last executing test programs:

2.754104029s ago: executing program 4 (id=469):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=<r3=>r1, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r2}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r5 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r4, &(0x7f0000000400)={&(0x7f00000008c0)=@id={0x1e, 0x3, 0x0, {0x4e21}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES16=r3, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r6, 0x0, 0x200000000000006}, 0x18)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r7, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r7, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000c40)="5c5eafd3ae55a73702d6befaee97f47f4be65587e1fca708cee084691e4587d887a5eaab43ac5edc4886496910cd7a153cd84b93208c7b1a625b3ea990092389b19dab4f61e30ee60a4d7e51ffc9a5accbe20844356dd0ce192542d5e58d80657b3b5fb7a3d39337df9305959f", 0x6d}, {&(0x7f0000000800)="104b0b7073fbd7f77a847bdbfdf6da474f700bf113b18d16d8380f42e296b49f1326c7d0d97be798e205654b8a885df6ee57ec7b690491c55ca484b54170549c7a72b8a579005ffcb0b309dae34571b17126534a763ca881f12d750072abc05a7cb8f0e32fc3ec3ed14c3322630ae8e710fb68299cbb5accee8813185c77248ddec7b5688599f1bfccbec448bc6ce5c139c2095da22c9d7edf7bfa1392c76ab0dddf4db130420df295ea16aa3e841d50dc813025315eea3990c2de68e835c4fec57e2dd70f47b58472c2f915de1a58a32d021d9a", 0xd4}, {&(0x7f0000000cc0)="91ebffffff7f7d8625547e6fdcfb96c1d9b461ad7581ce705ad7203fb9e00e70512c27e5d5980dbbdb9d8dd381060e0f5bd279f6b8d9109f8e5b1ad6402331e7e4ba5a0300ee40f4ed347c7997c0c822b355f310b659f42003566ffc26878858a5f20373da0b75bed8465da60f840979b6b18d0cbeb297ce3e1e34d46e9e28b416e60e9f9dceb059bd608a506d563315b1a9c536f6ca7ec68acd35c32cdace2471dce1452c62550a9bf975bb6adf889077c111c77030761c0f5d6baccf58dd38bdc0889b55669170d96224c8fd12762ad7f2a635040cde08fb0cdfb05e646af483", 0xe1}], 0x3}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000001800)="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", 0x248}], 0x1}}], 0x2, 0x0)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r7, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2.68196236s ago: executing program 4 (id=472):
socket$kcm(0x29, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x2, [@typedef={0xa, 0x0, 0x0, 0x8, 0x5}, @union={0xd, 0x4, 0x0, 0x5, 0x0, 0x7ffffffc, [{0x7, 0x1}, {0x2, 0x5, 0xfecf}, {0xe, 0x4, 0x1}, {0xd, 0x4, 0xf}]}]}}, 0x0, 0x62, 0x0, 0x1, 0x0, 0x10000}, 0x28)
r0 = gettid()
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x5, @none, 0x0, 0x2}, 0xe)
listen(r1, 0xa1)
accept4$bt_l2cap(r1, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$inet6(0xa, 0x3, 0x5)
socket$l2tp6(0xa, 0x2, 0x73)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305829, &(0x7f0000000540)={0x1100, 0x8f, 0x8004f, 0x10000})
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000a00)={0xfdc}, 0x8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000380)={0x1d, r3, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r2, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="1f", 0x206c}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xa, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
sendto$inet6(r2, 0x0, 0x0, 0x4004080, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4c00000002c5a5ad0930045132417f4db6a8b52e060102000000000000000000000000120003016269746d61703a69702c6d616300000005000400000000000900020073797a310000009e2720a7"], 0x4c}}, 0x0)

1.888056462s ago: executing program 1 (id=483):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
keyctl$set_reqkey_keyring(0xe, 0x3)
request_key(0x0, &(0x7f0000000380)={'syz', 0x3}, &(0x7f00000003c0)=')\x00', 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYRES16=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000700)={'ip6tnl0\x00', &(0x7f00000005c0)={'ip6tnl0\x00', <r5=>0x0, 0x29, 0x1, 0x3, 0x5, 0x2, @mcast2, @remote, 0x10, 0x700, 0xcd, 0x400}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000740)={'ip_vti0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000780)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="70010000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fddbdf250d0000001800018014000200766c616e3100000000000000000000004c0001", @ANYRES32=0x0, @ANYBLOB="08000300000000001400020076657468315f766c616e00000000000014000200626f6e645f736c6176655f3100000000080003000500000008000100", @ANYRES32=0x0, @ANYBLOB="5400018014000200766c616e310000000000000000000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468305f746f5f7465616d0000000800030003000000180001801400020076657468315f746f5f626f6e640000002000018014000200626f6e6430000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="0402000000000000000001000140b751dfbb6b81f4e30da8daf8e084bf5c163d74024258f200c8ba7b543fb66ae4cc85f2ddbcab62abeaf1b18986d0adb48cb2be92b48f82426a860a4c1ab775e733c22c1716d207ef43aa7ea5da9ca09edbaee0e1f7ac4be02eab55726b5e7693b7d94e00e024416ff94093ba1e738526126f5e42ecccd864147ffa70214301a30964e38a15b33a31a5888510b97ecd4bb3aadce17db52581c7fd50c66313b9a9da3144baae02dce002f5955fdd829f55b642c0315977bd15f7", @ANYRES32=0x0, @ANYBLOB="3c0001801400020076657468305f746f5f626f6e6400000008000100", @ANYRES32=r5, @ANYBLOB="14000200626f6e645f736c6176655f300000000008000300020000002000018008000100", @ANYRES32=r6, @ANYBLOB="14000200726f73653000"/20], 0x170}, 0x1, 0x0, 0x0, 0x80}, 0x8010)
creat(&(0x7f0000000080)='./file0\x00', 0xa)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r7, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff"], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000840)=ANY=[])
fcntl$lock(r4, 0x26, &(0x7f0000000380)={0x1})
finit_module(r4, &(0x7f0000000140)='GPL\x00', 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
getpeername$l2tp(0xffffffffffffffff, &(0x7f0000000680)={0x2, 0x0, @remote}, &(0x7f00000006c0)=0x10)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000201010100000000000000000a000000000304001980"], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x10)
add_key(&(0x7f0000000180)='asymmetric\x00', 0x0, &(0x7f0000000800)="3080", 0x2, 0xffffffffffffffff)
r9 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r9, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r9, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)

1.769237894s ago: executing program 4 (id=486):
r0 = socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
recvmmsg(r0, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x46, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.729727765s ago: executing program 1 (id=487):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0xc0428c00}, 0xc, &(0x7f0000000800)={&(0x7f0000000700)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="10faffffff00fedbdf2501000000050003003a00000004000500"], 0x20}, 0x1, 0x0, 0x0, 0x20000084}, 0x40000)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffff7ffffe9}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYBLOB="f8c221d4b1a8fe5af7aa6b671042b700d895a6ed86fc", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000800000000000000000"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r4}, 0x10)
r5 = socket(0x1d, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'gretap0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x58, 0x24, 0xf0b, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_QUANTUM={0x8, 0x6, 0x400}]}}, @qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x0, 0x2}}}]}, 0x58}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1c0062f7899b86aacf420e2a4494c869", @ANYRES16=r3, @ANYBLOB="796100000000000000007e00000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x4000054)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1fffff5ffffffffff0f0000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kfree\x00', r8, 0x0, 0x101}, 0x18)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000005c0)="1400000010003507d25a806f8c6394f95dc7d8aae52750ff09ab6baa2a2da9d375959e15084dbb3f8a1e3ac31f73", 0x2e}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='a.*:* '], 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff7ffe}, 0x94)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='sys_enter\x00', r10}, 0x18)
capget(0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.561314327s ago: executing program 1 (id=490):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
syz_mount_image$iso9660(&(0x7f00000004c0), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000180)={[{@map_acorn}, {@uid}, {@hide}, {@block={'block', 0x3d, 0x200}}, {@session={'session', 0x3d, 0x41}}, {@map_acorn}, {@map_normal}, {@overriderock}, {@nojoliet}, {@map_off}, {@overriderock}, {@iocharset={'iocharset', 0x3d, 'default'}}]}, 0x2, 0xa1a, &(0x7f0000001880)="$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")

1.560868817s ago: executing program 1 (id=491):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r0}, 0x18)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)

1.462749449s ago: executing program 2 (id=494):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100"], 0x50)
r1 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r3, 0x0, 0x7fffffffffffffff}, 0x18)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000240)=ANY=[@ANYRES64=r0])

1.396471109s ago: executing program 3 (id=497):
socket$nl_route(0x10, 0x3, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
get_mempolicy(0x0, &(0x7f0000000040), 0x1ff, &(0x7f0000400000/0xc00000)=nil, 0x2)
getpid()
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x6, [@int={0x0, 0x0, 0x0, 0x1, 0x0, 0x74, 0x0, 0x5d, 0x2}, @volatile={0x5}, @int={0x0, 0x0, 0x0, 0x1, 0x0, 0x7f, 0x0, 0x6b, 0x1}, @func={0x10, 0x0, 0x0, 0xc, 0x2}, @ptr={0x2, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x61, 0x30, 0x2e, 0x2e]}}, &(0x7f0000000b00)=""/4096, 0x62, 0x1000, 0x1, 0x3}, 0x28)
r2 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
get_mempolicy(&(0x7f0000000000), 0x0, 0x1, &(0x7f0000ffc000/0x1000)=nil, 0x2)
socket(0x18, 0x4, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@bloom_filter={0x1e, 0x100, 0x5, 0x7b9a2eda, 0xa200, r0, 0xc, '\x00', 0x0, r1, 0x4, 0x4, 0x5, 0x2, @value=r2}, 0x50)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x19, 0x0, 0x5a)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000009c0)=ANY=[@ANYRESDEC, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r5, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
bind$inet6(r5, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(r5, 0x29, 0x4, &(0x7f0000000040)=0xffffff02, 0x4)
sendto$inet6(r5, 0x0, 0x0, 0xfffffeffffff7fbf, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000cc0)=ANY=[@ANYBLOB='overriderockperm,uid=', @ANYRESHEX=0x0, @ANYBLOB=',nocompress,block=0x0000000000000200,gid=', @ANYRESHEX=0x0, @ANYRESHEX=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c73657373696f6e3d3078303030303030303030303030303032372c646d6f64653d3078303030303030303030303030303030322c007b9d9fa07db07ff91a4ec3ed7af45bc8ad77cebf0584a901727a0b880366c18b81894aeec96633dad6a1283fc29ab5172b322748a5ead27417bab8c63ea215bb64f9acdfcbdc46ad22b8d5edcc819cd6c64b5ec7f59acab570bcf60bc92fe33e413c6373a58ff805fdd594fa08641b9d8317315b43e48398158f2d1a0bf0ee478dfaee88fbfeb1a434ad95a1d6956bf738abdf20a5e0f24c2ab7359deba7fa104a80741a609744bebda1ff62a3eb3bb23c653fd84550b7be55e6131bb0afd88e6824b443"], 0x2, 0xa28, &(0x7f0000000180)="$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")
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r7, &(0x7f0000000b00)={0xa, 0xfdfe, 0x100007, @remote, 0xa}, 0x1c)
connect$pppl2tp(r6, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r7, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @empty}}}, 0x32)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
writev(r6, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

1.34289351s ago: executing program 0 (id=498):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000b40)=@delchain={0x3c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0, 0xffe0}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xffffffffffffff7e}, {0xc, 0x2, [@TCA_FLOWER_KEY_IPV4_DST={0x8, 0xc, @multicast2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x80)

1.33417773s ago: executing program 2 (id=499):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r2)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0}], 0x2, &(0x7f00000000c0), 0x0, 0x2400e044}, 0x0)

1.265493341s ago: executing program 0 (id=500):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x18)
poll(0x0, 0x0, 0x6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r4, &(0x7f0000000480), &(0x7f0000000340)=@udp6=r0}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r5, r2, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f0000000bc0)={@local, @empty, @val={@void, {0x8100, 0x4, 0x0, 0x202}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x29, 0x0, @remote, @local}, {0x0, 0x4e22, 0x8}}}}}, 0x0)

1.222953432s ago: executing program 0 (id=501):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x10, &(0x7f00000001c0)=0xffe, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000300000a20000000000a05000000000000000000070000000900010073797a300000000044000000090a010400000000000000000700ffff08000a40000000030900020073797a31000000000900010073797a3000000000080005400000002106000d40931000005c0000000c0a01020000000000000000070000000900020073797a31000000000900010073797a3000000000300003802c0000800400018024000b80100001800c000100636f756e7465720010000180090001006c6173740000000014000000101801"], 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x0)
recvmmsg(r0, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x46, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000100)=0x1e7b, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
io_setup(0xb, &(0x7f0000000240)=<r2=>0x0)
io_getevents(r2, 0x2e08, 0x3, &(0x7f0000000000)=[{}, {}, {}], 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x59, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = io_uring_setup(0xf08, &(0x7f000000c480)={0x0, 0xfbf6, 0x400, 0x0, 0x349})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f0000000540)=[{0x0}], 0x1)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = io_uring_setup(0x7625, &(0x7f0000000600)={0x0, 0x1e28, 0x40, 0x0, 0x89, 0x0, r4})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00'})
getrlimit(0x1, &(0x7f0000000000)) (fail_nth: 1)
io_uring_register$IORING_REGISTER_FILES(r6, 0x1e, &(0x7f0000000000)=[r4], 0x1)

1.173463333s ago: executing program 1 (id=502):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
ioctl$TCFLSH(r1, 0x80047437, 0x10000000000006)
r2 = syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0xd736, 0x8, 0x0, 0x3d9}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r7, 0x400c330d, &(0x7f0000000300)={0x401, 0xea7})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), 0xffffffffffffffff)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0), 0x208e24b)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1.156470293s ago: executing program 3 (id=503):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
syz_mount_image$iso9660(&(0x7f00000004c0), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000180)={[{@map_acorn}, {@uid}, {@hide}, {@block={'block', 0x3d, 0x200}}, {@session={'session', 0x3d, 0x41}}, {@map_acorn}, {@map_normal}, {@overriderock}, {@nojoliet}, {@map_off}, {@overriderock}, {@iocharset={'iocharset', 0x3d, 'default'}}]}, 0x2, 0xa1a, &(0x7f0000001880)="$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")

1.038385015s ago: executing program 3 (id=504):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='kfree\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x8}, 0xffffffffffffff39)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCFLSH(r1, 0x80047437, 0x10000000000006)
r2 = syz_io_uring_setup(0x10b, 0x0, &(0x7f00000003c0)=<r3=>0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r5, 0x400c330d, &(0x7f0000000300)={0x401, 0xea7})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r6)
write$binfmt_script(r6, &(0x7f00000004c0), 0x208e24b)

916.934527ms ago: executing program 4 (id=505):
r0 = syz_io_uring_setup(0x83d, &(0x7f0000000180)={0x0, 0xfc17, 0x80, 0x3, 0x3cf}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffffff, 0x1400, 0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="9f29a91db130eb010018000200000002000000000000000000180400000000004c0002f4d1a9915f446a5d9e8f82ad9274f1f232"], 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r4, 0x20, &(0x7f0000000100)={0x0, 0x0, <r5=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x1b, 0xf, &(0x7f0000000500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x9, 0x0, 0x0, 0x41000, 0x21, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r5, r3, 0x0, 0x0, 0x0, 0x10, 0x80000001}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095", @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r0, 0x3516, 0x8000000, 0x0, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
fcntl$setlease(r8, 0x400, 0x1)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x10)
writev(r6, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0xf}], 0x1)

795.993608ms ago: executing program 0 (id=506):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x121800, 0x0)
fchmod(r0, 0x12)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r2}}, 0x48)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
prctl$PR_GET_PDEATHSIG(0x2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000440)={[{@delalloc}, {}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@prjquota}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@noblock_validity}, {@debug_want_extra_isize}, {@user_xattr}, {@bh}, {@dioread_nolock}], [{@fowner_eq}, {@euid_lt}, {@measure}, {@euid_eq}]}, 0x1, 0x567, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
pipe(&(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = gettid()
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
tkill(r5, 0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000900)=ANY=[@ANYRESHEX=0x0, @ANYRES64=r4], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

