88.499554][ T6491] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.506862][ T6491] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.517306][ T6491] bridge_slave_0: entered allmulticast mode
[   88.523684][ T6491] bridge_slave_0: entered promiscuous mode
[   88.530418][ T6491] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.537639][ T6491] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.545010][ T6491] bridge_slave_1: entered allmulticast mode
[   88.551794][ T6491] bridge_slave_1: entered promiscuous mode
[   88.558133][ T4369] tipc: Left network mode
[   88.567429][ T6521] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1086'.
[   88.576443][ T6521] netlink: 108 bytes leftover after parsing attributes in process `syz.3.1086'.
[   88.585835][ T6521] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1086'.
[   88.595139][ T6521] netlink: 108 bytes leftover after parsing attributes in process `syz.3.1086'.
[   88.617405][ T6491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.628234][ T6491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.667871][ T4369] hsr_slave_0: left promiscuous mode
[   88.679597][ T4369] hsr_slave_1: left promiscuous mode
[   88.700064][ T4369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.707511][ T4369] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.717259][ T6531] loop1: detected capacity change from 0 to 1024
[   88.738925][ T4369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   88.746474][ T4369] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.795268][ T6531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.851001][ T4369] veth1_macvtap: left promiscuous mode
[   88.856704][ T4369] veth0_macvtap: left promiscuous mode
[   88.862687][ T4369] veth1_vlan: left promiscuous mode
[   88.867933][ T4369] veth0_vlan: left promiscuous mode
[   88.920177][ T6545] loop3: detected capacity change from 0 to 164
[   88.960181][ T6545] netlink: 'syz.3.1095': attribute type 10 has an invalid length.
[   88.993360][ T6548] netlink: 'syz.0.1096': attribute type 10 has an invalid length.
[   89.057113][ T4369] team0 (unregistering): Port device team_slave_1 removed
[   89.067026][ T4369] team0 (unregistering): Port device team_slave_0 removed
[   89.109762][ T4369] team0 (unregistering): Port device dummy0 removed
[   89.219600][ T6553] hub 9-0:1.0: USB hub found
[   89.237093][ T6553] hub 9-0:1.0: 8 ports detected
[   89.271238][ T6491] team0: Port device team_slave_0 added
[   89.357931][ T6491] team0: Port device team_slave_1 added
[   89.496911][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.503926][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.529967][ T6491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.089340][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.096463][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.122472][ T6491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.352629][ T6491] hsr_slave_0: entered promiscuous mode
[   90.385295][ T6491] hsr_slave_1: entered promiscuous mode
[   90.392559][ T6570] loop3: detected capacity change from 0 to 512
[   90.399211][ T6570] EXT4-fs: Ignoring removed orlov option
[   90.405324][ T6572] netlink: 'syz.0.1104': attribute type 10 has an invalid length.
[   90.421142][ T6491] debugfs: 'hsr0' already exists in 'hsr'
[   90.426883][ T6491] Cannot create hsr debugfs directory
[   90.435362][   T29] kauditd_printk_skb: 364 callbacks suppressed
[   90.435377][   T29] audit: type=1326 audit(1763449573.756:7504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.464969][   T29] audit: type=1326 audit(1763449573.756:7505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.488425][   T29] audit: type=1326 audit(1763449573.756:7506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.511928][   T29] audit: type=1326 audit(1763449573.756:7507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.535317][   T29] audit: type=1326 audit(1763449573.756:7508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.558731][   T29] audit: type=1326 audit(1763449573.756:7509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.582164][   T29] audit: type=1326 audit(1763449573.756:7510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   90.626813][ T6570] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   90.650217][ T4369] IPVS: stop unused estimator thread 0...
[   90.876435][ T6570] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.1103: corrupted in-inode xattr: e_value size too large
[   90.944136][ T6570] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1103: couldn't read orphan inode 15 (err -117)
[   90.962789][ T6491] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   91.046835][   T29] audit: type=1326 audit(1763449573.926:7511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   91.064903][ T6570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.070309][   T29] audit: type=1326 audit(1763449573.926:7512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   91.106792][   T29] audit: type=1326 audit(1763449573.926:7513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6571 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fcd8776f6c9 code=0x7ffc0000
[   91.141305][ T6491] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   91.148834][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.169304][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.179294][ T6491] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   91.188274][ T6491] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   91.266856][ T6491] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.280150][ T6491] 8021q: adding VLAN 0 to HW filter on device team0
[   91.289609][ T4369] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.296746][ T4369] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.309552][ T6608] FAULT_INJECTION: forcing a failure.
