last executing test programs:

1m16.616992257s ago: executing program 4 (id=1319):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000c00)={0x0, 0x1c, &(0x7f0000000bc0)=[@in6={0xa, 0x4e20, 0x251, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x6}]}, &(0x7f0000000540)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000200)={r3, 0xfffe, 0x20}, &(0x7f00000001c0)=0x18)
syz_read_part_table(0x1060, &(0x7f0000001140)="$eJzsz8FtwkAQBdAfbby2lUMuKcC3HJIrjYBogipogTa4QBF0QRN0ALINLSAf3tNKX7s7M9KERTjM8XvOaihN0+aetEnK8399SfI33brplG4syddrwGf6MT6SPqchye6WZPNzber4Xup/kn2ffCd1bqnZHt++KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAs0CMAAP//M3sKqQ==")
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000006a00a3030000f9000000000000000002000000000800010000000000"], 0x20}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYRES32=r2], 0x50)
r8 = io_uring_setup(0x3aee, &(0x7f0000000c40)={0x0, 0x2636, 0x1000, 0x2, 0x387})
io_uring_register$IORING_REGISTER_BUFFERS2(r8, 0xf, &(0x7f0000000b40)={0x3, 0x1, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000400)=""/165, 0xa5}, {&(0x7f00000004c0)=""/107, 0x6b}, {&(0x7f0000000540)=""/69, 0x45}], &(0x7f0000000b00)=[0x57f8, 0xb000000000000000, 0x2, 0x853]}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000e00000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xa5d4}, 0x4c58, 0x9, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x2000, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000003, 0x13, r9, 0x0)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073727a3100000000080041007369770014003300626f6e6430"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
setgroups(0x0, 0x0)
getgroups(0x0, 0x0)
fsopen(&(0x7f0000000040)='ocfs2\x00', 0x1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@jqfmt_vfsold}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
utime(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)={0xc7, 0x7})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

1m15.062039539s ago: executing program 4 (id=1333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e40)={0x3, 0xc, &(0x7f0000001d00)=ANY=[@ANYBLOB="18002000000000000000000000000000181100009024e9026be82b5272cdfebd8ff39e781fb55f7cda214e19d328562c040000000000000099c021a85fd552d13521e24a5c7e501a54467918fa11080f03a3a537a3a6e76190b55bee4e86680a2fcb9109f151b90883b0ff9dc7d2cce63ca3bea172c1ad06163e146fb3860d5ccd2338db7ab5f14a84db453c728501d824022eaaad", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)

1m14.949833561s ago: executing program 4 (id=1335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4ffb176b8b86048e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x64040003)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={r0, &(0x7f0000000f80)="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", &(0x7f0000000340)=""/202}, 0x20)
socket(0x10, 0x3, 0x0)
r2 = semget$private(0x0, 0x4000000009, 0x0)
semop(r2, &(0x7f0000000080)=[{0x0, 0xec7b, 0x1000}], 0x1)
semop(r2, &(0x7f0000000140)=[{0x0, 0xffff}], 0x1)
semtimedop(r2, &(0x7f0000000000)=[{0x4, 0x2}, {0x1, 0xfb7b, 0x1000}], 0x2, &(0x7f0000000040))
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000a00)=""/157}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth0_vlan\x00', 0x800})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r5 = fcntl$dupfd(r4, 0x0, r3)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000200)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x100, 0x0, 0x7995}, 0x8, 0xffffffff, 0x800, 0x48000000, 0x2, 0x0, 0x0})

1m14.054539634s ago: executing program 4 (id=1346):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
setfsgid(0xffffffffffffffff)
syz_emit_ethernet(0x66, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x0, 0x58, 0xffff, 0x0, 0x0, 0x2f, 0x0, @local, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x22eb}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0xa888, 0x88be, 0x8000000, {{0x0, 0x1, 0xfe}}}, {0x8, 0x22eb, 0x0, {{}, 0x2, {0x9}}}}}}}}, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000038540000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002800038024000080040002800400078004000180080003"], 0xe8}}, 0x0)
sendmmsg$sock(r1, &(0x7f0000002280)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e20, @private=0xa010101}, 0x3, 0x0, 0x1, 0x4}}, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000580)="dbe80f6c0efff2861bc4a4cd13", 0xd}], 0x1}}], 0x1, 0x4048800)
r3 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x1, &(0x7f00000003c0)=0x9, 0x4)
setsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x1, &(0x7f0000000880)=0x6, 0x4)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0x200, 0x0, 0x40002, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r5}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x24, 0x13, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x10)
munmap(&(0x7f000045e000/0x1000)=nil, 0x1000)
r6 = socket(0x10, 0x803, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x44b, &(0x7f00000004c0)="$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")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r8, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
write$binfmt_script(r7, &(0x7f0000000040), 0x208e24b)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1m13.371746213s ago: executing program 4 (id=1357):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
unshare(0x6a040000)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
write$UHID_CREATE2(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1aa)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000600)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
iopl(0x3)
io_uring_setup(0x5f07, &(0x7f0000000fc0)={0x0, 0xb452, 0x8, 0x1, 0x35e})
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x1018, r3}, './file0\x00'})

1m11.672398127s ago: executing program 4 (id=1375):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)

1m11.658601287s ago: executing program 32 (id=1375):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)

2.414423456s ago: executing program 5 (id=2609):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
shutdown(r2, 0x1)

2.388507157s ago: executing program 0 (id=2611):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x7, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400500142603600e1208000b0000000401a8001600a400014002000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffec", 0xbd}, {&(0x7f0000000080)="dd4289470cce256876f2c9b17d97b68f2726ed8a10148545240f9f", 0x1b}], 0x2}, 0x410)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$kcm(0x1e, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0x1}], 0x1}, 0x0)
recvmsg(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000dc0)=""/255, 0xff}], 0x1, &(0x7f0000000480)=""/5, 0x5}, 0x40000010)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=<r5=>0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0034ee0000030000000000000000fec82d6805000000000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYRESHEX=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYRES16=r4, @ANYBLOB="a0c1b6a93cd6eae1324606af1f7d74dbd869740f563f1540c5b58d63fea6ee6b81ca6e4093d1e86bedb6363891b7e919c5a6e8e6c690674d716d0fa261f35f0e681226734ecaf09ebf324c462ef1bf66280de771998c0ada50d65fc52951a02a5339551170fd3a5cfc66710277a067ad024ca55090610a6fbbd9773562d6a41e223e79dd5d4940fd4807c1b4dd134293ec59f6bb36b24164f3938dadf60341f06c1cc1b3594bc11ace262e8a67490dbac118", @ANYRES8=r1, @ANYRESOCT=r5, @ANYRESOCT=r3, @ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a00000003000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000ed98b413d24dba9bfb5ab203b90b4000000000000d8af"], 0x50)
syz_open_dev$vcsu(&(0x7f0000000540), 0x2, 0x440800)
utimes(&(0x7f0000000000)='./cgroup\x00', 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_vs\x00')
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
socket$unix(0x1, 0x5, 0x0)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r8, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r8, 0x4004743c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r9 = socket$netlink(0x10, 0x3, 0x14)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x4000)
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f00000001c0)={0x1000003, 0x300102, 0x0, 'queue1\x00', 0xffffffff})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(0xffffffffffffffff, 0xc02c5341, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x800)

2.303798938s ago: executing program 5 (id=2614):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x200000001300, 0x200000001330], 0x0, 0x0, &(0x7f0000001300)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108)

2.246186309s ago: executing program 5 (id=2616):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9, 0x0, 0x0, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, 0xffffffffffffffff, 0x0)
r5 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r5, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0006}]})
r7 = syz_open_dev$usbfs(&(0x7f0000000380), 0x3fb8, 0x1)
mmap(&(0x7f00009a4000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000006000000aa0b"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000002c0)=""/251, &(0x7f0000000940), &(0x7f0000000200), 0xa7c, r8}, 0x38)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {0x0, 0x1}, 0xfffffff8, 0x25, &(0x7f0000000040)={0x60, 0x11, 0x8001, 0x1}, 0x53, 0x6, 0xd0000, 0x0, 0x9e, 0x68e, 0x0})

2.17818527s ago: executing program 0 (id=2617):
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x80, 0x24)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0xbf39)
pread64(r0, &(0x7f00000002c0)=""/124, 0x7c, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000400)={&(0x7f0000000280)="7832864c2477fc4e8100414561a9b2ec00d9fe082d12a6394ecfd03b905388f698d23ec98cff967d66ce8c0058469a67b920f9e0f79d", &(0x7f00000002c0)=""/64, &(0x7f0000000340)="1f46e1656eae92ebca2eaec3e432f2b5c2d4d3b364c26a267242dbd98e15ac12d7e5a26ffb07ceed2c107c383d23d146b47601c34c2eff6c42e66cd2ff9d0cce13e22e1755ac2fb3be29130723a7b9255d932070fbacde352667fc894f35cb8de16b60b1d35d0d8d9deadafadd9d675fa1db3b34efd4c952872e764363ed0637d55bed089c4f0263220d98842232811e9b141010aedcd795953faf44c9cc60384addbf5a84cb499e154d5f6d8f6777017e0a91", &(0x7f00000004c0)="9b24f4a38474f874c1b8eb839ee2ccd5e7e6320e26a9e9fe15e1144d6d5635f34e7579b5c58a1e80b9b4aab984eaf298d8ce3ffe0d5c545a964bee8e674a980ca8e8f45cb3982e41a70a9b55b4cb57f048b4c6111f805cb9fdb1ddc5e2368debe461605c95febcb89d1818249537be0d10658880b42d0168a2d3a0f2ce5a391e78ccf47ae3863f8bb3abbb39d73ddbb834d906ad7e67b9de55b1f86cf6a8540d903adc", 0x9, r2, 0x4}, 0x38)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000060000000000d08edff10000005f0000616100"], 0x0, 0x2b, 0x0, 0x9, 0x0, 0x0, @void, @value}, 0x28)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r4)
sendmsg$NL80211_CMD_SET_BEACON(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000e00000013000e001c040100040771070101ffff00031500"], 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r6 = perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x80, 0x3, 0x5, 0x81, 0xa, 0x0, 0xffffffffffffffff, 0x100, 0xc, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x7f, 0x1}, 0x0, 0x9, 0x5, 0x7, 0x9, 0x1000, 0x9, 0x0, 0x376, 0x0, 0x7}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001040)=@newqdisc={0x94, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0xc, 0x0, 0x1, [{0xfffffffffffffd60}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x1, [], 0x0, [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6]}}]}}]}, 0x94}}, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r6, 0x4008240b, &(0x7f0000000140)={0x0, 0x80, 0x1, 0x40, 0x0, 0x9, 0x0, 0x3ff, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10, 0xe38f8d266b61334a, @perf_bp={&(0x7f0000000100), 0x4}, 0x104410, 0x1, 0x1, 0x10, 0x8, 0x1, 0x0, 0x0, 0x3, 0x0, 0x3})
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x6}, 0x18)
r11 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
read$hiddev(r11, &(0x7f0000000a00)=""/159, 0x9f)

2.095585791s ago: executing program 5 (id=2618):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000000)='./file1\x00', 0x7a8)
write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00ecffffff940200000000000040000000000000004d0200000000000000"], 0x78)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

2.063799521s ago: executing program 5 (id=2619):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000008000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000840)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendfile(r0, r0, 0x0, 0x3fffff)

2.026957222s ago: executing program 5 (id=2620):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc2001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
timer_getoverrun(0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000004, 0x12, r2, 0x0)
pipe2(&(0x7f0000001cc0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x800)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_usb_connect(0x5, 0x0, 0x0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x19, &(0x7f00000004c0)=ANY=[@ANYBLOB="19039e3cebc2c41dad6fa3d6000080000000000000000000007062e3fc61ceac2411b5f1c8b0a9475cca50a8f317900cff523ae3675815451782e57052c0296d7634037d42b8a74eced28cd9a75bcf03000000000000009bf4eb2815fbf5bb6d2ea188c0d9751afc47f7596eac0fa8c5710a82ad00bc8eeaad12477f1ad0fac25f38076bcb4630380d628d331d0cffee519e2d07c97094e3320f3bc15e0bbd6c13c3bddb01e5f3021a2bd69daaf5ba4a517ae79a4226144c6fb096825c9a62c5bb94f49c67996769344114"]}]})
r6 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r6, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
sendmsg$inet(r6, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}], 0x18, 0x4c00}, 0x40000)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0)
r7 = syz_io_uring_setup(0x4169, &(0x7f0000000200)={0x0, 0xffffffff, 0x10100}, &(0x7f0000000480), &(0x7f0000000300)=<r8=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000280)={0x0, 0xc5f7}, &(0x7f0000000040)=<r9=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r9, r8, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r7, 0x48e9, 0x0, 0x0, 0x0, 0x0)
write$binfmt_misc(r5, &(0x7f0000000000), 0xfffffecc)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})