681.69101ms ago: executing program 3 (id=507):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x18)
poll(0x0, 0x0, 0x6)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r4, r1, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f0000000bc0)={@local, @empty, @val={@void, {0x8100, 0x4, 0x0, 0x202}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x29, 0x0, @remote, @local}, {0x0, 0x4e22, 0x8}}}}}, 0x0)

676.7191ms ago: executing program 0 (id=508):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xda, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume', 0x149a82, 0x99)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x34102b03}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYBLOB="b5"], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f0000fffffffffffffff000000000"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x3)
r3 = getegid()
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000d00)=ANY=[@ANYRESDEC, @ANYRES8, @ANYBLOB="feb6ef", @ANYRES64, @ANYRESOCT, @ANYRES16, @ANYRES16, @ANYBLOB="0ffe0500", @ANYRES64, @ANYBLOB="02000000", @ANYRES8, @ANYBLOB="02000300", @ANYRES64, @ANYRES32=0xee00, @ANYRES8, @ANYRES8, @ANYRES32, @ANYRESOCT, @ANYBLOB='\b\x00', @ANYRES32, @ANYBLOB="08000300", @ANYRES8, @ANYBLOB="08000400", @ANYRES32=r3, @ANYBLOB="10000400000000002000000000000000"], 0x94, 0x1)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xa}, 0x1184c, 0x9, 0x1, 0x4, 0x7e, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
creat(&(0x7f0000000600)='./file0\x00', 0x11c)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xa8, 0xf0, 0x0, {}, [@common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x8000, 'syz0\x00', {0x481c}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x528)
stat(&(0x7f0000001c40)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x15)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00'}, 0x10)
setregid(0x0, 0x0)

601.766491ms ago: executing program 3 (id=509):
unshare(0x66000080)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=ANY=[@ANYBLOB="20000000690003050000000000000000000000000000000008000100020000005dbed2d84f373f5283d98367a1384b35251b7f0b3f35a8b6975a202c3b1f0b3309536a0d8bf674e9477ede81a05dfd2bc2b2b1f5755625cef0295ef92a131b06baefb9a51a65b5edf62278e2c0df90ef39483138fe1ed05e2b287a16d9a38fec1adce6975d181bdd96623a80f1116242964a4d3068712f6eb534e4a0f25e608d8148e2efaed45d01761bd37384d5026935042e941b1efba2b1443f16e83771f9fa01f7bd5b422765389506175bf06d6f3c81283e"], 0x20}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
unshare(0x20000600)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4}, 0x10)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r5, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0) (fail_nth: 1)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x4)
openat(r6, 0x0, 0x40000, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f00000001c0)="1f", 0x1, 0xfecc)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00'}, 0x18)
syz_clone3(&(0x7f0000000600)={0x4040680, 0x0, 0x0, 0x0, {0x20}, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[0x0], 0x1}, 0x58)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7, {0x8}}, './file0\x00'})

484.124533ms ago: executing program 0 (id=510):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='kfree\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x8}, 0xffffffffffffff39)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$eJzs3c9vI1cdAPDvOL+cNG3S0gMgoEspLGi1TuJto6oHWE4IoUqIHkHahsQbRbHjKHZKE/aQ/g9IVOIER/4Azj1x54LgxmU5IPEjAm1W4mA040nWm7U3ZpPYUfz5SKN5b2bs73trzXv21xu/AEbWjYg4iIjJiPgwIuby40m+xd32ll736PDB6tHhg9UkWq0P/plk59Nj0fGY1Ev5cxYj4kffi/hp8mzcxt7+5kq1WtlpV6cXmrXthcbe/u2N2sp6Zb2yVS4vLy0vvnvnnfKF9fWN2mRe+vLDPxx86+dps2bzI539uEjtrk+cxEmNR8QPLiPYEIzl/ZkcdkN4IYWIeC0i3szu/7kYy15NAOA6a7XmojXXWQcArrtClgNLCqU8FzAbhUKp1M7hvR4zhWq90bx1v767tdbOlc3HROH+RrWymOcK52MiSetLWflJvXyqficiXo2IX0xNZ/XSar26Nsw3PgAwwl46Nf//Z6o9/wMA11xx2A0AAAbO/A8Ao8f8DwCjx/wPAKPnyfx/d6jtAAAGx+d/ABg95n8AGCk/fP/9dGsd5b9/vfbR3u5m/aPba5XGZqm2u1pare9sl9br9fXsN3tqZz1ftV7fXno7dj+e//Z2o7nQ2Nu/V6vvbjXvZb/rfa8yMZBeAQDP8+obn/05iYiD96azLTrWcjBXw/VWGHYDgKEZG3YDgKGx2heMrnN8xpcegGuiyxK9TylGxPTpg61Wq3V5TQIu2c0vyP/DqOrI//tfwDBi5P9hdMn/w+hqtZJ+1/yPfi8EAK42OX6gx/f/r+X73+ZfDvxk7fQVn15mqwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBqO17/t5SvBT4bhUKpFPFyRMzHRHJ/o1pZjIhXIuJPUxNTaX1pyG0GAM6r8LckX//r5txbs6fPTiaPp7J9RPzsVx/88uOVZnPnj+nxf50cb36aHy8Po/0AwFmO5+ls3/FB/tHhg9XjbZDt+ft3I6LYjn90OBlHJ/HHYzzbF2MiImb+neT1tqQjd3EeB59ExOe79T+J2SwH0l759HT8NPbLA41feCp+ITvX3qf/Fp+7gLbAqPksHX/udrv/CnEj23e//4vZCHV++fiXPtXqUTYGPol/PP6N9Rj/bvQb4+3ff79dmn723CcRXxyPOI591DH+HMdPesR/q8/4f/nSV97sda7164ib0T1+Z6yFZm17obG3f3ujtrJeWa9slcvLS8uL7955p7yQ5agXes8G/3jv1itZocslaf9nesQvntH/r/fZ/9/898Mff7XHuTT+N7/WLX4hXn9O/HRO/Eaf8VdmflfsdS6Nv9aj/2e9/rf6jP/wr/vPLBsOAAxPY29/c6VarewMsnD8RmKgQRX6K0zlL85Vac9ThSvbsM2V6ncGFWsy/q9HtVovFKvXiHERWTfgKji56SPi8bAbAwAAAAAAAAAAAAAAdHWpf6iUtAvD7iMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADX1/8CAAD//8jOyzo=")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCFLSH(r1, 0x80047437, 0x10000000000006)
r2 = syz_io_uring_setup(0x10b, 0x0, &(0x7f00000003c0)=<r3=>0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r4, 0x400c330d, &(0x7f0000000300)={0x401, 0xea7})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r5)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)

342.771985ms ago: executing program 2 (id=511):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x18)
poll(0x0, 0x0, 0x6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r4, &(0x7f0000000480), &(0x7f0000000340)=@udp6=r0}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r5, r2, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f0000000bc0)={@local, @empty, @val={@void, {0x8100, 0x4, 0x0, 0x202}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x29, 0x0, @remote, @local}, {0x0, 0x4e22, 0x8}}}}}, 0x0)

312.539516ms ago: executing program 4 (id=512):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
sendfile(r0, r0, 0x0, 0x800000009)

264.335386ms ago: executing program 2 (id=513):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000000280)=""/52, 0x34}, {&(0x7f0000004700)=""/4096, 0x1000}], 0x3)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}], &(0x7f0000000200), 0x1}, 0x20)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x80800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xd, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r3}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r5, &(0x7f00000001c0), &(0x7f0000000400)=""/198}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32=r0, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x26, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00', r6}, 0x10)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "00009200000000000000000000000058b200"})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r7, &(0x7f0000000040))
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r8, 0xffffffffffffffff, 0x0)

230.392627ms ago: executing program 3 (id=514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
keyctl$set_reqkey_keyring(0xe, 0x3)
request_key(0x0, &(0x7f0000000380)={'syz', 0x3}, &(0x7f00000003c0)=')\x00', 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYRES16=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000700)={'ip6tnl0\x00', &(0x7f00000005c0)={'ip6tnl0\x00', <r5=>0x0, 0x29, 0x1, 0x3, 0x5, 0x2, @mcast2, @remote, 0x10, 0x700, 0xcd, 0x400}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000740)={'ip_vti0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000780)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="70010000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fddbdf250d0000001800018014000200766c616e3100000000000000000000004c0001", @ANYRES32=0x0, @ANYBLOB="08000300000000001400020076657468315f766c616e00000000000014000200626f6e645f736c6176655f3100000000080003000500000008000100", @ANYRES32=0x0, @ANYBLOB="5400018014000200766c616e310000000000000000000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468305f746f5f7465616d0000000800030003000000180001801400020076657468315f746f5f626f6e640000002000018014000200626f6e6430000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="0402000000000000000001000140b751dfbb6b81f4e30da8daf8e084bf5c163d74024258f200c8ba7b543fb66ae4cc85f2ddbcab62abeaf1b18986d0adb48cb2be92b48f82426a860a4c1ab775e733c22c1716d207ef43aa7ea5da9ca09edbaee0e1f7ac4be02eab55726b5e7693b7d94e00e024416ff94093ba1e738526126f5e42ecccd864147ffa70214301a30964e38a15b33a31a5888510b97ecd4bb3aadce17db52581c7fd50c66313b9a9da3144baae02dce002f5955fdd829f55b642c0315977bd15f7", @ANYRES32=0x0, @ANYBLOB="3c0001801400020076657468305f746f5f626f6e6400000008000100", @ANYRES32=r5, @ANYBLOB="14000200626f6e645f736c6176655f300000000008000300020000002000018008000100", @ANYRES32=r6, @ANYBLOB="14000200726f73653000"/20], 0x170}, 0x1, 0x0, 0x0, 0x80}, 0x8010)
creat(&(0x7f0000000080)='./file0\x00', 0xa)
pipe2$9p(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff"], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB="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", @ANYRESHEX=r8])
fcntl$lock(r4, 0x26, &(0x7f0000000380)={0x1})
finit_module(r4, &(0x7f0000000140)='GPL\x00', 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r9 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
getpeername$l2tp(0xffffffffffffffff, &(0x7f0000000680)={0x2, 0x0, @remote}, &(0x7f00000006c0)=0x10)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000201010100000000000000000a000000000304001980"], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x10)
add_key(&(0x7f0000000180)='asymmetric\x00', 0x0, &(0x7f0000000800)="3080", 0x2, 0xffffffffffffffff)
r10 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r10, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r10, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)

229.545297ms ago: executing program 2 (id=515):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x18)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x802, 0x0)
write(r3, 0x0, 0x0) (async)
write(r3, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000c80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r5}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x4, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x4f}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0xee01, 0x0)
writev(r2, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a001700000000040037000900030001632564b758b9a64411f6bb744dc48f57", 0x39}], 0x1) (async)
writev(r2, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a001700000000040037000900030001632564b758b9a64411f6bb744dc48f57", 0x39}], 0x1)

191.570117ms ago: executing program 1 (id=516):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x121800, 0x0)
fchmod(r0, 0x12)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r2}}, 0x48)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
prctl$PR_GET_PDEATHSIG(0x2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000440)={[{@delalloc}, {}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@prjquota}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@noblock_validity}, {@debug_want_extra_isize}, {@user_xattr}, {@bh}, {@dioread_nolock}], [{@fowner_eq}, {@euid_lt}, {@measure}, {@euid_eq}]}, 0x1, 0x567, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
pipe(&(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = gettid()
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
tkill(r5, 0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000900)=ANY=[@ANYRESHEX=0x0, @ANYRES64=r4], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[], 0x78}, 0x1, 0x7}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

66.199709ms ago: executing program 4 (id=517):
socket$kcm(0x29, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x2, [@typedef={0xa, 0x0, 0x0, 0x8, 0x5}, @union={0xd, 0x4, 0x0, 0x5, 0x0, 0x7ffffffc, [{0x7, 0x1}, {0x2, 0x5, 0xfecf}, {0xe, 0x4, 0x1}, {0xd, 0x4, 0xf}]}]}}, 0x0, 0x62, 0x0, 0x1, 0x0, 0x10000}, 0x28)
r0 = gettid()
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x5, @none, 0x0, 0x2}, 0xe)
listen(r1, 0xa1)
accept4$bt_l2cap(r1, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$inet6(0xa, 0x3, 0x5)
socket$l2tp6(0xa, 0x2, 0x73)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305829, &(0x7f0000000540)={0x1100, 0x8f, 0x8004f, 0x10000})
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000a00)={0xfdc}, 0x8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000380)={0x1d, r3, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r2, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="1f", 0x206c}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xa, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
sendto$inet6(r2, 0x0, 0x0, 0x4004080, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4c00000002c5a5ad0930045132417f4db6a8b52e060102000000000000000000000000120003016269746d61703a69702c6d616300000005000400000000000900020073797a310000009e2720a7"], 0x4c}}, 0x0)

0s ago: executing program 2 (id=518):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='kfree\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x8}, 0xffffffffffffff39)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCFLSH(r1, 0x80047437, 0x10000000000006)
r2 = syz_io_uring_setup(0x10b, 0x0, &(0x7f00000003c0)=<r3=>0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r5, 0x400c330d, &(0x7f0000000300)={0x401, 0xea7})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r6)
write$binfmt_script(r6, &(0x7f00000004c0), 0x208e24b)

kernel console output (not intermixed with test programs):