[   91.309552][ T6608] name failslab, interval 1, probability 0, space 0, times 0
[   91.322302][ T6608] CPU: 0 UID: 0 PID: 6608 Comm: syz.1.1114 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   91.322352][ T6608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   91.322362][ T6608] Call Trace:
[   91.322367][ T6608]  <TASK>
[   91.322443][ T6608]  __dump_stack+0x1d/0x30
[   91.322465][ T6608]  dump_stack_lvl+0xe8/0x140
[   91.322522][ T6608]  dump_stack+0x15/0x1b
[   91.322539][ T6608]  should_fail_ex+0x265/0x280
[   91.322572][ T6608]  ? flow_indr_dev_setup_offload+0x190/0x3f0
[   91.322591][ T6608]  should_failslab+0x8c/0xb0
[   91.322620][ T6608]  __kmalloc_cache_noprof+0x4c/0x4a0
[   91.322654][ T6608]  flow_indr_dev_setup_offload+0x190/0x3f0
[   91.322676][ T6608]  ? __pfx_tc_block_indr_cleanup+0x10/0x10
[   91.322699][ T6608]  tcf_block_offload_cmd+0x164/0x1f0
[   91.322803][ T6608]  tcf_block_get_ext+0x865/0xb30
[   91.322833][ T6608]  ? do_syscall_64+0xd2/0x200
[   91.322853][ T6608]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.322873][ T6608]  clsact_init+0x2d1/0x6c0
[   91.322926][ T6608]  ? __pfx_clsact_init+0x10/0x10
[   91.322963][ T6608]  qdisc_create+0x591/0x9e0
[   91.322987][ T6608]  tc_modify_qdisc+0xae9/0x1480
[   91.323075][ T6608]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   91.323155][ T6608]  rtnetlink_rcv_msg+0x65a/0x6d0
[   91.323179][ T6608]  netlink_rcv_skb+0x123/0x220
[   91.323283][ T6608]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.323314][ T6608]  rtnetlink_rcv+0x1c/0x30
[   91.323335][ T6608]  netlink_unicast+0x5c0/0x690
[   91.323388][ T6608]  netlink_sendmsg+0x58b/0x6b0
[   91.323409][ T6608]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.323448][ T6608]  __sock_sendmsg+0x145/0x180
[   91.323474][ T6608]  ____sys_sendmsg+0x31e/0x4e0
[   91.323531][ T6608]  ___sys_sendmsg+0x17b/0x1d0
[   91.323562][ T6608]  __x64_sys_sendmsg+0xd4/0x160
[   91.323633][ T6608]  x64_sys_call+0x191e/0x3000
[   91.323657][ T6608]  do_syscall_64+0xd2/0x200
[   91.323678][ T6608]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   91.323709][ T6608]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   91.323802][ T6608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.323831][ T6608] RIP: 0033:0x7fa68018f6c9
[   91.323845][ T6608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.323865][ T6608] RSP: 002b:00007fa67ebef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.323884][ T6608] RAX: ffffffffffffffda RBX: 00007fa6803e5fa0 RCX: 00007fa68018f6c9
[   91.323897][ T6608] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 000000000000000a
[   91.323934][ T6608] RBP: 00007fa67ebef090 R08: 0000000000000000 R09: 0000000000000000
[   91.323953][ T6608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   91.323966][ T6608] R13: 00007fa6803e6038 R14: 00007fa6803e5fa0 R15: 00007ffd001c3538
[   91.323987][ T6608]  </TASK>
[   91.602667][ T6491] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   91.613166][ T6491] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   91.632037][ T6614] ALSA: seq fatal error: cannot create timer (-22)
[   91.640081][ T4369] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.647183][ T4369] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.683096][ T6618] loop1: detected capacity change from 0 to 1024
[   91.693766][ T6618] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.735650][ T6491] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.736344][ T6618] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.1118: Invalid block bitmap block 0 in block_group 0
[   91.781436][ T6618] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1118: Failed to acquire dquot type 0
[   91.848652][ T6618] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.1118: Freeing blocks not in datazone - block = 0, count = 4096