1.962958183s ago: executing program 0 (id=2621):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x80, 0x24)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0xbf39)
pread64(r1, &(0x7f00000002c0)=""/124, 0x7c, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000400)={&(0x7f0000000280)="7832864c2477fc4e8100414561a9b2ec00d9fe082d12a6394ecfd03b905388f698d23ec98cff967d66ce8c0058469a67b920f9e0f79d", &(0x7f00000002c0)=""/64, &(0x7f0000000340)="1f46e1656eae92ebca2eaec3e432f2b5c2d4d3b364c26a267242dbd98e15ac12d7e5a26ffb07ceed2c107c383d23d146b47601c34c2eff6c42e66cd2ff9d0cce13e22e1755ac2fb3be29130723a7b9255d932070fbacde352667fc894f35cb8de16b60b1d35d0d8d9deadafadd9d675fa1db3b34efd4c952872e764363ed0637d55bed089c4f0263220d98842232811e9b141010aedcd795953faf44c9cc60384addbf5a84cb499e154d5f6d8f6777017e0a91", &(0x7f00000004c0)="9b24f4a38474f874c1b8eb839ee2ccd5e7e6320e26a9e9fe15e1144d6d5635f34e7579b5c58a1e80b9b4aab984eaf298d8ce3ffe0d5c545a964bee8e674a980ca8e8f45cb3982e41a70a9b55b4cb57f048b4c6111f805cb9fdb1ddc5e2368debe461605c95febcb89d1818249537be0d10658880b42d0168a2d3a0f2ce5a391e78ccf47ae3863f8bb3abbb39d73ddbb834d906ad7e67b9de55b1f86cf6a8540d903adc", 0x9, 0xffffffffffffffff, 0x4}, 0x38)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000060000000000d08edff10000005f0000616100"], 0x0, 0x2b, 0x0, 0x9, 0x0, 0x0, @void, @value}, 0x28)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
sendmsg$NL80211_CMD_SET_BEACON(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000e00000013000e001c040100040771070101ffff00031500"], 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r5 = perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x80, 0x3, 0x5, 0x81, 0xa, 0x0, 0xffffffffffffffff, 0x100, 0xc, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x7f, 0x1}, 0x0, 0x9, 0x5, 0x7, 0x9, 0x1000, 0x9, 0x0, 0x376, 0x0, 0x7}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r6 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', <r7=>0x0})
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001040)=@newqdisc={0x94, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0xc, 0x0, 0x1, [{0xfffffffffffffd60}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x1, [], 0x0, [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6]}}]}}]}, 0x94}}, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r5, 0x4008240b, &(0x7f0000000140)={0x0, 0x80, 0x1, 0x40, 0x0, 0x9, 0x0, 0x3ff, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10, 0xe38f8d266b61334a, @perf_bp={&(0x7f0000000100), 0x4}, 0x104410, 0x1, 0x1, 0x10, 0x8, 0x1, 0x0, 0x0, 0x3, 0x0, 0x3})
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x6}, 0x18)
r10 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
read$hiddev(r10, &(0x7f0000000a00)=""/159, 0x9f)

1.497200069s ago: executing program 2 (id=2627):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x5, 0x2240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x4200, 0x0, 0x4, 0x8, 0x0, 0x3, 0x9f43, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
unshare(0x6a040000)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
write$UHID_CREATE2(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1aa)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b700000000000000"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
iopl(0x3)
io_uring_setup(0x5f07, &(0x7f0000000fc0)={0x0, 0xb452, 0x8, 0x1, 0x35e})
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x1018, r3}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mm_vmscan_lru_shrink_active\x00'}, 0x18)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1.151961224s ago: executing program 2 (id=2632):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_format(r0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILE_ALLOC_RANGE(r0, 0x19, &(0x7f0000000000)={0xfffffffd, 0xfffffffd, 0x200}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
open_by_handle_at(r2, &(0x7f0000000080)=ANY=[@ANYRES16=r2, @ANYRES16=r0], 0x1c482)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioperm(0x0, 0x5, 0x4000000000000020)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x2, @perf_bp={0x0, 0xa}, 0x1000, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x2, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r3 = openat$selinux_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$selinux_policy(0xffffff9c, 0x0, 0x0, 0x0)
write$selinux_load(r3, &(0x7f0000000000)=ANY=[], 0xffa8)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff})
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2}, 0x2, r7}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0xffffffff, 0x1, 0x400, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.138011104s ago: executing program 2 (id=2633):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x5, 0x2240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x4200, 0x0, 0x4, 0x8, 0x0, 0x3, 0x9f43, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
unshare(0x6a040000)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
write$UHID_CREATE2(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0b00000073797a3000000000000000000000000000000000000000760000000000000000000000000000000000000000000000000000000000000079e3e4e83f1d8a18793082880000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009200090009000000000100000900000008000000ca7282b0fea0d99e28850f0507bf956eb275c2f92ebfe95e5c695a3bfe26d7733887f46ed2245743d472cc944fe5905be8f0132e547d967675f089ee95d69a0a22dfc554482bc471bb00cf992acd7417ff5a16980faa2b91f550e36a8225503b75b892d4f50fb7d7853183886ad374526dbb45a110d1b9bd74c0b13980d7f85f112e943555588137f441310013f24241db2104b97a09f5071633637aafd97400424890bb91b43f97c8c03372d0ccaa393233bafae4fbc8a665a803a4c2f489bfebc19dee43b5373a2bf39fe3ecf5f48ef18410bf534651781d62d5c021969d21d277dce63ed759b8f41533b271bdf5bdc0d1c3cd12271ea39200a0d63fcb2e1d80bdcb7f7e409d7863d40401f463bd133e704eba962a6d6b1f4f2a070564e7c3a1129d691dc8a855832a60e19f197ed56c76ce5ea39691f432491e9a4a36e846126299cda77e3c485d8e9cd1acfdd5e44f5abc30abffe5dd789856178220139aa245e6a0416ed6f482eb023d1a28354148ad12cc0a3e6ef02d230efe8e1c73ef77ed8f618254b5c061697dec1ff2c0711255307d9cef6ef94f2078ddeeac6fa694987753d8ee1d13be84fa9e83bd1865aceb43c97a8d2cd2"], 0x1aa)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b553850000008500"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
iopl(0x3)
io_uring_setup(0x5f07, &(0x7f0000000fc0)={0x0, 0xb452, 0x8, 0x1, 0x35e})
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x1018, r3}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mm_vmscan_lru_shrink_active\x00'}, 0x18)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1.087434065s ago: executing program 0 (id=2634):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000640)=@newtaction={0x18, 0x31, 0x3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

960.176337ms ago: executing program 0 (id=2635):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x7, 0x0, 0x0, 0x14000, 0x9, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x100183, 0x7ff, 0x7, 0x6, 0x81, 0x2, 0x5, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='cma_alloc_start\x00', r1, 0x0, 0x800000000000001}, 0x18)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r2 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000200))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r3, 0x0)
ftruncate(r3, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x1)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

880.464668ms ago: executing program 3 (id=2637):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x52}, 0x0)

821.499429ms ago: executing program 3 (id=2639):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xe, 0x0, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

790.775299ms ago: executing program 2 (id=2640):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x7, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400500142603600e1208000b0000000401a8001600a400014002000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffec", 0xbd}, {&(0x7f0000000080)="dd4289470cce256876f2c9b17d97b68f2726ed8a10148545240f9f", 0x1b}], 0x2}, 0x410)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$kcm(0x1e, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0x1}], 0x1}, 0x0)
recvmsg(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000dc0)=""/255, 0xff}], 0x1, &(0x7f0000000480)=""/5, 0x5}, 0x40000010)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=<r5=>0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0034ee0000030000000000000000fec82d6805000000000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYRESHEX=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYRES16=r4, @ANYBLOB="a0c1b6a93cd6eae1324606af1f7d74dbd869740f563f1540c5b58d63fea6ee6b81ca6e4093d1e86bedb6363891b7e919c5a6e8e6c690674d716d0fa261f35f0e681226734ecaf09ebf324c462ef1bf66280de771998c0ada50d65fc52951a02a5339551170fd3a5cfc66710277a067ad024ca55090610a6fbbd9773562d6a41e223e79dd5d4940fd4807c1b4dd134293ec59f6bb36b24164f3938dadf60341f06c1cc1b3594bc11ace262e8a67490dbac118", @ANYRES8=r1, @ANYRESOCT=r5, @ANYRESOCT=r3, @ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x4004743c, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x14)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x4000)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f00000001c0)={0x1000003, 0x300102, 0x0, 'queue1\x00', 0xffffffff})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(0xffffffffffffffff, 0xc02c5341, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x800)

748.718639ms ago: executing program 3 (id=2641):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x7, 0x0, 0x0, 0x14000, 0x9, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x100183, 0x7ff, 0x7, 0x6, 0x81, 0x2, 0x5, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000008500000050"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='cma_alloc_start\x00', r1, 0x0, 0x800000000000001}, 0x18)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r2 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000200))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r3, 0x0)
ftruncate(r3, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

748.17069ms ago: executing program 2 (id=2642):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet(r0, &(0x7f0000000480)=[{{&(0x7f0000000000)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x24040890)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0xd, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x101}, 0x18)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000100)={0x80, 0x8, 0xbfd, 0x8, 0x0, 0x75a1, 0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000040000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)

699.95666ms ago: executing program 2 (id=2643):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0xbf39)
pread64(r1, &(0x7f00000002c0)=""/124, 0x7c, 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000400)={&(0x7f0000000280)="7832864c2477fc4e8100414561a9b2ec00d9fe082d12a6394ecfd03b905388f698d23ec98cff967d66ce8c0058469a67b920f9e0f79d", &(0x7f00000002c0)=""/64, &(0x7f0000000340)="1f46e1656eae92ebca2eaec3e432f2b5c2d4d3b364c26a267242dbd98e15ac12d7e5a26ffb07ceed2c107c383d23d146b47601c34c2eff6c42e66cd2ff9d0cce13e22e1755ac2fb3be29130723a7b9255d932070fbacde352667fc894f35cb8de16b60b1d35d0d8d9deadafadd9d675fa1db3b34efd4c952872e764363ed0637d55bed089c4f0263220d98842232811e9b141010aedcd795953faf44c9cc60384addbf5a84cb499e154d5f6d8f6777017e0a91", &(0x7f00000004c0)="9b24f4a38474f874c1b8eb839ee2ccd5e7e6320e26a9e9fe15e1144d6d5635f34e7579b5c58a1e80b9b4aab984eaf298d8ce3ffe0d5c545a964bee8e674a980ca8e8f45cb3982e41a70a9b55b4cb57f048b4c6111f805cb9fdb1ddc5e2368debe461605c95febcb89d1818249537be0d10658880b42d0168a2d3a0f2ce5a391e78ccf47ae3863f8bb3abbb39d73ddbb834d906ad7e67b9de55b1f86cf6a8540d903adc", 0x9, r3, 0x4}, 0x38)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000060000000000d08edff10000005f0000616100"], 0x0, 0x2b, 0x0, 0x9, 0x0, 0x0, @void, @value}, 0x28)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r5)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000e00000013000e001c040100040771070101ffff00031500"], 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x0)
perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x80, 0x3, 0x5, 0x81, 0xa, 0x0, 0xffffffffffffffff, 0x100, 0xc, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x7f, 0x1}, 0x0, 0x9, 0x5, 0x7, 0x9, 0x1000, 0x9, 0x0, 0x376, 0x0, 0x7}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001040)=@newqdisc={0x94, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0xc, 0x0, 0x1, [{0xfffffffffffffd60}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x1, [], 0x0, [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6]}}]}}]}, 0x94}}, 0x0)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x6}, 0x18)
r10 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
read$hiddev(r10, &(0x7f0000000a00)=""/159, 0x9f)

496.794723ms ago: executing program 1 (id=2647):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdcb, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f00000006c0)=ANY=[@ANYRESDEC=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bff8ffffffb703000008000000b70400000000000085000000c300001b61032d87054c8325972f621c14df57f309bd9d4610629b4792e2e87a8ba2b59aff3fce65200e4d14549b8dbbf6e35bbf387909ca16a27e42c9d48a08023a5c522745c68db190c954b4385ee777baee1e0824949155ab9084e6fed7829ccf0464f0a2f97771ebf8c74a61a97c6b0d57fbfb49ffcc5b8eaf878ae3507409497f5f86fc127924"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x24, 0x28, 0xd27, 0x1000001, 0x0, {0x0, 0x0, 0x0, 0x0, {0xd, 0x9}, {0x6}, {0xffff, 0xa}}}, 0x24}}, 0x24005104)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x3, 0x80005, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa041, 0x0, 0x20000, 0xfffffffffffffffd, 0x5, 0x2, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e00"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r8, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r8, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0xfffffffffffffbff}, 0x18)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d80)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
socket$packet(0x11, 0x2, 0x300)
r10 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r10, &(0x7f0000000000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x68, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x20000010)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x2}, {0x1ff, 0x3, 0x0, 0xf}]})
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$FIONCLEX(r1, 0x5450)

386.886335ms ago: executing program 1 (id=2648):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4ffb176b8b86048e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0xc0)
pwritev2(r1, 0x0, 0x0, 0x80000000, 0x0, 0x0)

340.709686ms ago: executing program 1 (id=2649):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x52}, 0x0)