[   24.263084][ T3316] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.270244][ T3316] bridge_slave_0: entered allmulticast mode
[   24.276692][ T3316] bridge_slave_0: entered promiscuous mode
[   24.296095][ T3303] team0: Port device team_slave_1 added
[   24.308304][ T3316] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.315490][ T3316] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.322889][ T3316] bridge_slave_1: entered allmulticast mode
[   24.329389][ T3316] bridge_slave_1: entered promiscuous mode
[   24.335788][ T3302] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.342821][ T3302] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.368840][ T3302] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.380017][ T3302] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.387048][ T3302] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.413052][ T3302] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.423888][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.431139][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.438251][ T3315] bridge_slave_0: entered allmulticast mode
[   24.444581][ T3315] bridge_slave_0: entered promiscuous mode
[   24.451221][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.458314][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.465438][ T3315] bridge_slave_1: entered allmulticast mode
[   24.471775][ T3315] bridge_slave_1: entered promiscuous mode
[   24.510327][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.517472][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.524670][ T3306] bridge_slave_0: entered allmulticast mode
[   24.531574][ T3306] bridge_slave_0: entered promiscuous mode
[   24.538892][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.549607][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.560196][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.569500][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.576509][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.602448][ T3303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.613244][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.620296][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.627444][ T3306] bridge_slave_1: entered allmulticast mode
[   24.633884][ T3306] bridge_slave_1: entered promiscuous mode
[   24.649976][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.662997][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.669971][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.695882][ T3303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.725273][ T3315] team0: Port device team_slave_0 added
[   24.736210][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.746024][ T3316] team0: Port device team_slave_0 added
[   24.753160][ T3315] team0: Port device team_slave_1 added
[   24.761062][ T3302] hsr_slave_0: entered promiscuous mode
[   24.766930][ T3302] hsr_slave_1: entered promiscuous mode
[   24.773525][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.783599][ T3316] team0: Port device team_slave_1 added
[   24.815855][ T3306] team0: Port device team_slave_0 added
[   24.827473][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.834454][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.860648][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.888347][ T3303] hsr_slave_0: entered promiscuous mode
[   24.894407][ T3303] hsr_slave_1: entered promiscuous mode
[   24.900179][ T3303] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   24.907767][ T3303] Cannot create hsr debugfs directory
[   24.914004][ T3306] team0: Port device team_slave_1 added
[   24.920099][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.927078][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.953340][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.964539][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.971583][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.997519][ T3316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   25.020121][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_1
[   25.027185][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   25.053193][ T3316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   25.071533][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   25.078499][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   25.104476][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   25.115945][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   25.123045][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   25.149225][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   25.196974][ T3306] hsr_slave_0: entered promiscuous mode
[   25.203306][ T3306] hsr_slave_1: entered promiscuous mode
[   25.209120][ T3306] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   25.216725][ T3306] Cannot create hsr debugfs directory
[   25.247128][ T3316] hsr_slave_0: entered promiscuous mode
[   25.253072][ T3316] hsr_slave_1: entered promiscuous mode
[   25.258779][ T3316] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   25.266406][ T3316] Cannot create hsr debugfs directory
[   25.274086][ T3315] hsr_slave_0: entered promiscuous mode
[   25.280099][ T3315] hsr_slave_1: entered promiscuous mode
[   25.285981][ T3315] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   25.293564][ T3315] Cannot create hsr debugfs directory
[   25.435787][ T3302] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   25.450567][ T3302] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   25.461017][ T3302] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   25.473867][ T3302] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   25.493884][ T3303] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   25.502940][ T3303] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   25.511390][ T3303] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   25.524467][ T3303] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   25.556984][ T3306] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   25.565664][ T3306] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   25.574732][ T3306] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   25.583882][ T3306] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   25.611255][ T3315] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   25.620291][ T3315] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   25.629780][ T3315] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   25.638300][ T3315] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   25.667526][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.681455][ T3302] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.707976][ T3302] 8021q: adding VLAN 0 to HW filter on device team0
[   25.716634][ T3316] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   25.724954][ T3316] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   25.733592][ T3316] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   25.742448][ T3316] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   25.754472][ T3303] 8021q: adding VLAN 0 to HW filter on device team0
[   25.767531][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.774647][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.791724][  T139] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.798832][  T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.807637][  T139] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.814690][  T139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.823367][  T139] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.830450][  T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.850133][ T3302] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.860702][ T3302] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.913755][ T3303] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.932482][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.942162][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.967257][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   25.975176][ T3315] 8021q: adding VLAN 0 to HW filter on device team0
[   25.986858][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.993976][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   26.006622][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.013782][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   26.029801][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.036855][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   26.046521][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.053629][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   26.063164][ T3302] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.079857][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.102280][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.119198][ T3306] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   26.129799][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   26.144072][ T3316] 8021q: adding VLAN 0 to HW filter on device team0
[   26.189996][  T139] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.197213][  T139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   26.221584][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.228735][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   26.258775][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.275066][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.286251][ T3303] veth0_vlan: entered promiscuous mode
[   26.304972][ T3303] veth1_vlan: entered promiscuous mode
[   26.316950][ T3316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   26.327462][ T3316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   26.357425][ T3302] veth0_vlan: entered promiscuous mode
[   26.386817][ T3303] veth0_macvtap: entered promiscuous mode
[   26.398376][ T3303] veth1_macvtap: entered promiscuous mode
[   26.413866][ T3302] veth1_vlan: entered promiscuous mode
[   26.424913][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.448587][ T3306] veth0_vlan: entered promiscuous mode
[   26.457500][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.473849][ T3302] veth0_macvtap: entered promiscuous mode
[   26.484313][ T3303] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.493174][ T3303] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.501935][ T3303] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.510817][ T3303] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.524714][ T3302] veth1_macvtap: entered promiscuous mode
[   26.532719][ T3316] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.549457][ T3306] veth1_vlan: entered promiscuous mode
[   26.569576][ T3302] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.589124][ T3302] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.599982][ T3306] veth0_macvtap: entered promiscuous mode
[   26.608897][ T3303] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   26.621558][ T3306] veth1_macvtap: entered promiscuous mode
[   26.636727][ T3302] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.645580][ T3302] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.654436][ T3302] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.663427][ T3302] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.697543][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.707053][ T3315] veth0_vlan: entered promiscuous mode
[   26.718559][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.739502][ T3315] veth1_vlan: entered promiscuous mode
[   26.746097][ T3475] loop2: detected capacity change from 0 to 512
[   26.764664][ T3306] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.773240][ T3475] journal_path: Lookup failure for './file1/file0'
[   26.773442][ T3306] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.779924][ T3475] EXT4-fs: error: could not find journal device path
[   26.788714][ T3306] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.804080][ T3306] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.850450][ T3316] veth0_vlan: entered promiscuous mode
[   26.867856][ T3316] veth1_vlan: entered promiscuous mode
[   26.879825][ T3315] veth0_macvtap: entered promiscuous mode
[   26.890443][ T3481] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7'.
[   26.893037][ T3315] veth1_macvtap: entered promiscuous mode
[   26.914436][ T3316] veth0_macvtap: entered promiscuous mode
[   26.919356][ T3481] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7'.
[   26.941389][ T3316] veth1_macvtap: entered promiscuous mode
[   26.952332][ T3485] loop2: detected capacity change from 0 to 512
[   26.960320][ T3481] loop1: detected capacity change from 0 to 512
[   26.973647][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.984790][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.988176][ T3481] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal
[   27.005695][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1
[   27.015618][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_1
[   27.029970][ T3485] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   27.030571][ T3315] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   27.051254][ T3315] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   27.054275][ T3485] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   27.059972][ T3315] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   27.078993][ T3315] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   27.099533][ T3316] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   27.108339][ T3316] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   27.117253][ T3316] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   27.125984][ T3316] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   27.144867][ T3487] loop0: detected capacity change from 0 to 1024
[   27.153067][ T3487] =======================================================
[   27.153067][ T3487] WARNING: The mand mount option has been deprecated and
[   27.153067][ T3487]          and is ignored by this kernel. Remove the mand
[   27.153067][ T3487]          option from the mount to silence this warning.
[   27.153067][ T3487] =======================================================
[   27.188985][ T3487] EXT4-fs: Invalid want_extra_isize 0
[   27.277801][   T29] kauditd_printk_skb: 82 callbacks suppressed
[   27.277814][   T29] audit: type=1326 audit(1751598555.721:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.307299][   T29] audit: type=1326 audit(1751598555.721:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.363814][ T3501] loop3: detected capacity change from 0 to 512
[   27.391259][   T29] audit: type=1326 audit(1751598555.721:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.414353][   T29] audit: type=1326 audit(1751598555.721:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.437510][   T29] audit: type=1326 audit(1751598555.721:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.460671][   T29] audit: type=1326 audit(1751598555.721:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.483810][   T29] audit: type=1326 audit(1751598555.721:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.493463][ T3501] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.4: casefold flag without casefold feature
[   27.507099][   T29] audit: type=1326 audit(1751598555.721:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.533508][ T3501] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4: couldn't read orphan inode 15 (err -117)
[   27.542563][   T29] audit: type=1326 audit(1751598555.721:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.559587][ T3509] loop1: detected capacity change from 0 to 512
[   27.577091][   T29] audit: type=1326 audit(1751598555.721:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02133e929 code=0x7ffc0000
[   27.591334][ T3501] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   27.625962][ T3501] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.643367][ T3509] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   27.680723][ T3509] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   27.695630][ T3515] netlink: 44 bytes leftover after parsing attributes in process `syz.4.11'.
[   27.712152][ T3515] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11'.
[   27.758920][ T3515] loop4: detected capacity change from 0 to 512
[   27.785495][ T3523] loop3: detected capacity change from 0 to 2048
[   27.797053][ T3515] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[   27.800279][ T3523] EXT4-fs: Ignoring removed nobh option
[   27.833447][ T3526] loop0: detected capacity change from 0 to 512
[   27.862956][ T3523] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   27.913089][ T3526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   27.943631][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.952778][ T3526] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   28.008524][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.017705][ T3534] loop4: detected capacity change from 0 to 512
[   28.032677][ T3507] syz.1.10 (3507) used greatest stack depth: 10816 bytes left
[   28.061067][ T3534] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   28.103034][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.208907][ T3544] loop2: detected capacity change from 0 to 512
[   28.231798][ T3537] 9pnet_fd: Insufficient options for proto=fd
[   28.312331][ T3547] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14'.
[   28.423796][ T3537] infiniband syz!: set active
[   28.428531][ T3537] infiniband syz!: added team_slave_0
[   28.442389][ T3544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   28.482478][ T3547] hub 6-0:1.0: USB hub found
[   28.489461][ T3544] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   28.512442][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.522404][ T3547] hub 6-0:1.0: 8 ports detected
[   28.559360][ T3537] RDS/IB: syz!: added