[   91.864745][ T6631] ==================================================================
[   91.872855][ T6631] BUG: KCSAN: data-race in rtc_dev_poll / rtc_pie_update_irq
[   91.873603][ T6618] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1118: Invalid inode bitmap blk 0 in block_group 0
[   91.880262][ T6631] 
[   91.880269][ T6631] read-write to 0xffff8881034e4388 of 8 bytes by interrupt on cpu 1:
[   91.880292][ T6631]  rtc_pie_update_irq+0x7b/0xd0
[   91.880322][ T6631]  __hrtimer_run_queues+0x20f/0x5a0
[   91.893556][ T6618] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   91.895233][ T6631]  hrtimer_interrupt+0x21a/0x460
[   91.895279][ T6631]  __sysvec_apic_timer_interrupt+0x5f/0x1d0
[   91.895317][ T6631]  sysvec_apic_timer_interrupt+0x6f/0x80
[   91.895350][ T6631]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   91.895369][ T6631]  avc_has_perm_noaudit+0x156/0x200
[   91.895385][ T6631]  cred_has_capability+0x117/0x280
[   91.895411][ T6631]  selinux_capable+0x31/0x40
[   91.895431][ T6631]  security_capable+0x83/0x90
[   91.903724][ T6618] EXT4-fs (loop1): 1 orphan inode deleted
[   91.908313][ T6631]  ns_capable+0x4d/0xb0
[   91.908342][ T6631]  netlink_net_capable+0xaa/0xc0
[   91.914292][ T6618] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.922099][ T6631]  rtnetlink_rcv_msg+0x14c/0x6d0
[   91.922135][ T6631]  netlink_rcv_skb+0x123/0x220
[   91.922166][ T6631]  rtnetlink_rcv+0x1c/0x30
[   91.922190][ T6631]  netlink_unicast+0x5c0/0x690
[   92.010183][ T6631]  netlink_sendmsg+0x58b/0x6b0
[   92.012447][ T6491] veth0_vlan: entered promiscuous mode
[   92.014970][ T6631]  __sock_sendmsg+0x145/0x180
[   92.015004][ T6631]  __sys_sendto+0x268/0x330
[   92.015041][ T6631]  __x64_sys_sendto+0x76/0x90
[   92.015075][ T6631]  x64_sys_call+0x2d14/0x3000
[   92.015110][ T6631]  do_syscall_64+0xd2/0x200
[   92.024196][ T6491] veth1_vlan: entered promiscuous mode
[   92.025233][ T6631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.025261][ T6631] 
[   92.025268][ T6631] read to 0xffff8881034e4388 of 8 bytes by task 6631 on cpu 0:
[   92.025286][ T6631]  rtc_dev_poll+0x78/0xb0
[   92.025317][ T6631]  io_poll_task_func+0x17b/0x7c0
[   92.045481][ T6491] veth0_macvtap: entered promiscuous mode
[   92.049111][ T6631]  io_handle_tw_list+0xcc/0x1c0
[   92.049145][ T6631]  tctx_task_work_run+0x6d/0x1a0
[   92.049181][ T6631]  tctx_task_work+0x3f/0x80
[   92.057198][ T6491] veth1_macvtap: entered promiscuous mode
[   92.057423][ T6631]  task_work_run+0x131/0x1a0
[   92.071694][ T6491] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.074243][ T6631]  get_signal+0xe12/0xf70
[   92.074273][ T6631]  arch_do_signal_or_restart+0x96/0x440
[   92.074300][ T6631]  exit_to_user_mode_loop+0x77/0x110
[   92.085979][ T6491] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.089783][ T6631]  do_syscall_64+0x1d6/0x200
[   92.089815][ T6631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.089843][ T6631] 
[   92.089848][ T6631] value changed: 0x000000000000bfc0 -> 0x000000000000c0c0
[   92.089862][ T6631] 
[   92.089867][ T6631] Reported by Kernel Concurrency Sanitizer on:
[   92.098871][ T4321] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.100085][ T6631] CPU: 0 UID: 0 PID: 6631 Comm: syz.3.1120 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   92.100127][ T6631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   92.100144][ T6631] ==================================================================
[   92.132323][ T4353] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:23: Failed to release dquot type 0
[   92.167292][ T4321] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.223015][ T4321] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.224974][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.231885][ T4321] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.271266][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!