340.194746ms ago: executing program 1 (id=2650):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x5, 0x2240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x4200, 0x0, 0x4, 0x8, 0x0, 0x3, 0x9f43, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
unshare(0x6a040000)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
write$UHID_CREATE2(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1aa)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b553850000008500"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
iopl(0x3)
io_uring_setup(0x5f07, &(0x7f0000000fc0)={0x0, 0xb452, 0x8, 0x1, 0x35e})
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x1018, r3}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mm_vmscan_lru_shrink_active\x00'}, 0x18)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

96.634779ms ago: executing program 1 (id=2651):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000008000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000840)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendfile(r0, r0, 0x0, 0x3fffff)

94.255069ms ago: executing program 3 (id=2652):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xe, 0x0, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

84.511979ms ago: executing program 0 (id=2653):
syz_emit_ethernet(0x1046, &(0x7f000001a600)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6001810010101100fc000000000000000000000000000000fe8000000000000000000000000000aa00000e22004d"], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r4, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)

59.04249ms ago: executing program 1 (id=2654):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc0590, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x5, 0xa5d4}, 0x4c58, 0x5, 0x0, 0x1, 0x9, 0x20003, 0xb, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="020000000400000007000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4f23, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xb}, 0x1c)
timer_getoverrun(0x0)

227.291µs ago: executing program 3 (id=2655):
perf_event_open(&(0x7f00000007c0)={0x2, 0x80, 0x6c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x800}, 0x0, 0x0, 0x1, 0x7, 0x6, 0x0, 0x1}, 0x0, 0xffffffc000000001, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='security.selinux\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0x3}, 0x18)
keyctl$KEYCTL_MOVE(0x4, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r0, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{0x0}], 0x1, 0x0)

0s ago: executing program 3 (id=2656):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

kernel console output (not intermixed with test programs):