[   28.586406][ T3553] loop4: detected capacity change from 0 to 512
[   28.594731][ T3537] smc: adding ib device syz! with port count 1
[   28.609537][ T3537] smc:    ib device syz! port 1 has pnetid 
[   28.671396][ T3553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   28.711905][ T3553] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   28.774094][ T3542] loop1: detected capacity change from 0 to 1764
[   28.787691][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.810029][ T3542] iso9660: Bad value for 'gid'
[   28.814869][ T3542] iso9660: Bad value for 'gid'
[   28.830742][ T3544] syz.2.18 (3544) used greatest stack depth: 10776 bytes left
[   28.851846][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.926878][ T3561] loop2: detected capacity change from 0 to 512
[   28.964080][ T3537] syz.3.14 (3537) used greatest stack depth: 10616 bytes left
[   28.966151][    C0] hrtimer: interrupt took 37438 ns
[   28.979576][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.005661][ T3561] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.21: casefold flag without casefold feature
[   29.040847][ T3561] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.21: couldn't read orphan inode 15 (err -117)
[   29.094065][ T3561] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   29.107626][ T3561] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.113563][ T3570] loop1: detected capacity change from 0 to 2048
[   29.126248][ T3570] EXT4-fs: Ignoring removed nobh option
[   29.137046][ T3574] syz_tun: entered allmulticast mode
[   29.161030][ T3576] netlink: 32 bytes leftover after parsing attributes in process `syz.2.27'.
[   29.173415][ T3576] sch_fq: defrate 0 ignored.
[   29.181661][ T3573] syz_tun: left allmulticast mode
[   29.182480][ T3570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.242061][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.251594][ T3582] 9pnet_fd: Insufficient options for proto=fd
[   29.259019][ T3582] syz!: rxe_newlink: already configured on team_slave_0
[   29.267102][ T3582] netlink: 12 bytes leftover after parsing attributes in process `syz.3.29'.
[   29.268472][ T3584] 9pnet_fd: Insufficient options for proto=fd
[   29.304662][ T3582] hub 6-0:1.0: USB hub found
[   29.311757][ T3584] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   29.314805][ T3582] hub 6-0:1.0: 8 ports detected
[   29.318991][ T3584] netlink: 12 bytes leftover after parsing attributes in process `syz.0.30'.
[   29.374111][ T3584] hub 6-0:1.0: USB hub found
[   29.379942][ T3584] hub 6-0:1.0: 8 ports detected
[   29.440088][ T3592] loop3: detected capacity change from 0 to 512
[   29.477395][ T3596] netlink: 8 bytes leftover after parsing attributes in process `syz.0.35'.
[   29.499321][ T3580] loop2: detected capacity change from 0 to 1764
[   29.506449][ T3580] iso9660: Bad value for 'gid'
[   29.511355][ T3580] iso9660: Bad value for 'gid'
[   29.530468][ T3597] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   29.551594][ T3594] netlink: 32 bytes leftover after parsing attributes in process `syz.1.34'.
[   29.562105][ T3594] sch_fq: defrate 0 ignored.
[   29.583432][ T3592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   29.596142][ T3601] loop1: detected capacity change from 0 to 512
[   29.600403][ T3592] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   29.647168][ T3601] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.785956][ T3612] loop0: detected capacity change from 0 to 2048
[   29.810929][ T3612] EXT4-fs: Ignoring removed nobh option
[   29.822381][ T3612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   29.848436][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.926847][ T3622] loop3: detected capacity change from 0 to 512
[   29.942100][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.959053][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.974158][ T3622] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.001485][ T3622] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.093624][ T3643] 9pnet_fd: Insufficient options for proto=fd
[   30.140064][ T3643] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   30.147591][ T3638] loop1: detected capacity change from 0 to 1024
[   30.184050][ T3651] loop4: detected capacity change from 0 to 512
[   30.196454][ T3643] hub 6-0:1.0: USB hub found
[   30.206556][ T3643] hub 6-0:1.0: 8 ports detected
[   30.213535][ T3638] EXT4-fs: Invalid want_extra_isize 0
[   30.233463][ T3651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.268050][ T3651] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.361390][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.412474][ T3673] FAULT_INJECTION: forcing a failure.
[   30.412474][ T3673] name failslab, interval 1, probability 0, space 0, times 1
[   30.425236][ T3673] CPU: 1 UID: 0 PID: 3673 Comm: syz.3.51 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   30.425260][ T3673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   30.425273][ T3673] Call Trace:
[   30.425279][ T3673]  <TASK>
[   30.425286][ T3673]  __dump_stack+0x1d/0x30
[   30.425307][ T3673]  dump_stack_lvl+0xe8/0x140
[   30.425372][ T3673]  dump_stack+0x15/0x1b
[   30.425385][ T3673]  should_fail_ex+0x265/0x280
[   30.425416][ T3673]  should_failslab+0x8c/0xb0
[   30.425439][ T3673]  __kmalloc_noprof+0xa5/0x3e0
[   30.425488][ T3673]  ? bio_kmalloc+0x41/0x50
[   30.425516][ T3673]  bio_kmalloc+0x41/0x50
[   30.425538][ T3673]  blk_rq_map_user_iov+0x58a/0x14a0
[   30.425555][ T3673]  ? blk_mq_get_tag+0x4f9/0x570
[   30.425576][ T3673]  ? __blk_mq_alloc_requests+0xd86/0xe30
[   30.425665][ T3673]  blk_rq_map_user_io+0x18f/0x260
[   30.425683][ T3673]  ? __rcu_read_unlock+0x4f/0x70
[   30.425704][ T3673]  ? sg_link_reserve+0x117/0x140
[   30.425805][ T3673]  sg_common_write+0xb06/0xc30
[   30.425836][ T3673]  sg_write+0x6b5/0x750
[   30.425874][ T3673]  vfs_writev+0x403/0x8b0
[   30.425895][ T3673]  ? __pfx_sg_write+0x10/0x10
[   30.425987][ T3673]  do_writev+0xe7/0x210
[   30.426009][ T3673]  __x64_sys_writev+0x45/0x50
[   30.426028][ T3673]  x64_sys_call+0x2006/0x2fb0
[   30.426049][ T3673]  do_syscall_64+0xd2/0x200
[   30.426068][ T3673]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   30.426110][ T3673]  ? clear_bhb_loop+0x40/0x90
[   30.426126][ T3673]  ? clear_bhb_loop+0x40/0x90
[   30.426143][ T3673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   30.426227][ T3673] RIP: 0033:0x7f02a42ee929
[   30.426247][ T3673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   30.426263][ T3673] RSP: 002b:00007f02a2957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   30.426285][ T3673] RAX: ffffffffffffffda RBX: 00007f02a4515fa0 RCX: 00007f02a42ee929
[   30.426295][ T3673] RDX: 0000000000000002 RSI: 0000200000000400 RDI: 0000000000000004
[   30.426306][ T3673] RBP: 00007f02a2957090 R08: 0000000000000000 R09: 0000000000000000
[   30.426317][ T3673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   30.426351][ T3673] R13: 0000000000000000 R14: 00007f02a4515fa0 R15: 00007ffddd2122a8
[   30.426369][ T3673]  </TASK>
[   30.698332][ T3675] Zero length message leads to an empty skb
[   30.725451][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.779876][ T3694] 9pnet_fd: Insufficient options for proto=fd
[   30.791434][ T3694] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   30.806063][ T3697] syz_tun: entered allmulticast mode
[   30.812399][ T3695] syz_tun: left allmulticast mode
[   30.837390][ T3694] hub 6-0:1.0: USB hub found
[   30.840454][ T3686] loop2: detected capacity change from 0 to 1024
[   30.857459][ T3694] hub 6-0:1.0: 8 ports detected
[   30.865268][ T3686] EXT4-fs: Invalid want_extra_isize 0
[   30.866028][ T3703] loop4: detected capacity change from 0 to 1024
[   30.912041][ T3703] EXT4-fs: Invalid want_extra_isize 0
[   30.990756][ T3735] loop0: detected capacity change from 0 to 512
[   31.025382][ T3735] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.66: casefold flag without casefold feature
[   31.025651][ T3735] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.66: couldn't read orphan inode 15 (err -117)
[   31.026378][ T3735] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   31.026814][ T3735] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.112168][ T3760] syz_tun: entered allmulticast mode
[   31.165989][ T3762] netlink: 'syz.4.68': attribute type 16 has an invalid length.
[   31.173882][ T3762] netlink: 'syz.4.68': attribute type 17 has an invalid length.
[   31.209949][ T3768] capability: warning: `syz.1.70' uses deprecated v2 capabilities in a way that may be insecure
[   31.221302][ T3762] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   31.251070][ T3756] syz_tun: left allmulticast mode
[   31.338572][ T3776] loop2: detected capacity change from 0 to 1024
[   31.345612][ T3784] 9pnet_fd: Insufficient options for proto=fd
[   31.369806][ T3784] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   31.380854][ T3776] EXT4-fs: Invalid want_extra_isize 0
[   31.387679][ T3791] loop3: detected capacity change from 0 to 1024
[   31.410361][ T3791] EXT4-fs: Ignoring removed oldalloc option
[   31.419168][ T3784] hub 6-0:1.0: USB hub found
[   31.423902][ T3784] hub 6-0:1.0: 8 ports detected
[   31.433569][ T3798] FAULT_INJECTION: forcing a failure.
[   31.433569][ T3798] name failslab, interval 1, probability 0, space 0, times 0
[   31.446343][ T3798] CPU: 1 UID: 0 PID: 3798 Comm: syz.2.79 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   31.446379][ T3798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   31.446391][ T3798] Call Trace:
[   31.446397][ T3798]  <TASK>
[   31.446405][ T3798]  __dump_stack+0x1d/0x30
[   31.446425][ T3798]  dump_stack_lvl+0xe8/0x140
[   31.446475][ T3798]  dump_stack+0x15/0x1b
[   31.446492][ T3798]  should_fail_ex+0x265/0x280
[   31.446557][ T3798]  ? audit_log_d_path+0x8d/0x150
[   31.446658][ T3798]  should_failslab+0x8c/0xb0
[   31.446678][ T3798]  __kmalloc_cache_noprof+0x4c/0x320
[   31.446791][ T3798]  audit_log_d_path+0x8d/0x150
[   31.446817][ T3798]  audit_log_d_path_exe+0x42/0x70
[   31.446861][ T3798]  audit_log_task+0x1e9/0x250
[   31.446888][ T3798]  audit_seccomp+0x61/0x100
[   31.446909][ T3798]  ? __seccomp_filter+0x68c/0x10d0
[   31.446932][ T3798]  __seccomp_filter+0x69d/0x10d0
[   31.447024][ T3798]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   31.447055][ T3798]  ? vfs_write+0x75e/0x8e0
[   31.447085][ T3798]  ? __rcu_read_unlock+0x4f/0x70
[   31.447148][ T3798]  ? __fget_files+0x184/0x1c0
[   31.447245][ T3798]  __secure_computing+0x82/0x150
[   31.447299][ T3798]  syscall_trace_enter+0xcf/0x1e0
[   31.447378][ T3798]  do_syscall_64+0xac/0x200
[   31.447425][ T3798]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   31.447444][ T3798]  ? clear_bhb_loop+0x40/0x90
[   31.447460][ T3798]  ? clear_bhb_loop+0x40/0x90
[   31.447476][ T3798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   31.447492][ T3798] RIP: 0033:0x7f9be0fee929
[   31.447528][ T3798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   31.447542][ T3798] RSP: 002b:00007f9bdf657038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f5
[   31.447557][ T3798] RAX: ffffffffffffffda RBX: 00007f9be1215fa0 RCX: 00007f9be0fee929
[   31.447644][ T3798] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   31.447654][ T3798] RBP: 00007f9bdf657090 R08: 0000000000000000 R09: 0000000000000000
[   31.447666][ T3798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   31.447676][ T3798] R13: 0000000000000000 R14: 00007f9be1215fa0 R15: 00007ffd45165388
[   31.447690][ T3798]  </TASK>
[   31.448134][ T3791] EXT4-fs: Ignoring removed orlov option
[   31.679976][ T3791] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   31.709014][ T3808] bridge_slave_0: left allmulticast mode
[   31.714929][ T3808] bridge_slave_0: left promiscuous mode
[   31.720887][ T3808] bridge0: port 1(bridge_slave_0) entered disabled state
[   31.734813][ T3808] bridge_slave_1: left allmulticast mode
[   31.740556][ T3808] bridge_slave_1: left promiscuous mode
[   31.746297][ T3808] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.755870][ T3791] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   31.769357][ T3808] bond0: (slave bond_slave_0): Releasing backup interface
[   31.773734][ T3791] netlink: 'syz.3.78': attribute type 1 has an invalid length.
[   31.787107][ T3808] bond0: (slave bond_slave_1): Releasing backup interface
[   31.804933][ T3808] team0: Port device team_slave_0 removed
[   31.813928][ T3808] team0: Port device team_slave_1 removed
[   31.820807][ T3808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   31.828551][ T3808] batman_adv: batadv0: Removing interface: batadv_slave_0
[   31.837552][ T3808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   31.846738][ T3808] batman_adv: batadv0: Removing interface: batadv_slave_1
[   31.874393][ T3822] vlan2: entered allmulticast mode
[   31.879593][ T3822] geneve1: entered allmulticast mode
[   31.898393][ T3826] syz_tun: entered allmulticast mode
[   31.904841][ T3825] syz_tun: left allmulticast mode
[   31.905307][ T3808] syz.2.81 (3808) used greatest stack depth: 10232 bytes left
[   31.963171][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.993890][ T3845] loop0: detected capacity change from 0 to 512
[   32.003137][ T3845] journal_path: Lookup failure for './file1/file0'
[   32.009675][ T3845] EXT4-fs: error: could not find journal device path
[   32.018753][ T3852] FAULT_INJECTION: forcing a failure.
[   32.018753][ T3852] name failslab, interval 1, probability 0, space 0, times 0
[   32.031463][ T3852] CPU: 0 UID: 0 PID: 3852 Comm: syz.3.88 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   32.031491][ T3852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   32.031502][ T3852] Call Trace:
[   32.031507][ T3852]  <TASK>
[   32.031513][ T3852]  __dump_stack+0x1d/0x30
[   32.031584][ T3852]  dump_stack_lvl+0xe8/0x140
[   32.031600][ T3852]  dump_stack+0x15/0x1b
[   32.031617][ T3852]  should_fail_ex+0x265/0x280
[   32.031646][ T3852]  ? audit_log_d_path+0x8d/0x150
[   32.031680][ T3852]  should_failslab+0x8c/0xb0
[   32.031702][ T3852]  __kmalloc_cache_noprof+0x4c/0x320
[   32.031731][ T3852]  audit_log_d_path+0x8d/0x150
[   32.031916][ T3852]  audit_log_d_path_exe+0x42/0x70
[   32.031947][ T3852]  audit_log_task+0x1e9/0x250
[   32.031976][ T3852]  audit_seccomp+0x61/0x100
[   32.032014][ T3852]  ? __seccomp_filter+0x68c/0x10d0
[   32.032034][ T3852]  __seccomp_filter+0x69d/0x10d0
[   32.032053][ T3852]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   32.032158][ T3852]  ? vfs_write+0x75e/0x8e0
[   32.032187][ T3852]  ? __rcu_read_unlock+0x4f/0x70
[   32.032232][ T3852]  ? __fget_files+0x184/0x1c0
[   32.032254][ T3852]  __secure_computing+0x82/0x150
[   32.032273][ T3852]  syscall_trace_enter+0xcf/0x1e0
[   32.032292][ T3852]  do_syscall_64+0xac/0x200
[   32.032314][ T3852]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   32.032360][ T3852]  ? clear_bhb_loop+0x40/0x90
[   32.032381][ T3852]  ? clear_bhb_loop+0x40/0x90
[   32.032398][ T3852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   32.032451][ T3852] RIP: 0033:0x7f02a42ee929
[   32.032501][ T3852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.032518][ T3852] RSP: 002b:00007f02a2957038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[   32.032534][ T3852] RAX: ffffffffffffffda RBX: 00007f02a4515fa0 RCX: 00007f02a42ee929
[   32.032579][ T3852] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   32.032591][ T3852] RBP: 00007f02a2957090 R08: 0000000000000000 R09: 0000000000000000
[   32.032604][ T3852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   32.032616][ T3852] R13: 0000000000000000 R14: 00007f02a4515fa0 R15: 00007ffddd2122a8
[   32.032679][ T3852]  </TASK>
[   32.282292][   T29] kauditd_printk_skb: 366 callbacks suppressed
[   32.282306][   T29] audit: type=1326 audit(1751598560.731:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.318417][   T29] audit: type=1400 audit(1751598560.761:531): avc:  denied  { getopt } for  pid=3868 comm="syz.3.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   32.337819][   T29] audit: type=1326 audit(1751598560.761:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.360975][   T29] audit: type=1326 audit(1751598560.761:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.384134][   T29] audit: type=1326 audit(1751598560.761:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.409436][   T29] audit: type=1326 audit(1751598560.851:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.432688][   T29] audit: type=1326 audit(1751598560.851:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.463114][ T3862] 9pnet_fd: Insufficient options for proto=fd
[   32.469972][ T3883] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=3883 comm=syz.1.93
[   32.470060][ T3862] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   32.494251][ T3862] __nla_validate_parse: 9 callbacks suppressed
[   32.494267][ T3862] netlink: 12 bytes leftover after parsing attributes in process `syz.4.92'.
[   32.503622][ T3886] loop3: detected capacity change from 0 to 512
[   32.511563][ T3885] syz_tun: entered allmulticast mode
[   32.522909][ T3884] syz_tun: left allmulticast mode
[   32.536556][   T29] audit: type=1326 audit(1751598560.961:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f68868de929 code=0x0
[   32.563881][ T3862] hub 6-0:1.0: USB hub found
[   32.568556][ T3862] hub 6-0:1.0: 8 ports detected
[   32.581852][ T3886] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   32.631118][ T3897] loop0: detected capacity change from 0 to 1024
[   32.640188][ T3897] EXT4-fs: Ignoring removed oldalloc option
[   32.652881][ T3897] EXT4-fs: Ignoring removed orlov option
[   32.659583][ T3897] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   32.681981][ T3897] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.696842][ T3897] netlink: 'syz.0.99': attribute type 1 has an invalid length.
[   32.709529][ T3897] vlan2: entered allmulticast mode
[   32.714798][ T3897] geneve1: entered allmulticast mode
[   32.718000][   T29] audit: type=1326 audit(1751598561.161:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.743698][   T29] audit: type=1326 audit(1751598561.161:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3865 comm="syz.1.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68868de929 code=0x7ffc0000
[   32.791054][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.827963][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.877736][ T3935] netlink: 6068 bytes leftover after parsing attributes in process `syz.3.106'.
[   32.897547][ T3927] loop2: detected capacity change from 0 to 1024
[   32.904920][ T3927] EXT4-fs: Invalid want_extra_isize 0
[   32.947223][ T3944] loop2: detected capacity change from 0 to 512
[   32.958901][ T3934] FAULT_INJECTION: forcing a failure.
[   32.958901][ T3934] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   32.975397][ T3934] CPU: 1 UID: 0 PID: 3934 Comm: syz.0.104 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   32.975421][ T3934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   32.975432][ T3934] Call Trace:
[   32.975438][ T3934]  <TASK>
[   32.975445][ T3934]  __dump_stack+0x1d/0x30
[   32.975521][ T3934]  dump_stack_lvl+0xe8/0x140
[   32.975609][ T3934]  dump_stack+0x15/0x1b
[   32.975626][ T3934]  should_fail_ex+0x265/0x280
[   32.975655][ T3934]  should_fail+0xb/0x20
[   32.975744][ T3934]  should_fail_usercopy+0x1a/0x20
[   32.975768][ T3934]  _copy_from_iter+0xcf/0xe40
[   32.975875][ T3934]  ? __build_skb_around+0x1a0/0x200
[   32.975901][ T3934]  ? __alloc_skb+0x223/0x320
[   32.975927][ T3934]  netlink_sendmsg+0x471/0x6b0
[   32.975948][ T3934]  ? __pfx_netlink_sendmsg+0x10/0x10
[   32.975982][ T3934]  __sock_sendmsg+0x145/0x180
[   32.976003][ T3934]  ____sys_sendmsg+0x31e/0x4e0
[   32.976033][ T3934]  ___sys_sendmsg+0x17b/0x1d0
[   32.976073][ T3934]  __x64_sys_sendmsg+0xd4/0x160
[   32.976117][ T3934]  x64_sys_call+0x2999/0x2fb0
[   32.976137][ T3934]  do_syscall_64+0xd2/0x200
[   32.976153][ T3934]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   32.976204][ T3934]  ? clear_bhb_loop+0x40/0x90
[   32.976223][ T3934]  ? clear_bhb_loop+0x40/0x90
[   32.976252][ T3934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   32.976342][ T3934] RIP: 0033:0x7ff02133e929
[   32.976357][ T3934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.976373][ T3934] RSP: 002b:00007ff01f9a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   32.976446][ T3934] RAX: ffffffffffffffda RBX: 00007ff021565fa0 RCX: 00007ff02133e929
[   32.976477][ T3934] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000006
[   32.976487][ T3934] RBP: 00007ff01f9a7090 R08: 0000000000000000 R09: 0000000000000000
[   32.976497][ T3934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   32.976507][ T3934] R13: 0000000000000000 R14: 00007ff021565fa0 R15: 00007ffd1ba72238
[   32.976523][ T3934]  </TASK>
[   32.976977][ T3950] syz_tun: entered allmulticast mode
[   33.013286][ T3944] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.108: casefold flag without casefold feature
[   33.097020][ T3948] syz_tun: left allmulticast mode
[   33.106386][ T3944] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.108: couldn't read orphan inode 15 (err -117)
[   33.179026][ T3964] loop3: detected capacity change from 0 to 512
[   33.210146][ T3944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.237887][ T3964] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.113: casefold flag without casefold feature
[   33.258047][ T3944] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.258071][ T3974] loop1: detected capacity change from 0 to 1024
[   33.258423][ T3974] EXT4-fs: Ignoring removed oldalloc option
[   33.272552][ T3964] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.113: couldn't read orphan inode 15 (err -117)
[   33.307042][ T3974] EXT4-fs: Ignoring removed orlov option
[   33.314920][ T3986] process 'syz.2.116' launched '/dev/fd/3' with NULL argv: empty string added
[   33.326669][ T3964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.344352][ T3974] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   33.351096][ T3964] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.389920][ T3974] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.430743][ T3974] netlink: 'syz.1.115': attribute type 1 has an invalid length.
[   33.441238][ T3974] vlan2: entered allmulticast mode
[   33.446416][ T3974] geneve1: entered allmulticast mode
[   33.472521][ T4013] netlink: 24 bytes leftover after parsing attributes in process `syz.3.120'.
[   33.507419][ T4019] loop4: detected capacity change from 0 to 1024
[   33.535258][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.545376][ T4019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.582359][ T4025] loop3: detected capacity change from 0 to 512
[   33.594574][ T4019] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.121: Allocating blocks 449-513 which overlap fs metadata
[   33.642895][ T4025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.661387][ T4025] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   33.808120][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.829298][ T4035] SELinux: syz.4.121 (4035) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   33.894280][ T4048] loop3: detected capacity change from 0 to 512
[   33.933928][ T4048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.962277][ T4048] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   33.982613][ T4041] loop1: detected capacity change from 0 to 1764
[   33.990567][ T4041] iso9660: Bad value for 'gid'
[   33.995400][ T4041] iso9660: Bad value for 'gid'
[   34.026347][ T4017] EXT4-fs (loop4): pa ffff888106e82620: logic 48, phys. 177, len 21
[   34.034418][ T4017] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   34.097829][ T4060] netlink: 'syz.0.127': attribute type 3 has an invalid length.
[   34.108102][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.129978][ T4060] loop0: detected capacity change from 0 to 512
[   34.180433][ T4060] EXT4-fs (loop0): too many log groups per flexible block group
[   34.188329][ T4060] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   34.205399][ T4060] EXT4-fs (loop0): mount failed
[   34.258620][ T4060] loop0: detected capacity change from 0 to 2048
[   34.304183][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.324314][ T4095] netlink: 8 bytes leftover after parsing attributes in process `syz.2.133'.
[   34.355284][ T4060] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.384788][ T4060] EXT4-fs (loop0): shut down requested (0)
[   34.400076][ T4060] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   34.436095][ T4060] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   34.446578][ T4060] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   34.489574][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.573876][ T4151] netlink: 8 bytes leftover after parsing attributes in process `syz.3.145'.
[   34.597985][ T4157] loop2: detected capacity change from 0 to 1024
[   34.613644][ T4159] loop0: detected capacity change from 0 to 512
[   34.614885][ T4157] EXT4-fs: Ignoring removed oldalloc option
[   34.635630][ T4157] EXT4-fs: Ignoring removed orlov option
[   34.647097][ T4159] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.147: casefold flag without casefold feature
[   34.659886][ T4121] loop1: detected capacity change from 0 to 1764
[   34.667033][ T4121] iso9660: Bad value for 'gid'
[   34.672036][ T4121] iso9660: Bad value for 'gid'
[   34.685144][ T4169] loop3: detected capacity change from 0 to 512
[   34.691675][ T4159] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.147: couldn't read orphan inode 15 (err -117)
[   34.698225][ T4157] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   34.711078][ T4159] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.726304][ T4159] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.736628][ T4169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.751899][ T4157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.761137][ T4169] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   34.785365][ T4157] netlink: 'syz.2.146': attribute type 1 has an invalid length.
[   34.810947][ T4157] 8021q: adding VLAN 0 to HW filter on device bond1
[   34.826515][ T4157] vlan2: entered allmulticast mode
[   34.831710][ T4157] geneve1: entered allmulticast mode
[   34.839357][ T4157] bond1: (slave vlan2): making interface the new active one
[   34.848731][ T4157] bond1: (slave vlan2): Enslaving as an active interface with an up link
[   34.876562][ T4157] syz.2.146 (4157) used greatest stack depth: 9624 bytes left
[   34.892994][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.949765][ T4240] syz_tun: entered allmulticast mode
[   34.949751][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.956753][ T4236] syz_tun: left allmulticast mode
[   34.970432][ T4241] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4241 comm=syz.1.151
[   35.024811][ T4256] netlink: 6068 bytes leftover after parsing attributes in process `syz.0.157'.
[   35.067151][ T4259] loop0: detected capacity change from 0 to 2048
[   35.092191][ T4259] EXT4-fs: Ignoring removed nobh option
[   35.116303][ T4267] loop3: detected capacity change from 0 to 1024
[   35.126149][ T4259] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.139544][ T4259] netlink: 16 bytes leftover after parsing attributes in process `syz.0.158'.
[   35.173768][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.175049][ T4267] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.219829][ T4267] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.160: inode #327696: comm syz.3.160: iget: illegal inode #
[   35.235432][ T4261] loop2: detected capacity change from 0 to 1764
[   35.242412][ T4261] iso9660: Bad value for 'gid'
[   35.247273][ T4261] iso9660: Bad value for 'gid'
[   35.273755][ T4267] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.160: error while reading EA inode 327696 err=-117
[   35.313050][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.347829][ T4299] loop2: detected capacity change from 0 to 1024
[   35.412460][ T4299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.452716][ T4309] loop0: detected capacity change from 0 to 1024
[   35.481701][ T4309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.507886][ T4309] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.167: Allocating blocks 449-513 which overlap fs metadata
[   35.658174][ T4299] SELinux: syz.2.166 (4299) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   35.743126][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.761465][ T4322] SELinux: syz.0.167 (4322) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   35.800345][ T4336] netlink: 6068 bytes leftover after parsing attributes in process `syz.2.168'.
[   35.816847][ T4322] FAULT_INJECTION: forcing a failure.
[   35.816847][ T4322] name failslab, interval 1, probability 0, space 0, times 0
[   35.820903][ T4330] loop1: detected capacity change from 0 to 1024
[   35.829560][ T4322] CPU: 0 UID: 0 PID: 4322 Comm: syz.0.167 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   35.829614][ T4322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   35.829626][ T4322] Call Trace:
[   35.829633][ T4322]  <TASK>
[   35.829641][ T4322]  __dump_stack+0x1d/0x30
[   35.829660][ T4322]  dump_stack_lvl+0xe8/0x140
[   35.829678][ T4322]  dump_stack+0x15/0x1b
[   35.829725][ T4322]  should_fail_ex+0x265/0x280
[   35.829760][ T4322]  ? security_get_user_sids+0xa9/0x950
[   35.829880][ T4322]  should_failslab+0x8c/0xb0
[   35.829902][ T4322]  __kmalloc_cache_noprof+0x4c/0x320
[   35.829979][ T4322]  security_get_user_sids+0xa9/0x950
[   35.830000][ T4322]  ? security_context_to_sid_core+0x375/0x3b0
[   35.830021][ T4322]  ? string_to_context_struct+0x2dc/0x2f0
[   35.830084][ T4322]  ? security_context_to_sid_core+0x37d/0x3b0
[   35.830110][ T4322]  sel_write_user+0x2a3/0x440
[   35.830137][ T4322]  selinux_transaction_write+0xc3/0x110
[   35.830224][ T4322]  ? __pfx_selinux_transaction_write+0x10/0x10
[   35.830250][ T4322]  vfs_write+0x266/0x8e0
[   35.830278][ T4322]  ? __rcu_read_unlock+0x4f/0x70
[   35.830302][ T4322]  ? __fget_files+0x184/0x1c0
[   35.830322][ T4322]  ksys_write+0xda/0x1a0
[   35.830350][ T4322]  __x64_sys_write+0x40/0x50
[   35.830379][ T4322]  x64_sys_call+0x2cdd/0x2fb0
[   35.830439][ T4322]  do_syscall_64+0xd2/0x200
[   35.830456][ T4322]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   35.830480][ T4322]  ? clear_bhb_loop+0x40/0x90
[   35.830499][ T4322]  ? clear_bhb_loop+0x40/0x90
[   35.830525][ T4322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   35.830545][ T4322] RIP: 0033:0x7ff02133e929
[   35.830560][ T4322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   35.830576][ T4322] RSP: 002b:00007ff01f986038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   35.830593][ T4322] RAX: ffffffffffffffda RBX: 00007ff021566080 RCX: 00007ff02133e929
[   35.830609][ T4322] RDX: 0000000000000027 RSI: 0000200000000040 RDI: 000000000000000a
[   35.830648][ T4322] RBP: 00007ff01f986090 R08: 0000000000000000 R09: 0000000000000000
[   35.830693][ T4322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   35.830704][ T4322] R13: 0000000000000000 R14: 00007ff021566080 R15: 00007ffd1ba72238
[   35.830721][ T4322]  </TASK>
[   35.839215][ T4308] EXT4-fs (loop0): pa ffff888106e82690: logic 48, phys. 177, len 21
[   35.966536][ T4330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.970499][ T4308] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   36.113044][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.128737][ T4350] FAULT_INJECTION: forcing a failure.
[   36.128737][ T4350] name failslab, interval 1, probability 0, space 0, times 0
[   36.141484][ T4350] CPU: 1 UID: 0 PID: 4350 Comm: syz.2.173 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   36.141511][ T4350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   36.141521][ T4350] Call Trace:
[   36.141525][ T4350]  <TASK>
[   36.141531][ T4350]  __dump_stack+0x1d/0x30
[   36.141549][ T4350]  dump_stack_lvl+0xe8/0x140
[   36.141615][ T4350]  dump_stack+0x15/0x1b
[   36.141630][ T4350]  should_fail_ex+0x265/0x280
[   36.141658][ T4350]  should_failslab+0x8c/0xb0
[   36.141837][ T4350]  kmem_cache_alloc_noprof+0x50/0x310
[   36.141862][ T4350]  ? alloc_empty_file+0x76/0x200
[   36.141887][ T4350]  alloc_empty_file+0x76/0x200
[   36.141912][ T4350]  path_openat+0x68/0x2170
[   36.141941][ T4350]  ? mntput+0x4b/0x80
[   36.141965][ T4350]  ? terminate_walk+0x27f/0x2a0
[   36.141988][ T4350]  ? path_openat+0x1bf8/0x2170
[   36.142038][ T4350]  ? _parse_integer_limit+0x170/0x190
[   36.142068][ T4350]  do_filp_open+0x109/0x230
[   36.142148][ T4350]  do_open_execat+0xd8/0x260
[   36.142228][ T4350]  alloc_bprm+0x25/0x350
[   36.142257][ T4350]  do_execveat_common+0x12e/0x750
[   36.142290][ T4350]  __x64_sys_execve+0x5c/0x70
[   36.142360][ T4350]  x64_sys_call+0x13ab/0x2fb0
[   36.142445][ T4350]  do_syscall_64+0xd2/0x200
[   36.142463][ T4350]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   36.142489][ T4350]  ? clear_bhb_loop+0x40/0x90
[   36.142549][ T4350]  ? clear_bhb_loop+0x40/0x90
[   36.142570][ T4350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.142592][ T4350] RIP: 0033:0x7f9be0fee929
[   36.142608][ T4350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   36.142625][ T4350] RSP: 002b:00007f9bdf657038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   36.142673][ T4350] RAX: ffffffffffffffda RBX: 00007f9be1215fa0 RCX: 00007f9be0fee929
[   36.142686][ T4350] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[   36.142699][ T4350] RBP: 00007f9bdf657090 R08: 0000000000000000 R09: 0000000000000000
[   36.142767][ T4350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   36.142778][ T4350] R13: 0000000000000000 R14: 00007f9be1215fa0 R15: 00007ffd45165388
[   36.142874][ T4350]  </TASK>
[   36.387579][ T4330] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.169: Allocating blocks 449-513 which overlap fs metadata
[   36.528636][ T4382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.179'.
[   36.548058][ T4355] SELinux: syz.1.169 (4355) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   36.578818][   T36] IPVS: starting estimator thread 0...
[   36.681551][ T4407] IPVS: using max 2592 ests per chain, 129600 per kthread
[   36.683118][ T4417] geneve2: entered promiscuous mode
[   36.694046][ T4417] geneve2: entered allmulticast mode
[   36.708136][ T4413] loop0: detected capacity change from 0 to 1024
[   36.716934][ T4413] EXT4-fs: Invalid want_extra_isize 0
[   36.731925][ T4329] EXT4-fs (loop1): pa ffff888106e825b0: logic 48, phys. 177, len 21
[   36.739963][ T4329] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   36.796843][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.860035][ T4446] FAULT_INJECTION: forcing a failure.
[   36.860035][ T4446] name failslab, interval 1, probability 0, space 0, times 0
[   36.872758][ T4446] CPU: 0 UID: 0 PID: 4446 Comm: wÞ£ÿ Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   36.872845][ T4446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   36.872857][ T4446] Call Trace:
[   36.872863][ T4446]  <TASK>
[   36.872872][ T4446]  __dump_stack+0x1d/0x30
[   36.872927][ T4446]  dump_stack_lvl+0xe8/0x140
[   36.872945][ T4446]  dump_stack+0x15/0x1b
[   36.872961][ T4446]  should_fail_ex+0x265/0x280
[   36.873013][ T4446]  should_failslab+0x8c/0xb0
[   36.873036][ T4446]  kmem_cache_alloc_node_noprof+0x57/0x320
[   36.873076][ T4446]  ? __alloc_skb+0x101/0x320
[   36.873104][ T4446]  __alloc_skb+0x101/0x320
[   36.873166][ T4446]  netlink_alloc_large_skb+0xba/0xf0
[   36.873220][ T4446]  netlink_sendmsg+0x3cf/0x6b0