2][   T30] audit: type=1326 audit(1748028843.934:7063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  156.901754][ T8201] siw: device registration error -23
[  156.935697][ T8209] bridge_slave_0: left allmulticast mode
[  156.942020][ T8209] bridge_slave_0: left promiscuous mode
[  156.947978][ T8209] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.031399][   T30] audit: type=1326 audit(1748028843.974:7064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.059864][   T30] audit: type=1326 audit(1748028843.974:7065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.087494][   T30] audit: type=1326 audit(1748028843.974:7066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.115467][   T30] audit: type=1326 audit(1748028843.974:7067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.140501][   T30] audit: type=1326 audit(1748028843.974:7068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.169147][   T30] audit: type=1326 audit(1748028843.974:7069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.199648][   T30] audit: type=1326 audit(1748028843.974:7070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.225862][   T30] audit: type=1326 audit(1748028843.974:7071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.251623][   T30] audit: type=1326 audit(1748028843.974:7072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8199 comm="syz.5.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  157.363996][ T8209] bridge_slave_1: left allmulticast mode
[  157.370254][ T8209] bridge_slave_1: left promiscuous mode
[  157.376023][ T8209] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.568883][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.709329][ T8209] bond0: (slave bond_slave_0): Releasing backup interface
[  157.710237][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.737484][ T8209] bond0: (slave bond_slave_1): Releasing backup interface
[  157.763584][ T8209] team0: Port device team_slave_0 removed
[  157.783631][ T8209] team0: Port device team_slave_1 removed
[  157.792264][ T8209] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.800995][ T8209] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.811377][ T8209] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.820179][ T8209] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.881606][ T8229] IPv6: Can't replace route, no match found
[  157.909534][ T8218] lo speed is unknown, defaulting to 1000
[  157.998026][ T8238] lo speed is unknown, defaulting to 1000
[  158.040793][ T8242] siw: device registration error -23
[  158.135995][ T8254] loop5: detected capacity change from 0 to 1024
[  158.150229][ T8254] EXT4-fs: Ignoring removed bh option
[  158.156920][ T8254] EXT4-fs: inline encryption not supported
[  158.163197][ T8254] EXT4-fs: Ignoring removed i_version option
[  158.170434][ T8254] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  158.203964][ T8254] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1710: lblock 1 mapped to illegal pblock 1 (length 1)
[  158.230368][ T8254] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1710: Failed to acquire dquot type 0
[  158.272915][ T8254] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1710: Freeing blocks not in datazone - block = 0, count = 4096
[  158.297173][ T8254] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1710: Invalid inode bitmap blk 0 in block_group 0
[  158.327622][ T8254] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  158.344436][ T8254] EXT4-fs (loop5): 1 orphan inode deleted
[  158.351182][  T134] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  158.360118][ T8254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.384851][  T134] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 0
[  158.439319][ T8278] loop1: detected capacity change from 0 to 1024
[  158.448147][ T8278] EXT4-fs: Ignoring removed bh option
[  158.457481][ T8278] EXT4-fs: inline encryption not supported
[  158.464365][ T8278] EXT4-fs: Ignoring removed i_version option
[  158.500894][ T8278] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  158.531645][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.547466][ T8284] netlink: 'syz.3.1725': attribute type 4 has an invalid length.
[  158.560706][ T8278] EXT4-fs error (device loop1): ext4_map_blocks:709: inode #3: block 1: comm syz.1.1721: lblock 1 mapped to illegal pblock 1 (length 1)
[  158.581191][ T8278] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1721: Failed to acquire dquot type 0
[  158.594361][ T8278] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.1721: Freeing blocks not in datazone - block = 0, count = 4096
[  158.611276][ T8278] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1721: Invalid inode bitmap blk 0 in block_group 0
[  158.627006][ T8278] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  158.635907][  T134] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  158.641692][ T8278] EXT4-fs (loop1): 1 orphan inode deleted
[  158.658309][  T134] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 0
[  158.680127][ T8278] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.682532][ T8293] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  158.721976][ T8294] siw: device registration error -23
[  158.741956][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.760041][ T8285] mmap: syz.0.1720 (8285) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  158.828478][ T8305] __nla_validate_parse: 9 callbacks suppressed
[  158.828495][ T8305] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1733'.
[  158.890025][ T8309] loop5: detected capacity change from 0 to 1024
[  158.898037][ T8309] EXT4-fs: Ignoring removed bh option
[  158.904101][ T8309] EXT4-fs: inline encryption not supported
[  158.908935][ T8311] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1736'.
[  158.910267][ T8309] EXT4-fs: Ignoring removed i_version option
[  158.930092][ T8309] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  158.967257][ T8309] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1735: lblock 1 mapped to illegal pblock 1 (length 1)
[  159.003780][ T8322] loop2: detected capacity change from 0 to 128
[  159.016270][ T8325] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  159.037177][ T8324] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1729'.
[  159.066975][ T8322] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  159.086628][ T8309] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1735: Failed to acquire dquot type 0
[  159.099499][ T8322] ext4 filesystem being mounted at /335/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  159.118595][ T8309] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1735: Freeing blocks not in datazone - block = 0, count = 4096
[  159.141120][ T8309] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1735: Invalid inode bitmap blk 0 in block_group 0
[  159.155066][ T8309] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  159.164351][ T3358] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  159.199335][ T8309] EXT4-fs (loop5): 1 orphan inode deleted
[  159.208242][ T3358] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 0
[  159.221456][ T8309] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.248809][ T3320] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.271746][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.338577][ T8342] FAULT_INJECTION: forcing a failure.
[  159.338577][ T8342] name failslab, interval 1, probability 0, space 0, times 0
[  159.352849][ T8342] CPU: 1 UID: 0 PID: 8342 Comm: syz.3.1748 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  159.352889][ T8342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.352978][ T8342] Call Trace:
[  159.352999][ T8342]  <TASK>
[  159.353012][ T8342]  __dump_stack+0x1d/0x30
[  159.353042][ T8342]  dump_stack_lvl+0xe8/0x140
[  159.353149][ T8342]  dump_stack+0x15/0x1b
[  159.353171][ T8342]  should_fail_ex+0x265/0x280
[  159.353246][ T8342]  ? alloc_pipe_info+0xae/0x350
[  159.353304][ T8342]  should_failslab+0x8c/0xb0
[  159.353342][ T8342]  __kmalloc_cache_noprof+0x4c/0x320
[  159.353370][ T8342]  alloc_pipe_info+0xae/0x350
[  159.353403][ T8342]  splice_direct_to_actor+0x592/0x680
[  159.353539][ T8342]  ? kstrtouint_from_user+0x9f/0xf0
[  159.353578][ T8342]  ? __pfx_direct_splice_actor+0x10/0x10
[  159.353619][ T8342]  ? __rcu_read_unlock+0x4f/0x70
[  159.353648][ T8342]  ? get_pid_task+0x96/0xd0
[  159.353708][ T8342]  ? avc_policy_seqno+0x15/0x30
[  159.353733][ T8342]  do_splice_direct+0xda/0x150
[  159.353763][ T8342]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  159.353807][ T8342]  do_sendfile+0x380/0x640
[  159.353905][ T8342]  __x64_sys_sendfile64+0x105/0x150
[  159.354029][ T8342]  x64_sys_call+0xb39/0x2fb0
[  159.354059][ T8342]  do_syscall_64+0xd0/0x1a0
[  159.354089][ T8342]  ? clear_bhb_loop+0x40/0x90
[  159.354116][ T8342]  ? clear_bhb_loop+0x40/0x90
[  159.354145][ T8342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.354228][ T8342] RIP: 0033:0x7fe974bae969
[  159.354290][ T8342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.354314][ T8342] RSP: 002b:00007fe973217038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  159.354340][ T8342] RAX: ffffffffffffffda RBX: 00007fe974dd5fa0 RCX: 00007fe974bae969
[  159.354357][ T8342] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  159.354373][ T8342] RBP: 00007fe973217090 R08: 0000000000000000 R09: 0000000000000000
[  159.354475][ T8342] R10: 0001000000000004 R11: 0000000000000246 R12: 0000000000000001
[  159.354491][ T8342] R13: 0000000000000000 R14: 00007fe974dd5fa0 R15: 00007ffe51c45a98
[  159.354518][ T8342]  </TASK>
[  159.611993][ T8347] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  159.623989][ T8333] IPVS: stopping master sync thread 8347 ...
[  159.656002][ T8351] loop5: detected capacity change from 0 to 512
[  159.716585][ T8351] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.740137][ T8351] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.967069][ T8374] netlink: 'syz.2.1760': attribute type 4 has an invalid length.
[  159.973456][ T8375] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1761'.
[  159.994221][ T8351] siw: device registration error -23
[  160.285848][ T8395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1765'.
[  160.457649][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.781954][ T8408] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1773'.
[  161.922523][ T8406] loop1: detected capacity change from 0 to 512
[  161.929521][ T8406] EXT4-fs: Ignoring removed nobh option
[  162.263258][ T8406] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.023789][ T8430] loop5: detected capacity change from 0 to 1024
[  163.053192][ T8430] EXT4-fs: Ignoring removed bh option
[  163.076386][ T8430] EXT4-fs: inline encryption not supported
[  163.083080][ T8430] EXT4-fs: Ignoring removed i_version option
[  163.115090][ T8432] loop3: detected capacity change from 0 to 1764
[  163.131194][ T8430] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  163.174644][ T8430] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1780: lblock 1 mapped to illegal pblock 1 (length 1)
[  163.225365][ T8430] __quota_error: 232 callbacks suppressed
[  163.225385][ T8430] Quota error (device loop5): write_blk: dquota write failed
[  163.239399][ T8430] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  163.305326][ T8430] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1780: Failed to acquire dquot type 0
[  163.339231][ T8430] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1780: Freeing blocks not in datazone - block = 0, count = 4096
[  163.501048][ T8430] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1780: Invalid inode bitmap blk 0 in block_group 0
[  163.529839][ T8430] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  163.623074][ T8430] EXT4-fs (loop5): 1 orphan inode deleted
[  163.646865][ T8430] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.662636][ T8447] loop2: detected capacity change from 0 to 1024
[  163.671291][ T8447] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  163.683932][ T1028] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  163.706131][ T1028] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  163.715489][ T1028] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  163.742114][ T8447] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.1787: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  163.814143][ T8447] EXT4-fs error (device loop2): ext4_quota_enable:7129: comm syz.2.1787: Bad quota inode: 3, type: 0
[  163.830111][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.846867][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.899248][ T8447] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  164.119709][ T8447] EXT4-fs (loop2): mount failed
[  164.126153][ T8458] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1786'.
[  164.171519][ T8460] lo speed is unknown, defaulting to 1000
[  164.324172][   T30] audit: type=1326 audit(1748028851.404:7296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.351884][   T30] audit: type=1326 audit(1748028851.404:7297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.378813][   T30] audit: type=1326 audit(1748028851.404:7298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.405173][   T30] audit: type=1326 audit(1748028851.404:7299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.431521][   T30] audit: type=1326 audit(1748028851.414:7300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.459425][   T30] audit: type=1326 audit(1748028851.414:7301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.487841][   T30] audit: type=1326 audit(1748028851.414:7302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8459 comm="syz.5.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  164.897843][ T8479] lo speed is unknown, defaulting to 1000
[  164.945670][ T8483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1798'.
[  164.966220][ T8482] bridge_slave_0: left allmulticast mode
[  164.972755][ T8482] bridge_slave_0: left promiscuous mode
[  164.978897][ T8482] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.019133][ T8482] bridge_slave_1: left allmulticast mode
[  165.025937][ T8482] bridge_slave_1: left promiscuous mode
[  165.032224][ T8482] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.069059][ T8482] bond0: (slave bond_slave_0): Releasing backup interface
[  165.080902][ T8482] bond0: (slave bond_slave_1): Releasing backup interface
[  165.089915][ T8482] team0: Port device team_slave_0 removed
[  165.096673][ T8482] team0: Port device team_slave_1 removed
[  165.106445][ T8482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  165.118551][ T8482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  165.145545][   T23] srz1: Port: 1 Link DOWN
[  165.233268][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1800'.
[  165.305035][ T8493] siw: device registration error -23
[  165.398526][ T8504] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1809'.
[  165.483647][ T8513] lo speed is unknown, defaulting to 1000
[  165.507529][ T8519] FAULT_INJECTION: forcing a failure.
[  165.507529][ T8519] name failslab, interval 1, probability 0, space 0, times 0
[  165.522489][ T8519] CPU: 0 UID: 0 PID: 8519 Comm: syz.3.1815 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  165.522526][ T8519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.522544][ T8519] Call Trace:
[  165.522553][ T8519]  <TASK>
[  165.522563][ T8519]  __dump_stack+0x1d/0x30
[  165.522696][ T8519]  dump_stack_lvl+0xe8/0x140
[  165.522732][ T8519]  dump_stack+0x15/0x1b
[  165.522755][ T8519]  should_fail_ex+0x265/0x280
[  165.522833][ T8519]  should_failslab+0x8c/0xb0
[  165.522872][ T8519]  __kmalloc_node_noprof+0xa9/0x410
[  165.522954][ T8519]  ? __vmalloc_node_range_noprof+0x3c5/0xdf0
[  165.522990][ T8519]  __vmalloc_node_range_noprof+0x3c5/0xdf0
[  165.523098][ T8519]  ? selinux_capable+0x1f9/0x270
[  165.523127][ T8519]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  165.523168][ T8519]  __vmalloc_noprof+0x5f/0x70
[  165.523202][ T8519]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  165.523299][ T8519]  bpf_prog_alloc_no_stats+0x47/0x390
[  165.523399][ T8519]  ? bpf_prog_alloc+0x2a/0x150
[  165.523442][ T8519]  bpf_prog_alloc+0x3c/0x150
[  165.523496][ T8519]  bpf_prog_load+0x514/0x1070
[  165.523584][ T8519]  ? security_bpf+0x2b/0x90
[  165.523620][ T8519]  __sys_bpf+0x51d/0x790
[  165.523670][ T8519]  __x64_sys_bpf+0x41/0x50
[  165.523722][ T8519]  x64_sys_call+0x2478/0x2fb0
[  165.523754][ T8519]  do_syscall_64+0xd0/0x1a0
[  165.523854][ T8519]  ? clear_bhb_loop+0x40/0x90
[  165.523880][ T8519]  ? clear_bhb_loop+0x40/0x90
[  165.523905][ T8519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.523976][ T8519] RIP: 0033:0x7fe974bae969
[  165.523996][ T8519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.524017][ T8519] RSP: 002b:00007fe973217038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  165.524040][ T8519] RAX: ffffffffffffffda RBX: 00007fe974dd5fa0 RCX: 00007fe974bae969
[  165.524054][ T8519] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[  165.524071][ T8519] RBP: 00007fe973217090 R08: 0000000000000000 R09: 0000000000000000