[   36.873241][ T4446]  ? __pfx_netlink_sendmsg+0x10/0x10
[   36.873307][ T4446]  __sock_sendmsg+0x145/0x180
[   36.873331][ T4446]  ____sys_sendmsg+0x31e/0x4e0
[   36.873385][ T4446]  ___sys_sendmsg+0x17b/0x1d0
[   36.873454][ T4446]  __x64_sys_sendmsg+0xd4/0x160
[   36.873530][ T4446]  x64_sys_call+0x2999/0x2fb0
[   36.873551][ T4446]  do_syscall_64+0xd2/0x200
[   36.873570][ T4446]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   36.873640][ T4446]  ? clear_bhb_loop+0x40/0x90
[   36.873661][ T4446]  ? clear_bhb_loop+0x40/0x90
[   36.873692][ T4446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.873716][ T4446] RIP: 0033:0x7f68868de929
[   36.873733][ T4446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   36.873749][ T4446] RSP: 002b:00007f6884f47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   36.873769][ T4446] RAX: ffffffffffffffda RBX: 00007f6886b05fa0 RCX: 00007f68868de929
[   36.873782][ T4446] RDX: 0000000020040054 RSI: 0000200000006040 RDI: 0000000000000004
[   36.873794][ T4446] RBP: 00007f6884f47090 R08: 0000000000000000 R09: 0000000000000000
[   36.873806][ T4446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   36.873860][ T4446] R13: 0000000000000000 R14: 00007f6886b05fa0 R15: 00007ffde38a7928
[   36.873941][ T4446]  </TASK>
[   37.095451][ T4412] loop3: detected capacity change from 0 to 1764
[   37.109301][ T4412] iso9660: Bad value for 'gid'
[   37.114155][ T4412] iso9660: Bad value for 'gid'
[   37.119198][ T4455] loop4: detected capacity change from 0 to 512
[   37.184924][ T4472] netlink: 8 bytes leftover after parsing attributes in process `syz.1.190'.
[   37.195763][ T4455] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.224393][ T4455] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   37.257473][ T4487] loop1: detected capacity change from 0 to 1024
[   37.264020][ T4474] loop3: detected capacity change from 0 to 1024
[   37.268852][ T4487] EXT4-fs: Invalid want_extra_isize 0
[   37.275679][ T4474] EXT4-fs: Invalid want_extra_isize 0
[   37.292700][   T29] kauditd_printk_skb: 189 callbacks suppressed
[   37.292714][   T29] audit: type=1326 audit(1751598565.741:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4484 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f68868dd290 code=0x7ffc0000
[   37.323906][   T29] audit: type=1326 audit(1751598565.741:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f02a42ed290 code=0x7ffc0000
[   37.347222][   T29] audit: type=1326 audit(1751598565.741:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f02a42ee52b code=0x7ffc0000
[   37.370511][   T29] audit: type=1326 audit(1751598565.741:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f02a42ed58a code=0x7ffc0000
[   37.393816][   T29] audit: type=1326 audit(1751598565.741:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.417190][   T29] audit: type=1326 audit(1751598565.741:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.440738][   T29] audit: type=1326 audit(1751598565.741:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.464472][   T29] audit: type=1326 audit(1751598565.741:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.487801][   T29] audit: type=1326 audit(1751598565.741:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.511072][   T29] audit: type=1326 audit(1751598565.741:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4473 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   37.613721][ T4522] 9pnet_fd: Insufficient options for proto=fd
[   37.620536][ T4522] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   37.627714][ T4522] netlink: 12 bytes leftover after parsing attributes in process `syz.2.199'.
[   37.678201][ T4528] netlink: 8 bytes leftover after parsing attributes in process `syz.1.202'.
[   37.715239][ T4522] hub 6-0:1.0: USB hub found
[   37.720253][ T4522] hub 6-0:1.0: 8 ports detected
[   37.759730][ T4552] loop0: detected capacity change from 0 to 1024
[   37.772000][ T4548] 9pnet_fd: Insufficient options for proto=fd
[   37.781408][ T4548] syz!: rxe_newlink: already configured on team_slave_0
[   37.798771][ T4548] netlink: 12 bytes leftover after parsing attributes in process `syz.3.206'.
[   37.836704][ T4552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.855771][ T4548] hub 6-0:1.0: USB hub found
[   37.862497][ T4548] hub 6-0:1.0: 8 ports detected
[   37.907204][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.962148][ T4579] loop0: detected capacity change from 0 to 512
[   37.982120][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.004813][ T4584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.215'.
[   38.008844][ T4579] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.212: casefold flag without casefold feature
[   38.026616][ T4579] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.212: couldn't read orphan inode 15 (err -117)
[   38.039626][ T4579] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.052629][ T4579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.065741][ T4559] loop1: detected capacity change from 0 to 1764
[   38.095142][ T4559] iso9660: Bad value for 'gid'
[   38.100016][ T4559] iso9660: Bad value for 'gid'
[   38.101588][ T4596] loop4: detected capacity change from 0 to 512
[   38.132953][ T4601] loop3: detected capacity change from 0 to 1024
[   38.164235][ T4596] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.214: casefold flag without casefold feature
[   38.185127][ T4617] 9pnet_fd: Insufficient options for proto=fd
[   38.191761][ T4617] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   38.193436][ T4596] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.214: couldn't read orphan inode 15 (err -117)
[   38.199046][ T4617] netlink: 12 bytes leftover after parsing attributes in process `syz.1.220'.
[   38.228422][ T4601] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.244897][ T4601] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.217: inode #327696: comm syz.3.217: iget: illegal inode #
[   38.261197][ T4596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.275123][ T4617] hub 6-0:1.0: USB hub found
[   38.289340][ T4617] hub 6-0:1.0: 8 ports detected
[   38.289453][ T4596] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.299357][ T4601] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.217: error while reading EA inode 327696 err=-117
[   38.362768][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.382067][ T4639] loop4: detected capacity change from 0 to 512
[   38.397732][ T4639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.436042][ T4647] loop3: detected capacity change from 0 to 1024
[   38.446627][ T4639] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.492895][ T4647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.532118][ T4666] 9pnet_fd: Insufficient options for proto=fd
[   38.539078][ T4666] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   38.546258][ T4666] netlink: 12 bytes leftover after parsing attributes in process `syz.1.228'.
[   38.562843][ T4647] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.224: inode #327696: comm syz.3.224: iget: illegal inode #
[   38.580878][ T4647] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.224: error while reading EA inode 327696 err=-117
[   38.624709][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.665889][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.688778][ T4675] loop4: detected capacity change from 0 to 512
[   38.787836][ T4683] loop1: detected capacity change from 0 to 1024
[   38.797076][ T4683] EXT4-fs: Invalid want_extra_isize 0
[   38.921703][ T4675] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.972261][ T4680] loop3: detected capacity change from 0 to 1764
[   38.978965][ T4691] loop1: detected capacity change from 0 to 1764
[   38.987233][ T4680] iso9660: Bad value for 'gid'
[   38.992064][ T4680] iso9660: Bad value for 'gid'
[   39.102822][ T4709] loop1: detected capacity change from 0 to 1024
[   39.124275][ T4709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.131178][ T4715] loop3: detected capacity change from 0 to 1024
[   39.150175][ T4709] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.235: inode #327696: comm syz.1.235: iget: illegal inode #
[   39.165071][ T4709] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.235: error while reading EA inode 327696 err=-117
[   39.178587][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.201817][ T4715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.212450][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.237034][ T4715] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.236: inode #327696: comm syz.3.236: iget: illegal inode #
[   39.278983][ T4715] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.236: error while reading EA inode 327696 err=-117
[   39.287180][ T4738] loop2: detected capacity change from 0 to 2048
[   39.298835][ T4738] EXT4-fs: Ignoring removed nobh option
[   39.334719][ T4738] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.335249][ T4750] loop1: detected capacity change from 0 to 512
[   39.357204][ T4738] netlink: 8 bytes leftover after parsing attributes in process `syz.2.241'.
[   39.397127][ T4757] syz_tun: entered allmulticast mode
[   39.406527][ T4750] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.412843][ T4745] SELinux: ebitmap: truncated map
[   39.426919][ T4755] syz_tun: left allmulticast mode
[   39.433411][ T4745] SELinux: failed to load policy
[   39.441750][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.456238][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.468302][ T4750] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.493184][ T4763] loop4: detected capacity change from 0 to 128
[   39.503625][ T4763] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   39.542926][ T4763] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   39.695868][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.721835][ T4813] loop4: detected capacity change from 0 to 1764
[   39.749210][ T4816] geneve2: entered promiscuous mode
[   39.754699][ T4816] geneve2: entered allmulticast mode
[   39.792420][ T4823] loop1: detected capacity change from 0 to 1024
[   39.839125][ T4823] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.873180][ T4823] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.255: inode #327696: comm syz.1.255: iget: illegal inode #
[   39.900141][ T4846] loop3: detected capacity change from 0 to 1024
[   39.907768][ T4846] EXT4-fs: Invalid want_extra_isize 0
[   39.954869][ T4823] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.255: error while reading EA inode 327696 err=-117
[   39.964276][ T4861] loop4: detected capacity change from 0 to 512
[   40.019434][ T4870] loop2: detected capacity change from 0 to 1764
[   40.055349][ T4861] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.068759][ T4861] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.231657][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.243367][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.497751][ T4915] loop2: detected capacity change from 0 to 512
[   40.523133][ T4915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.624334][ T4926] loop3: detected capacity change from 0 to 512
[   40.641341][ T4926] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.277: casefold flag without casefold feature
[   40.690726][ T4926] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.277: couldn't read orphan inode 15 (err -117)
[   40.732020][ T4926] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.745589][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.752841][ T4926] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.883354][ T4966] 9pnet_fd: Insufficient options for proto=fd
[   40.909562][ T4966] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   40.918414][ T4976] 9pnet_fd: Insufficient options for proto=fd
[   40.925381][ T4976] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   40.932613][ T4976] netlink: 12 bytes leftover after parsing attributes in process `syz.0.286'.
[   40.950761][ T4966] netlink: 12 bytes leftover after parsing attributes in process `syz.2.284'.
[   40.979205][ T4976] hub 6-0:1.0: USB hub found
[   40.984806][ T4981] loop4: detected capacity change from 0 to 512
[   40.986533][ T4976] hub 6-0:1.0: 8 ports detected
[   41.001097][ T4986] loop3: detected capacity change from 0 to 1024
[   41.002819][ T4981] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.010830][ T4966] hub 6-0:1.0: USB hub found
[   41.027230][ T4986] EXT4-fs: Ignoring removed oldalloc option
[   41.033824][ T4986] EXT4-fs: Ignoring removed orlov option
[   41.047931][ T4966] hub 6-0:1.0: 8 ports detected
[   41.052047][ T4986] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.083709][ T4986] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.097726][ T4986] netlink: 'syz.3.289': attribute type 1 has an invalid length.
[   41.112579][ T4986] 8021q: adding VLAN 0 to HW filter on device bond1
[   41.125157][ T4986] vlan2: entered allmulticast mode
[   41.138583][ T4986] bond1: (slave vlan2): making interface the new active one
[   41.147752][ T4986] bond1: (slave vlan2): Enslaving as an active interface with an up link
[   41.168475][ T4986] syz.3.289 (4986) used greatest stack depth: 9520 bytes left
[   41.176471][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.209108][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.225192][ T5044] loop2: detected capacity change from 0 to 1024
[   41.235682][ T5047] netlink: 20 bytes leftover after parsing attributes in process `syz.0.293'.
[   41.242770][ T5044] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.244708][ T5047] x_tables: ip_tables: udp match: only valid for protocol 17
[   41.260392][ T5044] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.295: inode #327696: comm syz.2.295: iget: illegal inode #
[   41.305743][ T5044] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.295: error while reading EA inode 327696 err=-117
[   41.358331][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.421234][ T5091] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=5091 comm=syz.0.296
[   41.434372][ T5088] loop4: detected capacity change from 0 to 512
[   41.445250][ T5086] loop1: detected capacity change from 0 to 1024
[   41.452890][ T5079] loop3: detected capacity change from 0 to 1764
[   41.453827][ T5090] 9pnet_fd: Insufficient options for proto=fd
[   41.460275][ T5086] EXT4-fs: Ignoring removed oldalloc option
[   41.473361][ T5086] EXT4-fs: Ignoring removed orlov option
[   41.474316][ T5090] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   41.501818][ T5086] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.515254][ T5088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.533871][ T5090] hub 6-0:1.0: USB hub found
[   41.539503][ T5090] hub 6-0:1.0: 8 ports detected
[   41.552087][ T5086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.586852][ T5086] netlink: 'syz.1.303': attribute type 1 has an invalid length.
[   41.601672][ T5086] 8021q: adding VLAN 0 to HW filter on device bond1
[   41.613834][ T5086] vlan2: entered allmulticast mode
[   41.622806][ T5086] bond1: (slave vlan2): making interface the new active one
[   41.632289][ T5086] bond1: (slave vlan2): Enslaving as an active interface with an up link
[   41.632702][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.675126][ T5156] loop4: detected capacity change from 0 to 1764
[   41.686482][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.783747][ T5179] loop2: detected capacity change from 0 to 2048
[   41.801108][ T5179] EXT4-fs: Ignoring removed nobh option
[   41.823153][ T5179] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.845179][ T5191] loop1: detected capacity change from 0 to 2048
[   41.855075][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.903968][ T5191] Alternate GPT is invalid, using primary GPT.
[   41.910912][ T5191]  loop1: p2 p3 p7
[   41.920148][ T5206] geneve2: entered promiscuous mode
[   41.920282][ T5209] 9pnet_fd: Insufficient options for proto=fd
[   41.925963][ T5206] geneve2: entered allmulticast mode
[   41.936223][ T5209] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   41.973218][ T5209] hub 6-0:1.0: USB hub found
[   41.978442][ T5209] hub 6-0:1.0: 8 ports detected
[   42.021699][ T5230] loop1: detected capacity change from 0 to 1024
[   42.036057][ T5232] loop4: detected capacity change from 0 to 1024
[   42.054525][ T5230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.059838][ T5232] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.096094][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.116128][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.129537][ T5244] loop2: detected capacity change from 0 to 512
[   42.145842][ T5247] loop1: detected capacity change from 0 to 1764
[   42.164766][ T5244] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.188640][ T5244] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.211775][ T5259] mmap: syz.4.322 (5259) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   42.257970][ T5259] loop4: detected capacity change from 0 to 512
[   42.273098][ T5270] loop0: detected capacity change from 0 to 2048
[   42.281809][ T5270] EXT4-fs: Ignoring removed nobh option
[   42.294095][ T5259] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   42.311982][ T5270] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.344185][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.354608][ T5259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.370486][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.380089][ T5259] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.463149][ T5299] loop3: detected capacity change from 0 to 1024
[   42.484267][ T5299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.495111][ T5308] loop2: detected capacity change from 0 to 1024
[   42.509885][   T29] kauditd_printk_skb: 275 callbacks suppressed