[  165.524085][ T8519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.524162][ T8519] R13: 0000000000000000 R14: 00007fe974dd5fa0 R15: 00007ffe51c45a98
[  165.524183][ T8519]  </TASK>
[  165.524194][ T8519] syz.3.1815: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  165.789282][ T8519] CPU: 0 UID: 0 PID: 8519 Comm: syz.3.1815 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  165.789318][ T8519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.789338][ T8519] Call Trace:
[  165.789346][ T8519]  <TASK>
[  165.789438][ T8519]  __dump_stack+0x1d/0x30
[  165.789470][ T8519]  dump_stack_lvl+0xe8/0x140
[  165.789501][ T8519]  dump_stack+0x15/0x1b
[  165.789571][ T8519]  warn_alloc+0x12b/0x1a0
[  165.789672][ T8519]  ? should_failslab+0x8c/0xb0
[  165.789720][ T8519]  __vmalloc_node_range_noprof+0x455/0xdf0
[  165.789768][ T8519]  ? selinux_capable+0x1f9/0x270
[  165.789805][ T8519]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  165.789890][ T8519]  __vmalloc_noprof+0x5f/0x70
[  165.789991][ T8519]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  165.790060][ T8519]  bpf_prog_alloc_no_stats+0x47/0x390
[  165.790115][ T8519]  ? bpf_prog_alloc+0x2a/0x150
[  165.790227][ T8519]  bpf_prog_alloc+0x3c/0x150
[  165.790270][ T8519]  bpf_prog_load+0x514/0x1070
[  165.790376][ T8519]  ? security_bpf+0x2b/0x90
[  165.790408][ T8519]  __sys_bpf+0x51d/0x790
[  165.790486][ T8519]  __x64_sys_bpf+0x41/0x50
[  165.790564][ T8519]  x64_sys_call+0x2478/0x2fb0
[  165.790596][ T8519]  do_syscall_64+0xd0/0x1a0
[  165.790631][ T8519]  ? clear_bhb_loop+0x40/0x90
[  165.790663][ T8519]  ? clear_bhb_loop+0x40/0x90
[  165.790728][ T8519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.790752][ T8519] RIP: 0033:0x7fe974bae969
[  165.790774][ T8519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.790801][ T8519] RSP: 002b:00007fe973217038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  165.790829][ T8519] RAX: ffffffffffffffda RBX: 00007fe974dd5fa0 RCX: 00007fe974bae969
[  165.790849][ T8519] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[  165.790922][ T8519] RBP: 00007fe973217090 R08: 0000000000000000 R09: 0000000000000000
[  165.790939][ T8519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.790957][ T8519] R13: 0000000000000000 R14: 00007fe974dd5fa0 R15: 00007ffe51c45a98
[  165.790982][ T8519]  </TASK>
[  166.015507][ T8519] Mem-Info:
[  166.018861][ T8519] active_anon:6176 inactive_anon:2 isolated_anon:0
[  166.018861][ T8519]  active_file:25400 inactive_file:2240 isolated_file:0
[  166.018861][ T8519]  unevictable:0 dirty:670 writeback:0
[  166.018861][ T8519]  slab_reclaimable:3197 slab_unreclaimable:31888
[  166.018861][ T8519]  mapped:33400 shmem:3141 pagetables:836
[  166.018861][ T8519]  sec_pagetables:0 bounce:0
[  166.018861][ T8519]  kernel_misc_reclaimable:0
[  166.018861][ T8519]  free:1868261 free_pcp:4291 free_cma:0
[  166.070396][ T8519] Node 0 active_anon:24704kB inactive_anon:8kB active_file:101600kB inactive_file:8960kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:133600kB dirty:2680kB writeback:0kB shmem:12564kB writeback_tmp:0kB kernel_stack:2960kB pagetables:3344kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  166.102182][ T8519] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  166.132620][ T8519] lowmem_reserve[]: 0 2884 7863 7863
[  166.138447][ T8519] Node 0 DMA32 free:2949928kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953560kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  166.169194][ T8519] lowmem_reserve[]: 0 0 4978 4978
[  166.174968][ T8519] Node 0 Normal free:4507756kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:24704kB inactive_anon:8kB active_file:101600kB inactive_file:8960kB unevictable:0kB writepending:2680kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:13532kB local_pcp:11636kB free_cma:0kB
[  166.209912][ T8519] lowmem_reserve[]: 0 0 0 0
[  166.214562][ T8519] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  166.227816][ T8519] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949928kB
[  166.245617][ T8519] Node 0 Normal: 62*4kB (UE) 1083*8kB (UME) 574*16kB (UME) 511*32kB (UME) 627*64kB (UME) 226*128kB (UME) 144*256kB (UM) 80*512kB (ME) 41*1024kB (UM) 20*2048kB (UME) 1036*4096kB (UM) = 4507728kB
[  166.267498][ T8519] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  166.277849][ T8519] 30779 total pagecache pages
[  166.283735][ T8519] 3 pages in swap cache
[  166.289534][ T8519] Free swap  = 124984kB
[  166.293796][ T8519] Total swap = 124996kB
[  166.298056][ T8519] 2097051 pages RAM
[  166.298403][ T8532] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1819'.
[  166.302028][ T8519] 0 pages HighMem/MovableOnly
[  166.317839][ T8519] 80260 pages reserved
[  166.326095][ T8515] lo speed is unknown, defaulting to 1000
[  166.353472][ T8534] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1821'.
[  166.466506][ T8540] siw: device registration error -23
[  166.488675][ T8549] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1825'.
[  166.612410][ T8560] loop5: detected capacity change from 0 to 1024
[  166.620201][ T8560] EXT4-fs: Ignoring removed bh option
[  166.626332][ T8560] EXT4-fs: inline encryption not supported
[  166.633080][ T8560] EXT4-fs: Ignoring removed i_version option
[  166.643264][ T8560] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  166.659020][ T8560] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1830: lblock 1 mapped to illegal pblock 1 (length 1)
[  166.676917][ T8560] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1830: Failed to acquire dquot type 0
[  166.692112][ T8560] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1830: Freeing blocks not in datazone - block = 0, count = 4096
[  166.708757][ T8560] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1830: Invalid inode bitmap blk 0 in block_group 0
[  166.724679][ T1028] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  166.727613][ T8560] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  166.755677][ T8560] EXT4-fs (loop5): 1 orphan inode deleted
[  166.756710][ T1028] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  166.763913][ T8560] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.813397][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.939168][ T8567] loop5: detected capacity change from 0 to 128
[  167.081482][ T8574] lo speed is unknown, defaulting to 1000
[  167.163016][ T8577] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1836'.
[  167.195401][ T8579] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1837'.
[  167.239404][ T8583] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  167.276460][ T8587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1841'.
[  167.487892][ T8609] loop2: detected capacity change from 0 to 512
[  167.514610][ T8609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.530867][ T8609] ext4 filesystem being mounted at /356/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.763924][ T8623] netlink: 'syz.3.1855': attribute type 3 has an invalid length.
[  167.793036][ T8609] siw: device registration error -23
[  167.848169][ T8614] siw: device registration error -23
[  168.229958][   T30] kauditd_printk_skb: 206 callbacks suppressed
[  168.229980][   T30] audit: type=1326 audit(1748028855.324:7506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.237153][ T8633] siw: device registration error -23
[  168.266202][   T30] audit: type=1326 audit(1748028855.334:7507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.266318][   T30] audit: type=1326 audit(1748028855.334:7508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.328262][   T30] audit: type=1326 audit(1748028855.334:7509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.357743][   T30] audit: type=1326 audit(1748028855.334:7510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.386016][   T30] audit: type=1326 audit(1748028855.374:7511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.421792][   T30] audit: type=1326 audit(1748028855.374:7512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8632 comm="syz.5.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  168.489217][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.809964][   T30] audit: type=1400 audit(1748028855.914:7513): avc:  denied  { read } for  pid=8654 comm="syz.1.1868" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  168.849193][   T30] audit: type=1400 audit(1748028855.934:7514): avc:  denied  { open } for  pid=8654 comm="syz.1.1868" path="/dev/ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  168.878634][   T30] audit: type=1400 audit(1748028855.974:7515): avc:  denied  { create } for  pid=8654 comm="syz.1.1868" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  168.886262][ T8659] siw: device registration error -23
[  168.915195][ T8660] siw: device registration error -23
[  168.932857][ T8662] netlink: 'syz.1.1868': attribute type 4 has an invalid length.
[  169.075735][ T8671] lo speed is unknown, defaulting to 1000
[  169.134849][ T8683] netlink: 'syz.0.1879': attribute type 13 has an invalid length.
[  169.189493][ T8687] __nla_validate_parse: 7 callbacks suppressed
[  169.189515][ T8687] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1879'.
[  169.313782][ T8685] loop1: detected capacity change from 0 to 8192
[  169.400123][ T8685]  loop1: p1 p2 p3 < > p4 < p5 p6 >
[  169.405428][ T8685] loop1: partition table partially beyond EOD, truncated
[  169.416971][ T8685] loop1: p1 start 67108864 is beyond EOD, truncated
[  169.423995][ T8685] loop1: p2 size 61546 extends beyond EOD, truncated
[  169.439849][ T8685] loop1: p3 start 100859904 is beyond EOD, truncated
[  169.451528][ T8685] loop1: p5 start 67108864 is beyond EOD, truncated
[  169.458435][ T8685] loop1: p6 size 61546 extends beyond EOD, truncated
[  169.529360][ T8683] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.539200][ T8683] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.549055][ T8683] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.558246][ T8683] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.692188][ T8696] IPv6: NLM_F_CREATE should be specified when creating new route
[  169.776758][ T8698] loop2: detected capacity change from 0 to 1024
[  169.809538][ T8698] EXT4-fs: Ignoring removed i_version option
[  169.818078][ T8702] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1884'.
[  169.828121][ T8698] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  169.840877][ T8698] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  169.857253][ T8698] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  169.861229][ T8707] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1886'.
[  169.874529][ T8698] EXT4-fs (loop2): orphan cleanup on readonly fs
[  169.885317][ T8698] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  169.892509][ T8709] siw: device registration error -23
[  169.907955][ T8698] EXT4-fs (loop2): Remounting filesystem read-only
[  169.918394][ T8698] EXT4-fs (loop2): 1 orphan inode deleted
[  169.927076][ T8711] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1888'.
[  169.945979][ T8698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  169.979766][ T8715] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1890'.
[  169.995624][ T8698] syz.2.1882 (8698) used greatest stack depth: 9680 bytes left
[  170.005386][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.073816][ T8717] SELinux:  Context system_u:object_r:src_t:s0 is not valid (left unmapped).
[  170.185590][ T8738] siw: device registration error -23
[  170.233397][ T8743] bridge_slave_0: left allmulticast mode
[  170.239911][ T8743] bridge_slave_0: left promiscuous mode
[  170.246022][ T8743] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.273672][ T8743] bridge_slave_1: left allmulticast mode
[  170.280630][ T8743] bridge_slave_1: left promiscuous mode
[  170.286755][ T8743] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.308543][ T8743] bond0: (slave bond_slave_0): Releasing backup interface
[  170.322330][ T8743] bond0: (slave bond_slave_1): Releasing backup interface
[  170.344279][ T8743] team0: Port device team_slave_0 removed
[  170.356034][ T8743] team0: Port device team_slave_1 removed
[  170.364068][ T8743] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  170.373215][ T8743] batman_adv: batadv0: Removing interface: batadv_slave_0
[  170.382216][ T8743] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  170.389814][ T8743] batman_adv: batadv0: Removing interface: batadv_slave_1
[  170.420710][ T8745] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1894'.
[  170.459278][ T8748] IPVS: Error connecting to the multicast addr
[  170.614334][ T8769] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1910'.
[  170.643588][ T8770] lo speed is unknown, defaulting to 1000
[  170.997150][ T8786] IPVS: Error connecting to the multicast addr
[  171.007314][ T8788] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1919'.
[  171.043983][ T8792] netlink: 'syz.0.1921': attribute type 10 has an invalid length.
[  171.056993][ T8792] batman_adv: batadv0: Adding interface: team0
[  171.063464][ T8792] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.090569][ T8792] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  171.102290][ T8793] netlink: 'syz.0.1921': attribute type 10 has an invalid length.
[  171.110520][ T8793] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1921'.
[  171.134495][ T8793] team0: entered promiscuous mode
[  171.148027][ T8793] 8021q: adding VLAN 0 to HW filter on device team0
[  171.156792][ T8793] batman_adv: batadv0: Interface activated: team0
[  171.164091][ T8793] batman_adv: batadv0: Interface deactivated: team0
[  171.171344][ T8793] batman_adv: batadv0: Removing interface: team0
[  171.179660][ T8793] bridge0: port 1(team0) entered blocking state
[  171.186600][ T8793] bridge0: port 1(team0) entered disabled state
[  171.195637][ T8793] team0: entered allmulticast mode
[  171.203604][ T8800] netlink: 'syz.5.1922': attribute type 4 has an invalid length.
[  171.274184][ T8804] siw: device registration error -23
[  171.300599][ T8811] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1928'.
[  171.307075][ T8809] siw: device registration error -23
[  171.397990][ T8818] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  171.414312][ T8817] IPVS: stopping master sync thread 8818 ...
[  171.414653][ T8821] FAULT_INJECTION: forcing a failure.
[  171.414653][ T8821] name failslab, interval 1, probability 0, space 0, times 0
[  171.434431][ T8821] CPU: 0 UID: 0 PID: 8821 Comm: syz.0.1933 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  171.434463][ T8821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.434537][ T8821] Call Trace:
[  171.434544][ T8821]  <TASK>
[  171.434552][ T8821]  __dump_stack+0x1d/0x30
[  171.434574][ T8821]  dump_stack_lvl+0xe8/0x140
[  171.434595][ T8821]  dump_stack+0x15/0x1b
[  171.434654][ T8821]  should_fail_ex+0x265/0x280
[  171.434690][ T8821]  should_failslab+0x8c/0xb0
[  171.434723][ T8821]  kmem_cache_alloc_node_noprof+0x57/0x320
[  171.434757][ T8821]  ? __alloc_skb+0x101/0x320
[  171.434801][ T8821]  __alloc_skb+0x101/0x320
[  171.434837][ T8821]  pfkey_sendmsg+0xd7/0x900
[  171.434870][ T8821]  ? avc_has_perm+0xd3/0x150
[  171.434915][ T8821]  ? selinux_socket_sendmsg+0x175/0x1b0
[  171.434946][ T8821]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  171.435014][ T8821]  __sock_sendmsg+0x145/0x180
[  171.435044][ T8821]  ____sys_sendmsg+0x31e/0x4e0
[  171.435089][ T8821]  ___sys_sendmsg+0x17b/0x1d0
[  171.435142][ T8821]  __x64_sys_sendmsg+0xd4/0x160
[  171.435170][ T8821]  x64_sys_call+0x2999/0x2fb0
[  171.435194][ T8821]  do_syscall_64+0xd0/0x1a0
[  171.435220][ T8821]  ? clear_bhb_loop+0x40/0x90
[  171.435308][ T8821]  ? clear_bhb_loop+0x40/0x90
[  171.435361][ T8821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.435384][ T8821] RIP: 0033:0x7f5fd4dae969
[  171.435400][ T8821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.435419][ T8821] RSP: 002b:00007f5fd3417038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  171.435439][ T8821] RAX: ffffffffffffffda RBX: 00007f5fd4fd5fa0 RCX: 00007f5fd4dae969
[  171.435453][ T8821] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[  171.435465][ T8821] RBP: 00007f5fd3417090 R08: 0000000000000000 R09: 0000000000000000
[  171.435491][ T8821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.435503][ T8821] R13: 0000000000000000 R14: 00007f5fd4fd5fa0 R15: 00007fff67e00898
[  171.435525][ T8821]  </TASK>
[  171.683021][ T8824] IPv6: NLM_F_CREATE should be specified when creating new route
[  171.768000][ T8834] loop5: detected capacity change from 0 to 512
[  171.787434][ T8828] lo speed is unknown, defaulting to 1000
[  171.824579][ T8834] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.848610][ T8832] netlink: 'syz.2.1939': attribute type 4 has an invalid length.
[  171.873675][ T8836] siw: device registration error -23
[  171.969169][ T8834] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.066634][ T8854] siw: device registration error -23
[  172.089250][ T8856] FAULT_INJECTION: forcing a failure.
[  172.089250][ T8856] name failslab, interval 1, probability 0, space 0, times 0
[  172.103266][ T8856] CPU: 1 UID: 0 PID: 8856 Comm: syz.3.1946 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  172.103375][ T8856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.103391][ T8856] Call Trace:
[  172.103400][ T8856]  <TASK>
[  172.103409][ T8856]  __dump_stack+0x1d/0x30
[  172.103436][ T8856]  dump_stack_lvl+0xe8/0x140
[  172.103459][ T8856]  dump_stack+0x15/0x1b
[  172.103617][ T8856]  should_fail_ex+0x265/0x280
[  172.103678][ T8856]  should_failslab+0x8c/0xb0
[  172.103712][ T8856]  kmem_cache_alloc_node_noprof+0x57/0x320
[  172.103804][ T8856]  ? __alloc_skb+0x101/0x320
[  172.103847][ T8856]  __alloc_skb+0x101/0x320
[  172.103890][ T8856]  netlink_alloc_large_skb+0xba/0xf0
[  172.103930][ T8856]  netlink_sendmsg+0x3cf/0x6b0
[  172.104115][ T8856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.104137][ T8856]  __sock_sendmsg+0x145/0x180
[  172.104169][ T8856]  ____sys_sendmsg+0x31e/0x4e0
[  172.104203][ T8856]  ___sys_sendmsg+0x17b/0x1d0
[  172.104253][ T8856]  __x64_sys_sendmsg+0xd4/0x160
[  172.104325][ T8856]  x64_sys_call+0x2999/0x2fb0
[  172.104349][ T8856]  do_syscall_64+0xd0/0x1a0
[  172.104379][ T8856]  ? clear_bhb_loop+0x40/0x90
[  172.104409][ T8856]  ? clear_bhb_loop+0x40/0x90
[  172.104468][ T8856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.104501][ T8856] RIP: 0033:0x7fe974bae969
[  172.104522][ T8856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.104544][ T8856] RSP: 002b:00007fe973217038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.104565][ T8856] RAX: ffffffffffffffda RBX: 00007fe974dd5fa0 RCX: 00007fe974bae969
[  172.104580][ T8856] RDX: 0000000024000080 RSI: 00002000000012c0 RDI: 0000000000000006
[  172.104668][ T8856] RBP: 00007fe973217090 R08: 0000000000000000 R09: 0000000000000000
[  172.104682][ T8856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.104695][ T8856] R13: 0000000000000000 R14: 00007fe974dd5fa0 R15: 00007ffe51c45a98
[  172.104720][ T8856]  </TASK>
[  172.535111][ T8857] siw: device registration error -23
[  172.698312][ T8863] loop3: detected capacity change from 0 to 512
[  172.706234][ T8863] EXT4-fs: Ignoring removed nobh option
[  172.887672][ T8863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.989666][ T8868] lo speed is unknown, defaulting to 1000
[  173.461501][   T30] kauditd_printk_skb: 336 callbacks suppressed
[  173.461525][   T30] audit: type=1400 audit(1748028860.194:7848): avc:  denied  { create } for  pid=8865 comm="syz.0.1949" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  173.494831][   T30] audit: type=1400 audit(1748028860.194:7849): avc:  denied  { connect } for  pid=8865 comm="syz.0.1949" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  173.615691][   T30] audit: type=1326 audit(1748028860.664:7850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  173.645800][   T30] audit: type=1326 audit(1748028860.744:7851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  173.672856][   T30] audit: type=1326 audit(1748028860.744:7852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  173.703407][   T30] audit: type=1326 audit(1748028860.744:7853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  173.977669][   T30] audit: type=1326 audit(1748028860.844:7854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  174.005151][   T30] audit: type=1326 audit(1748028860.844:7855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  174.033465][   T30] audit: type=1326 audit(1748028860.844:7856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  174.060167][   T30] audit: type=1326 audit(1748028860.844:7857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8833 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  174.190577][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.496554][ T8872] __nla_validate_parse: 4 callbacks suppressed
[  174.496576][ T8872] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1950'.
[  174.543621][ T8876] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1951'.
[  174.644231][ T8880] lo speed is unknown, defaulting to 1000
[  174.714486][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.733910][ T8881] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1953'.
[  174.830855][ T8898] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1959'.
[  174.854274][ T8899] netlink: 'syz.5.1960': attribute type 4 has an invalid length.
[  175.020019][ T8913] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  175.021144][ T8904] lo speed is unknown, defaulting to 1000
[  175.046858][ T8909] IPVS: stopping master sync thread 8913 ...
[  175.151805][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  175.173754][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  175.206927][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  175.317473][ T8908] infiniband syz2: set active
[  175.324467][ T8908] infiniband syz2: added vxcan1
[  175.331245][ T8693] vxcan1 speed is unknown, defaulting to 1000
[  175.344730][ T8908] RDS/IB: syz2: added
[  175.349631][ T8908] smc: adding ib device syz2 with port count 1
[  175.357619][ T8908] smc:    ib device syz2 port 1 has pnetid 
[  175.410503][ T8926] loop2: detected capacity change from 0 to 512
[  175.419826][ T8926] EXT4-fs: Ignoring removed nobh option
[  175.564205][ T8926] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.761297][ T8693] vxcan1 speed is unknown, defaulting to 1000
[  175.769875][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  175.792409][ T8933] team0: left allmulticast mode
[  175.812053][ T8933] bridge0: port 1(team0) entered disabled state
[  176.085867][ T8938] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1973'.
[  176.286238][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  176.313523][ T8944] IPVS: Error connecting to the multicast addr
[  176.440824][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  176.597989][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  176.760054][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  176.904622][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  177.014403][ T8908] vxcan1 speed is unknown, defaulting to 1000
[  177.039520][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.078178][ T8948] lo speed is unknown, defaulting to 1000
[  177.097874][ T8967] lo speed is unknown, defaulting to 1000
[  177.113058][ T8969] loop5: detected capacity change from 0 to 1024
[  177.129523][ T8969] EXT4-fs: Ignoring removed i_version option
[  177.141264][ T8969] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  177.180538][ T8969] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  177.194560][ T8967] vxcan1 speed is unknown, defaulting to 1000
[  177.216995][ T8969] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  177.228582][ T8974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1987'.
[  177.246066][ T8969] EXT4-fs (loop5): orphan cleanup on readonly fs
[  177.279198][ T8969] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  177.299484][ T8969] EXT4-fs (loop5): Remounting filesystem read-only
[  177.320544][ T8969] EXT4-fs (loop5): 1 orphan inode deleted
[  177.328273][ T8969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  177.358863][ T8976] netlink: 'syz.0.1988': attribute type 4 has an invalid length.
[  177.359901][ T8979] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  177.369979][ T8969] IPVS: stopping master sync thread 8979 ...
[  177.484263][ T8969] syz.5.1986 (8969) used greatest stack depth: 9432 bytes left
[  177.500100][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.626063][ T8998] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1996'.
[  177.661258][ T9003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1998'.
[  177.664907][ T8996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1995'.
[  177.695536][ T9008] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1992'.
[  177.763547][ T9004] lo speed is unknown, defaulting to 1000
[  177.791773][ T9012] lo speed is unknown, defaulting to 1000
[  177.792229][ T9004] vxcan1 speed is unknown, defaulting to 1000
[  177.868685][ T9012] vxcan1 speed is unknown, defaulting to 1000
[  177.929876][ T9016] siw: device registration error -23
[  178.042556][ T9022] loop5: detected capacity change from 0 to 1024
[  178.064408][ T9020] loop2: detected capacity change from 0 to 1024
[  178.071879][ T9022] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  178.072101][ T9020] EXT4-fs: Ignoring removed i_version option
[  178.096172][ T9020] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  178.109250][ T9022] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #3: comm syz.5.2004: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  178.130685][ T9020] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  178.142698][ T9022] EXT4-fs error (device loop5): ext4_quota_enable:7129: comm syz.5.2004: Bad quota inode: 3, type: 0
[  178.142901][ T9020] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  178.158915][ T9022] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  178.163636][ T9020] EXT4-fs (loop2): orphan cleanup on readonly fs
[  178.188060][ T9020] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  178.198742][ T9022] EXT4-fs (loop5): mount failed
[  178.208095][ T9020] EXT4-fs (loop2): Remounting filesystem read-only
[  178.209151][ T9031] siw: device registration error -23
[  178.216860][ T9020] EXT4-fs (loop2): 1 orphan inode deleted
[  178.230628][ T9020] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  178.283494][ T9032] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  178.299789][ T9020] IPVS: stopping master sync thread 9032 ...
[  178.314379][ T9034] lo speed is unknown, defaulting to 1000
[  178.335898][ T9034] vxcan1 speed is unknown, defaulting to 1000
[  178.348731][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.717147][ T8017] vxcan1 speed is unknown, defaulting to 1000
[  178.731382][ T9037] siw: device registration error -23
[  178.756153][   T30] kauditd_printk_skb: 228 callbacks suppressed
[  178.756171][   T30] audit: type=1326 audit(1748028865.854:8078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  178.862940][   T30] audit: type=1326 audit(1748028865.894:8079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  178.887949][   T30] audit: type=1326 audit(1748028865.934:8080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  178.914090][   T30] audit: type=1326 audit(1748028865.934:8081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  178.939772][   T30] audit: type=1326 audit(1748028865.944:8082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9058 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f33971d1225 code=0x7ffc0000
[  178.966354][   T30] audit: type=1326 audit(1748028865.944:8083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  178.995220][   T30] audit: type=1326 audit(1748028865.944:8084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  179.024860][   T30] audit: type=1326 audit(1748028865.944:8085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  179.051587][   T30] audit: type=1326 audit(1748028865.944:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  179.072869][ T9062] siw: device registration error -23
[  179.078772][   T30] audit: type=1326 audit(1748028865.954:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9055 comm="syz.5.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  179.144291][ T9063] loop5: detected capacity change from 0 to 1024
[  179.152559][ T9063] EXT4-fs: Ignoring removed i_version option
[  179.171829][ T9063] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  179.200854][ T9063] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  179.229375][ T9063] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  179.246224][ T9063] EXT4-fs (loop5): orphan cleanup on readonly fs
[  179.253562][ T9063] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  179.265484][ T9063] EXT4-fs (loop5): Remounting filesystem read-only
[  179.272451][ T9063] EXT4-fs (loop5): 1 orphan inode deleted
[  179.279125][ T9063] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  179.299033][ T9067] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  179.312295][ T9063] IPVS: stopping master sync thread 9067 ...
[  179.332696][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.582655][ T9094] siw: device registration error -23
[  179.595275][ T9096] vlan0: entered allmulticast mode
[  179.603424][ T9096] bridge_slave_0: entered allmulticast mode
[  179.750291][ T9107] __nla_validate_parse: 6 callbacks suppressed
[  179.750311][ T9107] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2036'.
[  179.818415][ T9114] siw: device registration error -23
[  179.953016][ T9122] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2042'.
[  180.014404][ T9126] siw: device registration error -23
[  180.097093][ T9132] loop2: detected capacity change from 0 to 1024
[  180.105943][ T9132] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  180.121113][ T9132] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.2046: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  180.141039][ T9132] EXT4-fs error (device loop2): ext4_quota_enable:7129: comm syz.2.2046: Bad quota inode: 3, type: 0
[  180.155699][ T9132] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  180.171666][ T9132] EXT4-fs (loop2): mount failed
[  180.218026][ T9138] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2048'.
[  180.305850][ T9144] siw: device registration error -23
[  180.358772][ T9154] siw: device registration error -23
[  180.423875][ T9158] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  180.442273][ T9157] IPVS: stopping master sync thread 9158 ...
[  180.476080][ T9162] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2059'.
[  180.558815][ T9173] loop5: detected capacity change from 0 to 1024
[  180.567004][ T9173] EXT4-fs: Ignoring removed bh option
[  180.572850][ T9173] EXT4-fs: inline encryption not supported
[  180.578915][ T9173] EXT4-fs: Ignoring removed i_version option
[  180.587477][ T9173] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  180.603617][ T9173] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.2064: lblock 1 mapped to illegal pblock 1 (length 1)
[  180.620729][ T9173] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.2064: Failed to acquire dquot type 0
[  180.653837][ T9175] loop2: detected capacity change from 0 to 8192
[  180.670759][ T9173] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.2064: Freeing blocks not in datazone - block = 0, count = 4096
[  180.685867][ T9173] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.2064: Invalid inode bitmap blk 0 in block_group 0
[  180.711498][ T1028] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  180.729858][ T9177] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2063'.
[  180.742841][ T9175]  loop2: p1 p2 p3 < > p4 < p5 p6 >
[  180.748978][ T9175] loop2: partition table partially beyond EOD, truncated
[  180.753223][ T9187] siw: device registration error -23
[  180.758073][ T1028] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  180.776398][ T9173] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  180.786870][ T9173] EXT4-fs (loop5): 1 orphan inode deleted
[  180.794468][ T9175] loop2: p1 start 67108864 is beyond EOD, truncated
[  180.801455][ T9175] loop2: p2 size 61546 extends beyond EOD, truncated
[  180.809041][ T9173] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.824054][ T9175] loop2: p3 start 100859904 is beyond EOD, truncated
[  180.841341][ T9175] loop2: p5 start 67108864 is beyond EOD, truncated
[  180.849949][ T9175] loop2: p6 size 61546 extends beyond EOD, truncated
[  180.875096][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.895712][ T9192] loop3: detected capacity change from 0 to 1024
[  180.903952][ T9192] EXT4-fs: Ignoring removed i_version option
[  180.911542][ T9192] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  180.921441][ T9192] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  180.934582][ T9192] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  180.943771][ T9192] EXT4-fs (loop3): orphan cleanup on readonly fs
[  180.951809][ T9192] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  180.963784][ T9192] EXT4-fs (loop3): Remounting filesystem read-only
[  180.970852][ T9192] EXT4-fs (loop3): 1 orphan inode deleted
[  180.978136][ T9192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  180.995310][ T9192] IPVS: Error connecting to the multicast addr
[  181.021077][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.056064][ T9200] siw: device registration error -23
[  181.124000][ T9207] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2076'.
[  181.167506][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2079'.
[  181.188267][ T9211] netlink: 'syz.1.2078': attribute type 4 has an invalid length.
[  181.547643][ T9253] netlink: 'syz.0.2092': attribute type 4 has an invalid length.
[  181.595610][ T9256] siw: device registration error -23
[  181.840117][ T9290] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2102'.
[  182.056924][ T9306] lo speed is unknown, defaulting to 1000
[  182.063827][ T9306] vxcan1 speed is unknown, defaulting to 1000
[  182.152959][ T9308] FAULT_INJECTION: forcing a failure.
[  182.152959][ T9308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.166437][ T9308] CPU: 1 UID: 0 PID: 9308 Comm: +}[@ Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  182.166475][ T9308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.166493][ T9308] Call Trace:
[  182.166514][ T9308]  <TASK>
[  182.166524][ T9308]  __dump_stack+0x1d/0x30
[  182.166557][ T9308]  dump_stack_lvl+0xe8/0x140
[  182.166581][ T9308]  dump_stack+0x15/0x1b
[  182.166603][ T9308]  should_fail_ex+0x265/0x280
[  182.166649][ T9308]  should_fail+0xb/0x20
[  182.166721][ T9308]  should_fail_usercopy+0x1a/0x20
[  182.166747][ T9308]  _copy_from_user+0x1c/0xb0
[  182.166787][ T9308]  __copy_msghdr+0x244/0x300
[  182.166891][ T9308]  ___sys_sendmsg+0x109/0x1d0
[  182.166930][ T9308]  __x64_sys_sendmsg+0xd4/0x160
[  182.166965][ T9308]  x64_sys_call+0x2999/0x2fb0
[  182.166994][ T9308]  do_syscall_64+0xd0/0x1a0
[  182.167026][ T9308]  ? clear_bhb_loop+0x40/0x90
[  182.167077][ T9308]  ? clear_bhb_loop+0x40/0x90
[  182.167107][ T9308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.167192][ T9308] RIP: 0033:0x7fe974bae969
[  182.167219][ T9308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.167239][ T9308] RSP: 002b:00007fe973217038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.167261][ T9308] RAX: ffffffffffffffda RBX: 00007fe974dd5fa0 RCX: 00007fe974bae969
[  182.167309][ T9308] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 000000000000000d
[  182.167325][ T9308] RBP: 00007fe973217090 R08: 0000000000000000 R09: 0000000000000000
[  182.167342][ T9308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.167431][ T9308] R13: 0000000000000000 R14: 00007fe974dd5fa0 R15: 00007ffe51c45a98
[  182.167458][ T9308]  </TASK>
[  182.624937][ T9331] siw: device registration error -23
[  182.670593][ T9339] FAULT_INJECTION: forcing a failure.
[  182.670593][ T9339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.686023][ T9339] CPU: 1 UID: 0 PID: 9339 Comm: syz.1.2127 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  182.686089][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.686102][ T9339] Call Trace:
[  182.686107][ T9339]  <TASK>
[  182.686114][ T9339]  __dump_stack+0x1d/0x30
[  182.686136][ T9339]  dump_stack_lvl+0xe8/0x140
[  182.686188][ T9339]  dump_stack+0x15/0x1b
[  182.686205][ T9339]  should_fail_ex+0x265/0x280
[  182.686290][ T9339]  should_fail+0xb/0x20
[  182.686388][ T9339]  should_fail_usercopy+0x1a/0x20
[  182.686409][ T9339]  _copy_from_user+0x1c/0xb0
[  182.686433][ T9339]  ___sys_sendmsg+0xc1/0x1d0
[  182.686544][ T9339]  __x64_sys_sendmsg+0xd4/0x160
[  182.686572][ T9339]  x64_sys_call+0x2999/0x2fb0
[  182.686595][ T9339]  do_syscall_64+0xd0/0x1a0
[  182.686637][ T9339]  ? clear_bhb_loop+0x40/0x90
[  182.686660][ T9339]  ? clear_bhb_loop+0x40/0x90
[  182.686683][ T9339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.686705][ T9339] RIP: 0033:0x7f44df49e969
[  182.686721][ T9339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.686782][ T9339] RSP: 002b:00007f44ddb07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.686801][ T9339] RAX: ffffffffffffffda RBX: 00007f44df6c5fa0 RCX: 00007f44df49e969
[  182.686879][ T9339] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[  182.686892][ T9339] RBP: 00007f44ddb07090 R08: 0000000000000000 R09: 0000000000000000
[  182.686905][ T9339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.686918][ T9339] R13: 0000000000000000 R14: 00007f44df6c5fa0 R15: 00007ffeb8f73d38
[  182.686952][ T9339]  </TASK>
[  182.689085][ T9337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2126'.
[  183.029403][ T9359] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2134'.
[  183.079946][ T9367] lo speed is unknown, defaulting to 1000
[  183.087060][ T9367] vxcan1 speed is unknown, defaulting to 1000
[  183.241181][ T9373] netlink: 'syz.5.2140': attribute type 4 has an invalid length.
[  183.428778][ T9382] random: crng reseeded on system resumption
[  183.747758][ T9407] FAULT_INJECTION: forcing a failure.
[  183.747758][ T9407] name failslab, interval 1, probability 0, space 0, times 0
[  183.762739][ T9407] CPU: 1 UID: 0 PID: 9407 Comm: syz.0.2152 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  183.762794][ T9407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.762847][ T9407] Call Trace:
[  183.762857][ T9407]  <TASK>
[  183.762867][ T9407]  __dump_stack+0x1d/0x30
[  183.762895][ T9407]  dump_stack_lvl+0xe8/0x140
[  183.762957][ T9407]  dump_stack+0x15/0x1b
[  183.762979][ T9407]  should_fail_ex+0x265/0x280
[  183.763014][ T9407]  should_failslab+0x8c/0xb0
[  183.763053][ T9407]  __kvmalloc_node_noprof+0x126/0x4d0
[  183.763079][ T9407]  ? __se_sys_setgroups+0xd0/0x300
[  183.763205][ T9407]  __se_sys_setgroups+0xd0/0x300
[  183.763234][ T9407]  ? fpregs_assert_state_consistent+0x84/0xa0
[  183.763274][ T9407]  __x64_sys_setgroups+0x31/0x40
[  183.763302][ T9407]  x64_sys_call+0x2495/0x2fb0
[  183.763344][ T9407]  do_syscall_64+0xd0/0x1a0
[  183.763376][ T9407]  ? clear_bhb_loop+0x40/0x90
[  183.763431][ T9407]  ? clear_bhb_loop+0x40/0x90
[  183.763462][ T9407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.763488][ T9407] RIP: 0033:0x7f5fd4dae969
[  183.763503][ T9407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.763523][ T9407] RSP: 002b:00007f5fd33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  183.763587][ T9407] RAX: ffffffffffffffda RBX: 00007f5fd4fd6080 RCX: 00007f5fd4dae969
[  183.763605][ T9407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  183.763631][ T9407] RBP: 00007f5fd33f6090 R08: 0000000000000000 R09: 0000000000000000
[  183.763648][ T9407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.763665][ T9407] R13: 0000000000000000 R14: 00007f5fd4fd6080 R15: 00007fff67e00898
[  183.763697][ T9407]  </TASK>
[  184.044175][ T9415] lo speed is unknown, defaulting to 1000
[  184.055567][ T9415] vxcan1 speed is unknown, defaulting to 1000
[  184.136862][   T30] kauditd_printk_skb: 421 callbacks suppressed
[  184.136918][   T30] audit: type=1326 audit(1748028871.234:8498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.228461][   T30] audit: type=1326 audit(1748028871.284:8499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.257162][   T30] audit: type=1326 audit(1748028871.284:8500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.261856][ T9422] IPVS: Error connecting to the multicast addr
[  184.282133][   T30] audit: type=1326 audit(1748028871.284:8501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.318897][   T30] audit: type=1326 audit(1748028871.304:8502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.347062][   T30] audit: type=1326 audit(1748028871.304:8503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.376079][   T30] audit: type=1326 audit(1748028871.304:8504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.404917][   T30] audit: type=1326 audit(1748028871.304:8505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.431376][   T30] audit: type=1326 audit(1748028871.304:8506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9414 comm="syz.1.2155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  184.610671][ T9443] siw: device registration error -23
[  184.629231][   T30] audit: type=1326 audit(1748028871.704:8507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.0.2164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  184.728606][ T9456] netlink: 'syz.3.2169': attribute type 58 has an invalid length.
[  184.772594][ T9451] hsr_slave_0: left promiscuous mode
[  184.809625][ T9451] hsr_slave_1: left promiscuous mode
[  184.848881][ T9460] __nla_validate_parse: 5 callbacks suppressed
[  184.848905][ T9460] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2172'.
[  184.959471][ T9466] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2175'.
[  185.170810][ T9468] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2176'.
[  185.242474][ T9482] siw: device registration error -23
[  185.316931][ T9486] lo speed is unknown, defaulting to 1000
[  185.327411][ T9486] vxcan1 speed is unknown, defaulting to 1000
[  185.494224][ T9499] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2187'.
[  185.510204][ T9498] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2186'.
[  185.546332][ T9501] loop5: detected capacity change from 0 to 512
[  185.594284][ T9501] EXT4-fs (loop5): 1 orphan inode deleted
[  185.610713][ T1028] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  185.623494][ T9501] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.667144][ T9501] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.693667][ T9489] siw: device registration error -23
[  185.712667][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.729736][   T41] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  185.795375][ T9513] siw: device registration error -23
[  185.836729][ T9515] siw: device registration error -23
[  185.954707][ T9518] loop2: detected capacity change from 0 to 1024
[  185.966933][ T9518] EXT4-fs: Ignoring removed bh option
[  185.973624][ T9518] EXT4-fs: inline encryption not supported
[  185.979963][ T9518] EXT4-fs: Ignoring removed i_version option
[  185.989114][ T9518] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  186.005952][ T9518] EXT4-fs error (device loop2): ext4_map_blocks:709: inode #3: block 1: comm syz.2.2194: lblock 1 mapped to illegal pblock 1 (length 1)
[  186.023947][ T9518] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.2194: Failed to acquire dquot type 0
[  186.025060][ T9522] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2196'.
[  186.037348][ T9518] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.2194: Freeing blocks not in datazone - block = 0, count = 4096
[  186.063419][ T9518] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2194: Invalid inode bitmap blk 0 in block_group 0
[  186.078761][ T9518] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  186.101270][ T1028] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  186.126800][ T9518] EXT4-fs (loop2): 1 orphan inode deleted
[  186.163007][ T1028] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  186.175556][ T9518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.201210][ T9532] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2199'.
[  186.232572][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.337113][ T9539] No such timeout policy "syz0"
[  186.354205][ T9539] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2202'.
[  186.371220][ T9547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2206'.
[  186.447371][ T9550] siw: device registration error -23
[  186.487133][ T9554] lo speed is unknown, defaulting to 1000
[  186.496401][ T9554] vxcan1 speed is unknown, defaulting to 1000
[  186.525181][ T9556] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2210'.
[  186.715509][ T9571] lo speed is unknown, defaulting to 1000
[  186.726270][ T9571] vxcan1 speed is unknown, defaulting to 1000
[  186.827653][ T9582] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=9582 comm=syz.5.2221
[  186.866220][ T9580] netlink: 'syz.2.2220': attribute type 4 has an invalid length.
[  187.034230][ T9593] loop3: detected capacity change from 0 to 1024
[  187.045316][ T9593] EXT4-fs: Ignoring removed bh option
[  187.051884][ T9593] EXT4-fs: inline encryption not supported
[  187.058721][ T9593] EXT4-fs: Ignoring removed i_version option
[  187.068113][ T9593] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  187.101211][ T9593] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm syz.3.2226: lblock 1 mapped to illegal pblock 1 (length 1)
[  187.141707][ T9593] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.2226: Failed to acquire dquot type 0
[  187.193429][ T9601] loop5: detected capacity change from 0 to 1024
[  187.212460][ T9593] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.2226: Freeing blocks not in datazone - block = 0, count = 4096
[  187.227784][ T9593] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2226: Invalid inode bitmap blk 0 in block_group 0
[  187.244513][ T9601] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  187.255886][   T41] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  187.281746][ T9601] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #3: comm syz.5.2229: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  187.282706][ T9593] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  187.320012][ T9593] EXT4-fs (loop3): 1 orphan inode deleted
[  187.330721][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 0
[  187.351268][ T9593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.379972][ T9601] EXT4-fs error (device loop5): ext4_quota_enable:7129: comm syz.5.2229: Bad quota inode: 3, type: 0
[  187.399508][ T9601] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  187.436223][ T9601] EXT4-fs (loop5): mount failed
[  187.444393][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.636566][ T9621] 9pnet_fd: Insufficient options for proto=fd
[  187.812882][ T9633] serio: Serial port ptm0
[  187.852983][ T9632] lo speed is unknown, defaulting to 1000
[  187.875597][ T9637] loop5: detected capacity change from 0 to 1024
[  187.879168][ T9632] vxcan1 speed is unknown, defaulting to 1000
[  187.883235][ T9637] EXT4-fs: Ignoring removed bh option
[  187.896980][ T9636] netlink: 'syz.0.2244': attribute type 4 has an invalid length.
[  187.952067][ T9637] EXT4-fs: inline encryption not supported
[  187.958055][ T9637] EXT4-fs: Ignoring removed i_version option
[  187.989649][ T9637] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  188.012431][ T9637] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.2243: lblock 1 mapped to illegal pblock 1 (length 1)
[  188.037603][ T9637] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.2243: Failed to acquire dquot type 0
[  188.065829][ T9637] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.2243: Freeing blocks not in datazone - block = 0, count = 4096
[  188.091763][ T9637] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.2243: Invalid inode bitmap blk 0 in block_group 0
[  188.111032][ T1729] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  188.125989][ T9637] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  188.145598][ T9637] EXT4-fs (loop5): 1 orphan inode deleted
[  188.160016][ T9637] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.183851][ T1729] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 0
[  188.221761][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.307962][ T9655] loop2: detected capacity change from 0 to 1024
[  188.323916][ T9655] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  188.353541][ T9655] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.2251: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  188.411978][ T9655] EXT4-fs error (device loop2): ext4_quota_enable:7129: comm syz.2.2251: Bad quota inode: 3, type: 0
[  188.479827][ T9655] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  188.500311][ T9660] siw: device registration error -23
[  188.515788][ T9655] EXT4-fs (loop2): mount failed
[  188.528892][ T9666] loop3: detected capacity change from 0 to 1024
[  188.541931][ T9666] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  188.632932][ T9666] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.2255: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  188.695911][ T9666] EXT4-fs error (device loop3): ext4_quota_enable:7129: comm syz.3.2255: Bad quota inode: 3, type: 0
[  188.740833][ T9666] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  188.781648][ T9666] EXT4-fs (loop3): mount failed
[  189.097733][ T9697] siw: device registration error -23
[  189.266882][ T9708] FAULT_INJECTION: forcing a failure.
[  189.266882][ T9708] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.284300][ T9708] CPU: 0 UID: 0 PID: 9708 Comm: syz.1.2272 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  189.284344][ T9708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  189.284358][ T9708] Call Trace:
[  189.284365][ T9708]  <TASK>
[  189.284375][ T9708]  __dump_stack+0x1d/0x30
[  189.284399][ T9708]  dump_stack_lvl+0xe8/0x140
[  189.284420][ T9708]  dump_stack+0x15/0x1b
[  189.284503][ T9708]  should_fail_ex+0x265/0x280
[  189.284559][ T9708]  should_fail+0xb/0x20
[  189.284593][ T9708]  should_fail_usercopy+0x1a/0x20
[  189.284614][ T9708]  _copy_from_user+0x1c/0xb0
[  189.284662][ T9708]  __sys_bpf+0x178/0x790
[  189.284714][ T9708]  __x64_sys_bpf+0x41/0x50
[  189.284777][ T9708]  x64_sys_call+0x2478/0x2fb0
[  189.284801][ T9708]  do_syscall_64+0xd0/0x1a0
[  189.284829][ T9708]  ? clear_bhb_loop+0x40/0x90
[  189.284859][ T9708]  ? clear_bhb_loop+0x40/0x90
[  189.284933][ T9708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.285006][ T9708] RIP: 0033:0x7f44df49e969
[  189.285026][ T9708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.285045][ T9708] RSP: 002b:00007f44ddb07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  189.285067][ T9708] RAX: ffffffffffffffda RBX: 00007f44df6c5fa0 RCX: 00007f44df49e969
[  189.285092][ T9708] RDX: 0000000000000050 RSI: 0000200000000100 RDI: 0000000000000000
[  189.285110][ T9708] RBP: 00007f44ddb07090 R08: 0000000000000000 R09: 0000000000000000
[  189.285127][ T9708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.285196][ T9708] R13: 0000000000000000 R14: 00007f44df6c5fa0 R15: 00007ffeb8f73d38
[  189.285219][ T9708]  </TASK>
[  189.651893][   T30] kauditd_printk_skb: 196 callbacks suppressed
[  189.651912][   T30] audit: type=1326 audit(1748028876.754:8693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.690846][ T9723] siw: device registration error -23