[   42.509899][   T29] audit: type=1400 audit(1751598570.951:1010): avc:  denied  { unlink } for  pid=5258 comm="syz.4.322" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   42.544007][ T5259] syz.4.322 uses obsolete (PF_INET,SOCK_PACKET)
[   42.562582][ T5320] loop0: detected capacity change from 0 to 1024
[   42.564225][ T5313] netlink: 'syz.1.333': attribute type 1 has an invalid length.
[   42.608144][   T29] audit: type=1400 audit(1751598571.041:1011): avc:  denied  { read } for  pid=5258 comm="syz.4.322" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   42.622144][ T5308] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.334: Allocating blocks 449-513 which overlap fs metadata
[   42.631259][   T29] audit: type=1400 audit(1751598571.041:1012): avc:  denied  { open } for  pid=5258 comm="syz.4.322" path="/dev/ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   42.675523][   T29] audit: type=1400 audit(1751598571.121:1013): avc:  denied  { mount } for  pid=5329 comm="syz.1.337" name="/" dev="ramfs" ino=8389 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   42.697918][   T29] audit: type=1326 audit(1751598571.121:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.708803][ T5307] EXT4-fs (loop2): pa ffff888106e827e0: logic 48, phys. 177, len 21
[   42.721285][   T29] audit: type=1326 audit(1751598571.121:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.729334][ T5307] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, 
[   42.752525][   T29] audit: type=1326 audit(1751598571.121:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.760978][ T5307] free 0, pa_free 4
[   42.784636][   T29] audit: type=1326 audit(1751598571.121:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.784659][   T29] audit: type=1326 audit(1751598571.121:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.797186][ T5320] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.335: Allocating blocks 449-513 which overlap fs metadata
[   42.811868][   T29] audit: type=1326 audit(1751598571.121:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.3.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02a42ee929 code=0x7ffc0000
[   42.849656][ T5327] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=5327 comm=syz.3.336
[   42.906453][ T5334] loop1: detected capacity change from 0 to 512
[   42.930538][ T5316] EXT4-fs (loop0): pa ffff888106dd22a0: logic 48, phys. 177, len 21
[   42.938613][ T5316] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   42.975568][ T5334] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.986383][ T5350] loop4: detected capacity change from 0 to 2048
[   42.995784][ T5350] EXT4-fs: Ignoring removed nobh option
[   43.166841][ T5369] __nla_validate_parse: 2 callbacks suppressed
[   43.166855][ T5369] netlink: 348 bytes leftover after parsing attributes in process `syz.4.345'.
[   43.189255][ T5369] loop4: detected capacity change from 0 to 512
[   43.199674][ T5369] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   43.212791][ T5369] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   43.240671][ T5361] loop3: detected capacity change from 0 to 1764
[   43.247462][ T5361] iso9660: Bad value for 'gid'
[   43.252265][ T5361] iso9660: Bad value for 'gid'
[   43.268975][ T5369] EXT4-fs (loop4): 1 truncate cleaned up
[   43.366024][ T5407] loop3: detected capacity change from 0 to 1024
[   43.401939][ T5407] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.352: inode #327696: comm syz.3.352: iget: illegal inode #
[   43.433704][ T5407] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.352: error while reading EA inode 327696 err=-117
[   43.491151][ T5420] loop4: detected capacity change from 0 to 2048
[   43.501073][ T5420] EXT4-fs: Ignoring removed nobh option
[   43.619819][ T5448] loop0: detected capacity change from 0 to 1764
[   43.698828][ T5470] FAULT_INJECTION: forcing a failure.
[   43.698828][ T5470] name failslab, interval 1, probability 0, space 0, times 0
[   43.711581][ T5470] CPU: 1 UID: 0 PID: 5470 Comm: syz.0.367 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   43.711607][ T5470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   43.711686][ T5470] Call Trace:
[   43.711692][ T5470]  <TASK>
[   43.711698][ T5470]  __dump_stack+0x1d/0x30
[   43.711719][ T5470]  dump_stack_lvl+0xe8/0x140
[   43.711738][ T5470]  dump_stack+0x15/0x1b
[   43.711780][ T5470]  should_fail_ex+0x265/0x280
[   43.711805][ T5470]  should_failslab+0x8c/0xb0
[   43.711905][ T5470]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   43.711931][ T5470]  ? __d_alloc+0x3d/0x350
[   43.711955][ T5470]  __d_alloc+0x3d/0x350
[   43.712010][ T5470]  d_alloc+0x2e/0x100
[   43.712028][ T5470]  lookup_one_qstr_excl_raw+0x95/0x1b0
[   43.712049][ T5470]  do_renameat2+0x3e0/0xab0
[   43.712129][ T5470]  __x64_sys_rename+0x58/0x70
[   43.712171][ T5470]  x64_sys_call+0x2aee/0x2fb0
[   43.712191][ T5470]  do_syscall_64+0xd2/0x200
[   43.712339][ T5470]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.712364][ T5470]  ? clear_bhb_loop+0x40/0x90
[   43.712384][ T5470]  ? clear_bhb_loop+0x40/0x90
[   43.712405][ T5470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.712451][ T5470] RIP: 0033:0x7ff02133e929
[   43.712467][ T5470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.712484][ T5470] RSP: 002b:00007ff01f9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   43.712504][ T5470] RAX: ffffffffffffffda RBX: 00007ff021565fa0 RCX: 00007ff02133e929
[   43.712517][ T5470] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000200000000000
[   43.712609][ T5470] RBP: 00007ff01f9a7090 R08: 0000000000000000 R09: 0000000000000000
[   43.712642][ T5470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.712655][ T5470] R13: 0000000000000000 R14: 00007ff021565fa0 R15: 00007ffd1ba72238
[   43.712700][ T5470]  </TASK>
[   44.002961][ T5505] FAULT_INJECTION: forcing a failure.
[   44.002961][ T5505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.016139][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.2.371 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   44.016163][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.016172][ T5505] Call Trace:
[   44.016217][ T5505]  <TASK>
[   44.016224][ T5505]  __dump_stack+0x1d/0x30
[   44.016246][ T5505]  dump_stack_lvl+0xe8/0x140
[   44.016265][ T5505]  dump_stack+0x15/0x1b
[   44.016279][ T5505]  should_fail_ex+0x265/0x280
[   44.016324][ T5505]  should_fail+0xb/0x20
[   44.016345][ T5505]  should_fail_usercopy+0x1a/0x20
[   44.016374][ T5505]  _copy_from_user+0x1c/0xb0
[   44.016392][ T5505]  ___sys_sendmsg+0xc1/0x1d0
[   44.016435][ T5505]  __x64_sys_sendmsg+0xd4/0x160
[   44.016463][ T5505]  x64_sys_call+0x2999/0x2fb0
[   44.016560][ T5505]  do_syscall_64+0xd2/0x200
[   44.016625][ T5505]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.016677][ T5505]  ? clear_bhb_loop+0x40/0x90
[   44.016694][ T5505]  ? clear_bhb_loop+0x40/0x90
[   44.016741][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.016762][ T5505] RIP: 0033:0x7f9be0fee929
[   44.016778][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.016834][ T5505] RSP: 002b:00007f9bdf636038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   44.016849][ T5505] RAX: ffffffffffffffda RBX: 00007f9be1216080 RCX: 00007f9be0fee929
[   44.016859][ T5505] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[   44.016925][ T5505] RBP: 00007f9bdf636090 R08: 0000000000000000 R09: 0000000000000000
[   44.016935][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.016944][ T5505] R13: 0000000000000000 R14: 00007f9be1216080 R15: 00007ffd45165388
[   44.017013][ T5505]  </TASK>
[   44.272899][ T5557] loop2: detected capacity change from 0 to 1764
[   44.280326][ T5559] FAULT_INJECTION: forcing a failure.
[   44.280326][ T5559] name failslab, interval 1, probability 0, space 0, times 0
[   44.293110][ T5559] CPU: 1 UID: 0 PID: 5559 Comm: syz.3.378 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   44.293175][ T5559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.293187][ T5559] Call Trace:
[   44.293193][ T5559]  <TASK>
[   44.293201][ T5559]  __dump_stack+0x1d/0x30
[   44.293222][ T5559]  dump_stack_lvl+0xe8/0x140
[   44.293238][ T5559]  dump_stack+0x15/0x1b
[   44.293251][ T5559]  should_fail_ex+0x265/0x280
[   44.293384][ T5559]  should_failslab+0x8c/0xb0
[   44.293403][ T5559]  __kmalloc_noprof+0xa5/0x3e0
[   44.293443][ T5559]  ? sk_prot_alloc+0xa8/0x190
[   44.293473][ T5559]  sk_prot_alloc+0xa8/0x190
[   44.293500][ T5559]  sk_alloc+0x34/0x360
[   44.293574][ T5559]  ? __pfx_genl_release+0x10/0x10
[   44.293593][ T5559]  ? __pfx_genl_release+0x10/0x10
[   44.293611][ T5559]  netlink_create+0x32a/0x460
[   44.293675][ T5559]  ? __pfx_genl_unbind+0x10/0x10
[   44.293697][ T5559]  ? __pfx_genl_bind+0x10/0x10
[   44.293718][ T5559]  __sock_create+0x2ec/0x5b0
[   44.293751][ T5559]  __sys_socket+0xb0/0x180
[   44.293771][ T5559]  __x64_sys_socket+0x3f/0x50
[   44.293794][ T5559]  x64_sys_call+0x285a/0x2fb0
[   44.293858][ T5559]  do_syscall_64+0xd2/0x200
[   44.293876][ T5559]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.293902][ T5559]  ? clear_bhb_loop+0x40/0x90
[   44.293921][ T5559]  ? clear_bhb_loop+0x40/0x90
[   44.293938][ T5559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.293980][ T5559] RIP: 0033:0x7f02a42f0847
[   44.294002][ T5559] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.294016][ T5559] RSP: 002b:00007f02a2955fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[   44.294032][ T5559] RAX: ffffffffffffffda RBX: 00007f02a4515fa0 RCX: 00007f02a42f0847
[   44.294043][ T5559] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[   44.294080][ T5559] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[   44.294141][ T5559] R10: 0000200000000400 R11: 0000000000000286 R12: 0000000000000001
[   44.294151][ T5559] R13: 0000000000000000 R14: 00007f02a4515fa0 R15: 00007ffddd2122a8
[   44.294169][ T5559]  </TASK>
[   44.538669][ T5566] loop3: detected capacity change from 0 to 512
[   44.627845][ T5566] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   44.659379][ T5566] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.379: invalid indirect mapped block 83886080 (level 1)
[   44.677521][ T5610] loop2: detected capacity change from 0 to 1024
[   44.686124][ T5610] EXT4-fs: Ignoring removed nobh option
[   44.691665][ T5607] loop0: detected capacity change from 0 to 1024
[   44.691806][ T5610] EXT4-fs: inline encryption not supported
[   44.701962][ T5566] EXT4-fs (loop3): Remounting filesystem read-only
[   44.713462][ T5566] EXT4-fs (loop3): 1 orphan inode deleted
[   44.719301][ T5566] EXT4-fs (loop3): 1 truncate cleaned up
[   44.727927][ T5566] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5121 sclass=netlink_route_socket pid=5566 comm=syz.3.379
[   44.779625][ T5607] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: comm syz.0.386: inode #327696: comm syz.0.386: iget: illegal inode #
[   44.799934][ T5607] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.386: error while reading EA inode 327696 err=-117
[   44.819306][ T5610] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.383: Allocating blocks 385-513 which overlap fs metadata
[   44.835111][ T5610] EXT4-fs (loop2): pa ffff888106e82770: logic 16, phys. 129, len 24
[   44.843155][ T5610] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[   44.855149][ T5610] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   44.867465][ T5610] EXT4-fs (loop2): This should not happen!! Data will be lost
[   44.867465][ T5610] 
[   44.877238][ T5610] EXT4-fs (loop2): Total free blocks count 0
[   44.883282][ T5610] EXT4-fs (loop2): Free/Dirty block details
[   44.889283][ T5610] EXT4-fs (loop2): free_blocks=128
[   44.894421][ T5610] EXT4-fs (loop2): dirty_blocks=0
[   44.899512][ T5610] EXT4-fs (loop2): Block reservation details
[   44.905681][ T5610] EXT4-fs (loop2): i_reserved_data_blocks=0
[   45.055927][ T5656] loop0: detected capacity change from 0 to 1024
[   45.077724][ T5656] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.123566][ T5656] EXT4-fs (loop0): can't mount with commit=, fs mounted w/o journal
[   45.143882][ T5656] loop0: detected capacity change from 0 to 128
[   45.157392][ T5656] vfat: Unknown parameter 'errornue'
[   45.169651][ T5682] netlink: '+}[@': attribute type 13 has an invalid length.
[   45.286414][ T5702] netlink: 'syz.1.402': attribute type 1 has an invalid length.
[   45.336091][ T5703] loop0: detected capacity change from 0 to 1024
[   45.351540][ T5703] EXT4-fs: Invalid want_extra_isize 0
[   45.392713][ T5682] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.401712][ T5682] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.410641][ T5682] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.419535][ T5682] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.450172][ T5702] 8021q: adding VLAN 0 to HW filter on device bond2
[   45.497949][ T5704] bond2: (slave gretap1): making interface the new active one
[   45.506364][ T5704] bond2: (slave gretap1): Enslaving as an active interface with an up link
[   45.583272][ T5753] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   45.590173][ T5753] netlink: 12 bytes leftover after parsing attributes in process `syz.0.406'.
[   45.621678][ T5765] loop4: detected capacity change from 0 to 512
[   45.630044][ T5765] EXT4-fs: Ignoring removed nobh option
[   45.632862][ T5753] hub 6-0:1.0: USB hub found
[   45.635655][ T5765] ext2: Unknown parameter 'appraise'
[   45.649266][ T5753] hub 6-0:1.0: 8 ports detected
[   45.672333][ T5765] netlink: 28 bytes leftover after parsing attributes in process `syz.4.410'.
[   45.807555][ T5777] FAULT_INJECTION: forcing a failure.
[   45.807555][ T5777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.821408][ T5777] CPU: 1 UID: 0 PID: 5777 Comm: syz.1.411 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   45.821435][ T5777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   45.821445][ T5777] Call Trace:
[   45.821450][ T5777]  <TASK>
[   45.821456][ T5777]  __dump_stack+0x1d/0x30
[   45.821473][ T5777]  dump_stack_lvl+0xe8/0x140
[   45.821489][ T5777]  dump_stack+0x15/0x1b
[   45.821570][ T5777]  should_fail_ex+0x265/0x280
[   45.821596][ T5777]  should_fail+0xb/0x20
[   45.821618][ T5777]  should_fail_usercopy+0x1a/0x20
[   45.821727][ T5777]  _copy_from_user+0x1c/0xb0
[   45.821745][ T5777]  kstrtouint_from_user+0x69/0xf0
[   45.821770][ T5777]  proc_fail_nth_write+0x50/0x160
[   45.821860][ T5777]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   45.821890][ T5777]  vfs_write+0x266/0x8e0
[   45.821943][ T5777]  ? __rcu_read_unlock+0x4f/0x70
[   45.821962][ T5777]  ? __fget_files+0x184/0x1c0
[   45.821981][ T5777]  ksys_write+0xda/0x1a0
[   45.822006][ T5777]  __x64_sys_write+0x40/0x50
[   45.822089][ T5777]  x64_sys_call+0x2cdd/0x2fb0
[   45.822110][ T5777]  do_syscall_64+0xd2/0x200
[   45.822182][ T5777]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.822211][ T5777]  ? clear_bhb_loop+0x40/0x90
[   45.822232][ T5777]  ? clear_bhb_loop+0x40/0x90
[   45.822254][ T5777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.822274][ T5777] RIP: 0033:0x7f68868dd3df
[   45.822325][ T5777] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   45.822343][ T5777] RSP: 002b:00007f6884f47030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   45.822362][ T5777] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f68868dd3df
[   45.822375][ T5777] RDX: 0000000000000001 RSI: 00007f6884f470a0 RDI: 0000000000000008
[   45.822388][ T5777] RBP: 00007f6884f47090 R08: 0000000000000000 R09: 0000000000000000
[   45.822400][ T5777] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   45.822413][ T5777] R13: 0000000000000000 R14: 00007f6886b05fa0 R15: 00007ffde38a7928
[   45.822481][ T5777]  </TASK>
[   45.822609][ T5799] loop3: detected capacity change from 0 to 1024
[   45.909295][ T5827] netlink: 'syz.1.411': attribute type 10 has an invalid length.
[   46.077911][ T5827] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   46.148629][ T5849] netlink: 'syz.0.417': attribute type 10 has an invalid length.
[   46.171765][ T5838] loop3: detected capacity change from 0 to 1024
[   46.221354][ T5857] loop4: detected capacity change from 0 to 1024
[   46.227374][ T5849] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   46.451749][ T5915] loop4: detected capacity change from 0 to 513
[   46.475517][ T5915] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   46.818416][ T5949] loop2: detected capacity change from 0 to 1764
[   46.828774][ T5949] iso9660: Bad value for 'gid'
[   46.833604][ T5949] iso9660: Bad value for 'gid'
[   46.903450][ T5968] FAULT_INJECTION: forcing a failure.
[   46.903450][ T5968] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.903741][ T5969] netlink: 24 bytes leftover after parsing attributes in process `syz.4.435'.
[   46.916652][ T5968] CPU: 1 UID: 0 PID: 5968 Comm: syz.0.437 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   46.916677][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   46.916687][ T5968] Call Trace:
[   46.916692][ T5968]  <TASK>
[   46.916699][ T5968]  __dump_stack+0x1d/0x30
[   46.916722][ T5968]  dump_stack_lvl+0xe8/0x140
[   46.916783][ T5968]  dump_stack+0x15/0x1b
[   46.916801][ T5968]  should_fail_ex+0x265/0x280
[   46.916880][ T5968]  should_fail+0xb/0x20
[   46.916906][ T5968]  should_fail_usercopy+0x1a/0x20
[   46.916935][ T5968]  _copy_from_user+0x1c/0xb0
[   46.916955][ T5968]  ___sys_sendmsg+0xc1/0x1d0
[   46.917031][ T5968]  __x64_sys_sendmsg+0xd4/0x160
[   46.917079][ T5968]  x64_sys_call+0x2999/0x2fb0
[   46.917100][ T5968]  do_syscall_64+0xd2/0x200
[   46.917118][ T5968]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.917172][ T5968]  ? clear_bhb_loop+0x40/0x90
[   46.917193][ T5968]  ? clear_bhb_loop+0x40/0x90
[   46.917345][ T5968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.917365][ T5968] RIP: 0033:0x7ff02133e929
[   46.917381][ T5968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.917504][ T5968] RSP: 002b:00007ff01f9a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.917523][ T5968] RAX: ffffffffffffffda RBX: 00007ff021565fa0 RCX: 00007ff02133e929
[   46.917554][ T5968] RDX: 0000000020000040 RSI: 0000200000001c80 RDI: 0000000000000003
[   46.917566][ T5968] RBP: 00007ff01f9a7090 R08: 0000000000000000 R09: 0000000000000000
[   46.917579][ T5968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.917591][ T5968] R13: 0000000000000000 R14: 00007ff021565fa0 R15: 00007ffd1ba72238
[   46.917609][ T5968]  </TASK>
[   47.200050][ T6002] loop2: detected capacity change from 0 to 1024
[   47.227267][ T5969] SELinux:  Context system_u:object_r:mouse_device_t:s0 is not valid (left unmapped).
[   47.228943][ T5976] netlink: 24 bytes leftover after parsing attributes in process `syz.4.435'.
[   47.297352][ T6002] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.441: inode #327696: comm syz.2.441: iget: illegal inode #
[   47.312527][ T6002] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.441: error while reading EA inode 327696 err=-117
[   47.380962][ T6039] FAULT_INJECTION: forcing a failure.
[   47.380962][ T6039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.394091][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.3.444 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   47.394149][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   47.394160][ T6039] Call Trace:
[   47.394166][ T6039]  <TASK>
[   47.394173][ T6039]  __dump_stack+0x1d/0x30
[   47.394226][ T6039]  dump_stack_lvl+0xe8/0x140
[   47.394245][ T6039]  dump_stack+0x15/0x1b
[   47.394301][ T6039]  should_fail_ex+0x265/0x280
[   47.394331][ T6039]  should_fail+0xb/0x20
[   47.394419][ T6039]  should_fail_usercopy+0x1a/0x20
[   47.394451][ T6039]  _copy_from_user+0x1c/0xb0
[   47.394472][ T6039]  __sys_bpf+0x178/0x790
[   47.394564][ T6039]  __x64_sys_bpf+0x41/0x50
[   47.394590][ T6039]  x64_sys_call+0x2478/0x2fb0
[   47.394612][ T6039]  do_syscall_64+0xd2/0x200
[   47.394661][ T6039]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.394682][ T6039]  ? clear_bhb_loop+0x40/0x90
[   47.394699][ T6039]  ? clear_bhb_loop+0x40/0x90
[   47.394719][ T6039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.394809][ T6039] RIP: 0033:0x7f02a42ee929
[   47.394824][ T6039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.394885][ T6039] RSP: 002b:00007f02a2957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   47.394954][ T6039] RAX: ffffffffffffffda RBX: 00007f02a4515fa0 RCX: 00007f02a42ee929
[   47.394967][ T6039] RDX: 0000000000000028 RSI: 0000200000000440 RDI: 0000000000000012
[   47.394988][ T6039] RBP: 00007f02a2957090 R08: 0000000000000000 R09: 0000000000000000
[   47.395007][ T6039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.395019][ T6039] R13: 0000000000000000 R14: 00007f02a4515fa0 R15: 00007ffddd2122a8
[   47.395038][ T6039]  </TASK>
[   47.605703][   T29] kauditd_printk_skb: 141 callbacks suppressed
[   47.605717][   T29] audit: type=1400 audit(1751598576.051:1161): avc:  denied  { read write } for  pid=6054 comm="syz.4.448" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   47.660930][ T6055] netlink: 8 bytes leftover after parsing attributes in process `syz.4.448'.
[   47.665242][ T6060] loop3: detected capacity change from 0 to 1024
[   47.676606][   T29] audit: type=1400 audit(1751598576.051:1162): avc:  denied  { open } for  pid=6054 comm="syz.4.448" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   47.701729][   T29] audit: type=1400 audit(1751598576.061:1163): avc:  denied  { read write } for  pid=3303 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   47.725990][   T29] audit: type=1400 audit(1751598576.061:1164): avc:  denied  { open } for  pid=3303 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   47.750197][   T29] audit: type=1400 audit(1751598576.061:1165): avc:  denied  { ioctl } for  pid=3303 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   47.775780][   T29] audit: type=1400 audit(1751598576.061:1166): avc:  denied  { map_create } for  pid=6057 comm="syz.2.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   47.795016][   T29] audit: type=1400 audit(1751598576.081:1167): avc:  denied  { read } for  pid=6057 comm="syz.2.450" dev="nsfs" ino=4026532460 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   47.816119][   T29] audit: type=1400 audit(1751598576.081:1168): avc:  denied  { open } for  pid=6057 comm="syz.2.450" path="net:[4026532460]" dev="nsfs" ino=4026532460 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   47.839375][   T29] audit: type=1400 audit(1751598576.081:1169): avc:  denied  { create } for  pid=6057 comm="syz.2.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   47.858773][   T29] audit: type=1400 audit(1751598576.081:1170): avc:  denied  { map_read map_write } for  pid=6057 comm="syz.2.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   47.965942][ T6045] geneve2: entered promiscuous mode
[   47.971255][ T6045] geneve2: entered allmulticast mode
[   47.980140][ T6079] loop4: detected capacity change from 0 to 1764
[   48.012145][ T6086] loop1: detected capacity change from 0 to 512
[   48.019370][ T6086] ext4: Unknown parameter 'smackfsfloor'
[   48.126473][ T6105] loop4: detected capacity change from 0 to 1024
[   48.154422][ T6105] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.456: inode #327696: comm syz.4.456: iget: illegal inode #
[   48.168724][ T6105] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.456: error while reading EA inode 327696 err=-117
[   48.299178][ T6118] lo speed is unknown, defaulting to 1000
[   48.305104][ T6118] lo speed is unknown, defaulting to 1000
[   48.311153][ T6118] lo speed is unknown, defaulting to 1000
[   48.317157][ T6118] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   48.324666][ T6118] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   48.354561][ T6121] lo speed is unknown, defaulting to 1000
[   48.483055][ T6118] lo speed is unknown, defaulting to 1000
[   48.489210][ T6118] lo speed is unknown, defaulting to 1000
[   48.495385][ T6118] lo speed is unknown, defaulting to 1000
[   48.501388][ T6118] lo speed is unknown, defaulting to 1000
[   48.507498][ T6118] lo speed is unknown, defaulting to 1000
[   48.593355][ T6152] FAULT_INJECTION: forcing a failure.
[   48.593355][ T6152] name failslab, interval 1, probability 0, space 0, times 0
[   48.606463][ T6152] CPU: 0 UID: 0 PID: 6152 Comm: syz.0.460 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   48.606486][ T6152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.606496][ T6152] Call Trace:
[   48.606501][ T6152]  <TASK>
[   48.606515][ T6152]  __dump_stack+0x1d/0x30
[   48.606536][ T6152]  dump_stack_lvl+0xe8/0x140
[   48.606556][ T6152]  dump_stack+0x15/0x1b
[   48.606573][ T6152]  should_fail_ex+0x265/0x280
[   48.606602][ T6152]  ? cma_alloc_port+0x3d/0x2f0
[   48.606644][ T6152]  should_failslab+0x8c/0xb0
[   48.606672][ T6152]  __kmalloc_cache_noprof+0x4c/0x320
[   48.606801][ T6152]  cma_alloc_port+0x3d/0x2f0
[   48.606818][ T6152]  rdma_bind_addr_dst+0x19fb/0x1cf0
[   48.606843][ T6152]  ? mntput_no_expire+0x6f/0x3c0
[   48.606870][ T6152]  ? mntput+0x4b/0x80
[   48.606940][ T6152]  ? terminate_walk+0x27f/0x2a0
[   48.606959][ T6152]  rdma_resolve_addr+0x424/0x1340
[   48.606984][ T6152]  ? _parse_integer_limit+0x170/0x190
[   48.607025][ T6152]  ucma_resolve_ip+0x212/0x2e0
[   48.607048][ T6152]  ucma_write+0x1b3/0x250
[   48.607111][ T6152]  ? __pfx_ucma_write+0x10/0x10
[   48.607130][ T6152]  vfs_write+0x266/0x8e0
[   48.607159][ T6152]  ? __rcu_read_unlock+0x4f/0x70
[   48.607188][ T6152]  ? __fget_files+0x184/0x1c0
[   48.607204][ T6152]  ksys_write+0xda/0x1a0
[   48.607231][ T6152]  __x64_sys_write+0x40/0x50
[   48.607261][ T6152]  x64_sys_call+0x2cdd/0x2fb0
[   48.607307][ T6152]  do_syscall_64+0xd2/0x200
[   48.607324][ T6152]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.607349][ T6152]  ? clear_bhb_loop+0x40/0x90
[   48.607370][ T6152]  ? clear_bhb_loop+0x40/0x90
[   48.607389][ T6152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.607430][ T6152] RIP: 0033:0x7ff02133e929
[   48.607444][ T6152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.607460][ T6152] RSP: 002b:00007ff01f9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   48.607476][ T6152] RAX: ffffffffffffffda RBX: 00007ff021565fa0 RCX: 00007ff02133e929
[   48.607486][ T6152] RDX: 0000000000000048 RSI: 0000200000000280 RDI: 0000000000000003
[   48.607533][ T6152] RBP: 00007ff01f9a7090 R08: 0000000000000000 R09: 0000000000000000
[   48.607611][ T6152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.607621][ T6152] R13: 0000000000000000 R14: 00007ff021565fa0 R15: 00007ffd1ba72238
[   48.607636][ T6152]  </TASK>
[   48.936984][ T6158] netlink: 32 bytes leftover after parsing attributes in process `syz.2.463'.
[   49.246770][ T6197] loop0: detected capacity change from 0 to 1024
[   49.319617][ T6214] 9pnet_fd: Insufficient options for proto=fd
[   49.326396][ T6214] Cannot find add_set index 0 as target
[   49.350909][ T6221] netlink: 32 bytes leftover after parsing attributes in process `syz.0.475'.
[   49.406315][ T6227] loop0: detected capacity change from 0 to 512
[   49.434612][ T6227] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.980791][ T6253] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   49.987943][ T6253] netlink: 12 bytes leftover after parsing attributes in process `syz.1.483'.
[   50.097379][ T6260] netlink: 24 bytes leftover after parsing attributes in process `syz.2.485'.
[   50.143440][ T6260] netlink: 24 bytes leftover after parsing attributes in process `syz.2.485'.
[   50.189905][ T6277] can: request_module (can-proto-0) failed.
[   50.310192][ T6288] loop1: detected capacity change from 0 to 1764
[   50.514577][ T6311] program syz.2.494 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   50.566840][ T6322] netlink: 24 bytes leftover after parsing attributes in process `syz.0.498'.
[   50.600780][ T6322] netlink: 24 bytes leftover after parsing attributes in process `syz.0.498'.
[   50.681954][ T6317] loop3: detected capacity change from 0 to 1764
[   50.690340][ T6317] iso9660: Bad value for 'gid'
[   50.695209][ T6317] iso9660: Bad value for 'gid'
[   50.756274][ T6346] FAULT_INJECTION: forcing a failure.
[   50.756274][ T6346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.769559][ T6346] CPU: 1 UID: 0 PID: 6346 Comm: syz.0.501 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   50.769644][ T6346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.769654][ T6346] Call Trace:
[   50.769660][ T6346]  <TASK>
[   50.769669][ T6346]  __dump_stack+0x1d/0x30
[   50.769690][ T6346]  dump_stack_lvl+0xe8/0x140
[   50.769710][ T6346]  dump_stack+0x15/0x1b
[   50.769760][ T6346]  should_fail_ex+0x265/0x280
[   50.769788][ T6346]  should_fail+0xb/0x20
[   50.769808][ T6346]  should_fail_usercopy+0x1a/0x20
[   50.769868][ T6346]  _copy_to_user+0x20/0xa0
[   50.769888][ T6346]  __x64_sys_getrlimit+0x104/0x150
[   50.769910][ T6346]  x64_sys_call+0x1657/0x2fb0
[   50.769945][ T6346]  do_syscall_64+0xd2/0x200
[   50.769960][ T6346]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.770050][ T6346]  ? clear_bhb_loop+0x40/0x90
[   50.770071][ T6346]  ? clear_bhb_loop+0x40/0x90
[   50.770152][ T6346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.770226][ T6346] RIP: 0033:0x7ff02133e929
[   50.770242][ T6346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.770272][ T6346] RSP: 002b:00007ff01f9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000061
[   50.770289][ T6346] RAX: ffffffffffffffda RBX: 00007ff021565fa0 RCX: 00007ff02133e929
[   50.770301][ T6346] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000001
[   50.770318][ T6346] RBP: 00007ff01f9a7090 R08: 0000000000000000 R09: 0000000000000000
[   50.770328][ T6346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.770341][ T6346] R13: 0000000000000000 R14: 00007ff021565fa0 R15: 00007ffd1ba72238
[   50.770356][ T6346]  </TASK>
[   50.770561][ T6353] loop3: detected capacity change from 0 to 1764
[   50.831203][ T6356] loop1: detected capacity change from 0 to 512
[   50.966299][ T6363] loop3: detected capacity change from 0 to 512
[   50.982632][ T6356] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.997626][ T6363] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.112965][ T6378] loop0: detected capacity change from 0 to 1024
[   51.145561][ T6378] EXT4-fs: Invalid want_extra_isize 0
[   51.262758][ T6396] geneve2: entered promiscuous mode
[   51.268031][ T6396] geneve2: entered allmulticast mode
[   51.353971][ T6416] FAULT_INJECTION: forcing a failure.
[   51.353971][ T6416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.367157][ T6416] CPU: 1 UID: 0 PID: 6416 Comm: syz.3.509 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   51.367213][ T6416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   51.367223][ T6416] Call Trace:
[   51.367229][ T6416]  <TASK>
[   51.367236][ T6416]  __dump_stack+0x1d/0x30
[   51.367254][ T6416]  dump_stack_lvl+0xe8/0x140
[   51.367326][ T6416]  dump_stack+0x15/0x1b
[   51.367342][ T6416]  should_fail_ex+0x265/0x280
[   51.367366][ T6416]  should_fail+0xb/0x20
[   51.367387][ T6416]  should_fail_usercopy+0x1a/0x20
[   51.367485][ T6416]  _copy_from_user+0x1c/0xb0
[   51.367533][ T6416]  ___sys_sendmsg+0xc1/0x1d0
[   51.367619][ T6416]  __x64_sys_sendmsg+0xd4/0x160
[   51.367650][ T6416]  x64_sys_call+0x2999/0x2fb0
[   51.367667][ T6416]  do_syscall_64+0xd2/0x200
[   51.367682][ T6416]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   51.367876][ T6416]  ? clear_bhb_loop+0x40/0x90
[   51.367893][ T6416]  ? clear_bhb_loop+0x40/0x90
[   51.367910][ T6416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.367927][ T6416] RIP: 0033:0x7f02a42ee929
[   51.367981][ T6416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.367995][ T6416] RSP: 002b:00007f02a2936038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   51.368012][ T6416] RAX: ffffffffffffffda RBX: 00007f02a4516080 RCX: 00007f02a42ee929
[   51.368025][ T6416] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000006
[   51.368036][ T6416] RBP: 00007f02a2936090 R08: 0000000000000000 R09: 0000000000000000
[   51.368079][ T6416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.368092][ T6416] R13: 0000000000000000 R14: 00007f02a4516080 R15: 00007ffddd2122a8
[   51.368109][ T6416]  </TASK>
[   51.562483][ T6407] lo speed is unknown, defaulting to 1000
[   51.585362][ T6420] loop0: detected capacity change from 0 to 512
[   51.616385][ T6433] loop4: detected capacity change from 0 to 1024
[   51.639245][ T6420] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.678303][ T6459] 9pnet_fd: Insufficient options for proto=fd
[   51.684917][ T6459] syz!: rxe_newlink: already configured on team_slave_0
[   51.695519][ T6459] netlink: 12 bytes leftover after parsing attributes in process `syz.3.514'.
[   51.713892][ T6462] netlink: 9 bytes leftover after parsing attributes in process `syz.2.515'.
[   51.723657][ T6463] netlink: 9 bytes leftover after parsing attributes in process `syz.2.515'.
[   51.735215][ T6462] 0·: renamed from hsr_slave_1
[   51.735240][ T6433] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.512: Allocating blocks 449-513 which overlap fs metadata
[   51.756384][ T6462] 0·: entered allmulticast mode
[   51.763461][ T6462] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[   51.779079][ T6463] 1·: renamed from 
c0· (while UP)
[   51.787363][ T6432] EXT4-fs (loop4): pa ffff888106dd2230: logic 48, phys. 177, len 21
[   51.795483][ T6432] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   51.796879][ T6463] A link change request failed with some changes committed already. Interface 
c1· may have been left with an inconsistent configuration, please check.
[   51.838383][ T6468] loop1: detected capacity change from 0 to 1024
[   51.853518][ T6468] EXT4-fs: Invalid want_extra_isize 0
[   51.875389][ T2994] ==================================================================
[   51.883584][ T2994] BUG: KCSAN: data-race in d_delete / step_into
[   51.889825][ T2994] 
[   51.892142][ T2994] read-write to 0xffff888106f1ed80 of 4 bytes by task 3743 on cpu 0:
[   51.900196][ T2994]  d_delete+0x15a/0x180
[   51.904347][ T2994]  d_delete_notify+0x32/0x100
[   51.909026][ T2994]  vfs_unlink+0x30b/0x420
[   51.913442][ T2994]  do_unlinkat+0x28e/0x4c0
[   51.917855][ T2994]  __x64_sys_unlink+0x2e/0x40
[   51.922530][ T2994]  x64_sys_call+0x22a6/0x2fb0
[   51.927211][ T2994]  do_syscall_64+0xd2/0x200
[   51.931701][ T2994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.937587][ T2994] 
[   51.939899][ T2994] read to 0xffff888106f1ed80 of 4 bytes by task 2994 on cpu 1:
[   51.947429][ T2994]  step_into+0xe3/0x820
[   51.951583][ T2994]  walk_component+0x162/0x220
[   51.956252][ T2994]  path_lookupat+0xfe/0x2a0
[   51.960750][ T2994]  filename_lookup+0x147/0x340
[   51.965528][ T2994]  do_readlinkat+0x7d/0x320
[   51.970032][ T2994]  __x64_sys_readlink+0x47/0x60
[   51.974882][ T2994]  x64_sys_call+0x2cf3/0x2fb0
[   51.979568][ T2994]  do_syscall_64+0xd2/0x200
[   51.984074][ T2994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.989963][ T2994] 
[   51.992275][ T2994] value changed: 0x00300108 -> 0x00004008
[   51.997974][ T2994] 
[   52.000285][ T2994] Reported by Kernel Concurrency Sanitizer on:
[   52.006481][ T2994] CPU: 1 UID: 0 PID: 2994 Comm: udevd Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[   52.018471][ T2994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.028525][ T2994] ==================================================================
[   52.041406][ T6477] loop2: detected capacity change from 0 to 512
[   52.084195][ T6477] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)