[  189.701011][   T30] audit: type=1326 audit(1748028876.784:8694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.734101][   T30] audit: type=1326 audit(1748028876.784:8695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.771036][   T30] audit: type=1326 audit(1748028876.784:8696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.804815][   T30] audit: type=1326 audit(1748028876.784:8697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.833625][   T30] audit: type=1326 audit(1748028876.784:8698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.863843][   T30] audit: type=1326 audit(1748028876.784:8699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.896316][   T30] audit: type=1326 audit(1748028876.784:8700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.898341][ T9725] __nla_validate_parse: 16 callbacks suppressed
[  189.898374][ T9725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2278'.
[  189.927178][   T30] audit: type=1326 audit(1748028876.784:8701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  189.927223][   T30] audit: type=1326 audit(1748028876.784:8702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.5.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339719e969 code=0x7ffc0000
[  190.064212][ T9736] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2283'.
[  190.224424][ T9752] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2286'.
[  190.253180][ T9758] siw: device registration error -23
[  190.348180][ T9767] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2294'.
[  190.385750][ T9770] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2296'.
[  190.431231][ T9751] siw: device registration error -23
[  190.485642][ T9775] lo speed is unknown, defaulting to 1000
[  190.538499][ T9775] vxcan1 speed is unknown, defaulting to 1000
[  190.547135][ T9780] loop3: detected capacity change from 0 to 512
[  190.600123][ T9780] ext4: Unknown parameter 'obj_role'
[  190.614303][ T9780] loop3: detected capacity change from 0 to 512
[  190.625728][ T9780] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  190.638353][ T9780] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  190.648033][ T9780] EXT4-fs (loop3): orphan cleanup on readonly fs
[  190.656213][ T9780] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2300: bg 0: block 361: padding at end of block bitmap is not set
[  190.688853][ T9780] EXT4-fs (loop3): Remounting filesystem read-only
[  190.706601][ T9780] EXT4-fs (loop3): 1 truncate cleaned up
[  190.721640][ T9780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  190.816720][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  190.845092][ T9786] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2301'.
[  190.926282][ T9790] IPVS: Error connecting to the multicast addr
[  190.995642][ T9791] loop3: detected capacity change from 0 to 8192
[  191.023709][ T9795] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  191.027138][ T9797] siw: device registration error -23
[  191.050400][ T9791]  loop3: p1 p2 p3 < > p4 < p5 p6 >
[  191.055950][ T9791] loop3: partition table partially beyond EOD, truncated
[  191.080976][ T9791] loop3: p1 start 67108864 is beyond EOD, truncated
[  191.087748][ T9791] loop3: p2 size 61546 extends beyond EOD, truncated
[  191.095803][ T9791] loop3: p3 start 100859904 is beyond EOD, truncated
[  191.122271][ T9791] loop3: p5 start 67108864 is beyond EOD, truncated
[  191.129773][ T9791] loop3: p6 size 61546 extends beyond EOD, truncated
[  191.180921][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2310'.
[  191.295243][ T9816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2312'.
[  191.335570][ T9817] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2309'.
[  191.352059][ T9814] lo speed is unknown, defaulting to 1000
[  191.359067][ T9814] vxcan1 speed is unknown, defaulting to 1000
[  191.423272][ T9821] loop2: detected capacity change from 0 to 512
[  191.431200][ T9821] EXT4-fs: Ignoring removed nobh option
[  191.471924][ T9821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.866171][ T9829] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2316'.
[  192.098066][ T9833] loop3: detected capacity change from 0 to 512
[  192.129004][ T9833] ext4: Unknown parameter 'uid'
[  192.613774][ T9845] random: crng reseeded on system resumption
[  192.934408][ T9860] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  192.956986][ T9859] IPVS: stopping master sync thread 9860 ...
[  193.051142][ T9861] loop3: detected capacity change from 0 to 8192
[  193.141649][ T9861]  loop3: p1 p2 p3 < > p4 < p5 p6 >
[  193.147408][ T9861] loop3: partition table partially beyond EOD, truncated
[  193.165713][ T9861] loop3: p1 start 67108864 is beyond EOD, truncated
[  193.174395][ T9861] loop3: p2 size 61546 extends beyond EOD, truncated
[  193.205030][ T9870] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=9870 comm=syz.1.2333
[  193.243052][ T9861] loop3: p3 start 100859904 is beyond EOD, truncated
[  193.263063][ T9861] loop3: p5 start 67108864 is beyond EOD, truncated
[  193.270629][ T9861] loop3: p6 size 61546 extends beyond EOD, truncated
[  193.363239][ T9875] random: crng reseeded on system resumption
[  193.376695][ T9876] loop5: detected capacity change from 0 to 512
[  193.425345][ T9876] ext4: Unknown parameter 'uid'
[  193.440935][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.506185][ T9883] siw: device registration error -23
[  193.534514][ T9885] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=9885 comm=syz.1.2339
[  193.834562][ T9915] loop3: detected capacity change from 0 to 512
[  193.883302][ T9915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.897966][ T9915] ext4 filesystem being mounted at /480/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.454899][ T9954] loop2: detected capacity change from 0 to 512
[  194.493101][ T9954] EXT4-fs (loop2): 1 orphan inode deleted
[  194.504895][ T9954] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.523090][ T9954] ext4 filesystem being mounted at /438/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.548003][   T41] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  194.592192][ T9960] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=9960 comm=syz.1.2367
[  194.624189][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.636922][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.653752][  T134] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  194.666494][ T9965] loop5: detected capacity change from 0 to 512
[  194.688145][   T30] kauditd_printk_skb: 155 callbacks suppressed
[  194.688179][   T30] audit: type=1326 audit(1748028881.784:8856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="+}[@" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5fea1ae969 code=0x0
[  194.721864][ T9969] lo speed is unknown, defaulting to 1000
[  194.731048][ T9969] vxcan1 speed is unknown, defaulting to 1000
[  194.751886][ T9965] EXT4-fs (loop5): 1 orphan inode deleted
[  194.765455][ T9970] loop2: detected capacity change from 0 to 512
[  194.772474][ T9970] ext4: Unknown parameter 'uid'
[  194.781210][  T134] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  194.792748][  T134] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  194.805797][ T9965] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.821063][ T9965] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.874449][ T7191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.894508][  T134] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  194.904851][  T134] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  195.033052][ T9984] __nla_validate_parse: 15 callbacks suppressed
[  195.033070][ T9984] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2376'.
[  195.203163][ T9998] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=9998 comm=syz.1.2383
[  195.326659][T10008] lo speed is unknown, defaulting to 1000
[  195.335180][T10006] loop3: detected capacity change from 0 to 2048
[  195.343185][T10008] vxcan1 speed is unknown, defaulting to 1000
[  195.405685][T10006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.438624][   T30] audit: type=1326 audit(1748028882.534:8857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.464967][   T30] audit: type=1326 audit(1748028882.534:8858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.489748][   T30] audit: type=1326 audit(1748028882.534:8859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.514349][   T30] audit: type=1326 audit(1748028882.534:8860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.541047][   T30] audit: type=1326 audit(1748028882.534:8861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.551929][T10014] siw: device registration error -23
[  195.567602][   T30] audit: type=1326 audit(1748028882.534:8862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.598412][   T30] audit: type=1326 audit(1748028882.534:8863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.0.2388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5fd4dae969 code=0x7ffc0000
[  195.633876][T10006] EXT4-fs (loop3): shut down requested (2)
[  195.642003][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  195.665675][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  195.702680][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  195.715458][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  195.725251][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  195.736510][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  195.747299][T10006] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  195.758487][T10019] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2390'.
[  195.789020][T10020] loop2: detected capacity change from 0 to 8192
[  195.818865][T10025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2392'.
[  195.824279][T10006] ALSA: seq fatal error: cannot create timer (-19)
[  195.843861][T10020]  loop2: p1 p2 p3 < > p4 < p5 p6 >
[  195.849485][T10020] loop2: partition table partially beyond EOD, truncated
[  195.857390][T10020] loop2: p1 start 67108864 is beyond EOD, truncated
[  195.865080][T10020] loop2: p2 size 61546 extends beyond EOD, truncated
[  195.905532][T10020] loop2: p3 start 100859904 is beyond EOD, truncated
[  195.916583][T10020] loop2: p5 start 67108864 is beyond EOD, truncated
[  195.923554][T10020] loop2: p6 size 61546 extends beyond EOD, truncated
[  195.950090][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.989341][T10032] 9pnet_fd: Insufficient options for proto=fd
[  196.080915][T10039] 9pnet_fd: Insufficient options for proto=fd
[  196.161418][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2397'.
[  196.239162][T10047] siw: device registration error -23
[  196.330998][T10051] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2402'.
[  196.372447][T10053] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2403'.
[  196.432082][T10055] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=768 sclass=netlink_route_socket pid=10055 comm=syz.3.2404
[  196.457733][T10057] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2405'.
[  196.622353][T10068] netlink: 'syz.2.2410': attribute type 4 has an invalid length.
[  196.645277][T10071] siw: device registration error -23
[  196.652124][T10074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2413'.
[  196.669028][T10077] 9pnet_fd: Insufficient options for proto=fd
[  196.687266][T10079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2415'.
[  196.748951][T10084] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2417'.
[  196.882357][T10099] lo speed is unknown, defaulting to 1000
[  196.889981][T10099] vxcan1 speed is unknown, defaulting to 1000
[  196.944134][T10100] loop2: detected capacity change from 0 to 8192
[  197.000427][T10100]  loop2: p1 p2 p3 < > p4 < p5 p6 >
[  197.006789][T10100] loop2: partition table partially beyond EOD, truncated
[  197.037162][T10100] loop2: p1 start 67108864 is beyond EOD, truncated
[  197.044705][T10100] loop2: p2 size 61546 extends beyond EOD, truncated
[  197.071304][T10100] loop2: p3 start 100859904 is beyond EOD, truncated
[  197.089821][T10100] loop2: p5 start 67108864 is beyond EOD, truncated
[  197.097400][T10100] loop2: p6 size 61546 extends beyond EOD, truncated
[  197.116355][T10111] siw: device registration error -23
[  197.197410][T10116] random: crng reseeded on system resumption
[  197.790685][T10154] bridge_slave_0: left allmulticast mode
[  197.796465][T10154] bridge_slave_0: left promiscuous mode
[  197.803973][T10154] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.814426][T10154] bridge_slave_1: left allmulticast mode
[  197.821713][T10154] bridge_slave_1: left promiscuous mode
[  197.828496][T10154] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.841517][T10154] bond0: (slave bond_slave_0): Releasing backup interface
[  197.852968][T10154] bond0: (slave bond_slave_1): Releasing backup interface
[  197.866928][T10154] team0: Port device team_slave_0 removed
[  197.876905][T10154] team0: Port device team_slave_1 removed
[  197.885053][T10154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  197.894196][T10154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  197.903614][T10154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  197.913069][T10154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  198.050365][T10162] FAULT_INJECTION: forcing a failure.
[  198.050365][T10162] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.064024][T10162] CPU: 1 UID: 0 PID: 10162 Comm: syz.2.2447 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  198.064154][T10162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.064172][T10162] Call Trace:
[  198.064181][T10162]  <TASK>
[  198.064190][T10162]  __dump_stack+0x1d/0x30
[  198.064215][T10162]  dump_stack_lvl+0xe8/0x140
[  198.064241][T10162]  dump_stack+0x15/0x1b
[  198.064308][T10162]  should_fail_ex+0x265/0x280
[  198.064363][T10162]  should_fail+0xb/0x20
[  198.064400][T10162]  should_fail_usercopy+0x1a/0x20
[  198.064483][T10162]  _copy_to_user+0x20/0xa0
[  198.064554][T10162]  vt_ioctl+0xce8/0x1790
[  198.064585][T10162]  ? tty_jobctrl_ioctl+0x29e/0x810
[  198.064615][T10162]  tty_ioctl+0x7db/0xb80
[  198.064647][T10162]  ? __pfx_tty_ioctl+0x10/0x10
[  198.064736][T10162]  __se_sys_ioctl+0xcb/0x140
[  198.064768][T10162]  __x64_sys_ioctl+0x43/0x50
[  198.064799][T10162]  x64_sys_call+0x19a8/0x2fb0
[  198.064843][T10162]  do_syscall_64+0xd0/0x1a0
[  198.064866][T10162]  ? clear_bhb_loop+0x40/0x90
[  198.064886][T10162]  ? clear_bhb_loop+0x40/0x90
[  198.064907][T10162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.065031][T10162] RIP: 0033:0x7f5fea1ae969
[  198.065050][T10162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.065068][T10162] RSP: 002b:00007f5fe8817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  198.065097][T10162] RAX: ffffffffffffffda RBX: 00007f5fea3d5fa0 RCX: 00007f5fea1ae969
[  198.065117][T10162] RDX: 0000200000000040 RSI: 0000000000005601 RDI: 0000000000000004
[  198.065134][T10162] RBP: 00007f5fe8817090 R08: 0000000000000000 R09: 0000000000000000
[  198.065150][T10162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.065245][T10162] R13: 0000000000000000 R14: 00007f5fea3d5fa0 R15: 00007ffc8bc388b8
[  198.065265][T10162]  </TASK>
[  198.382615][T10181] 9pnet_fd: Insufficient options for proto=fd
[  198.413930][T10179] lo speed is unknown, defaulting to 1000
[  198.437793][T10179] vxcan1 speed is unknown, defaulting to 1000
[  198.465761][T10183] lo speed is unknown, defaulting to 1000
[  198.613260][T10183] vxcan1 speed is unknown, defaulting to 1000
[  198.700091][T10193] netlink: '+}[@': attribute type 4 has an invalid length.
[  198.702178][T10194] siw: device registration error -23
[  198.711239][T10193] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  198.725027][T10193] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  198.892203][T10203] netlink: 'syz.5.2461': attribute type 4 has an invalid length.
[  199.094268][T10223] IPVS: stopping master sync thread 10225 ...
[  199.101475][T10225] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  199.107567][T10224] lo speed is unknown, defaulting to 1000
[  199.120632][T10224] vxcan1 speed is unknown, defaulting to 1000
[  199.596132][T10251] 9pnet_fd: Insufficient options for proto=fd
[  199.725436][   T30] kauditd_printk_skb: 119 callbacks suppressed
[  199.725456][   T30] audit: type=1400 audit(1748028886.824:8983): avc:  denied  { write } for  pid=10256 comm="syz.2.2481" path="socket:[30107]" dev="sockfs" ino=30107 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  199.791891][T10268] wireguard0: entered promiscuous mode
[  199.843286][   T30] audit: type=1326 audit(1748028886.934:8984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10273 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe974bae969 code=0x7ffc0000
[  199.872154][   T30] audit: type=1326 audit(1748028886.944:8985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10273 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fe974bae969 code=0x7ffc0000
[  199.906728][   T30] audit: type=1326 audit(1748028886.944:8986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10273 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe974bae969 code=0x7ffc0000
[  200.078099][   T30] audit: type=1326 audit(1748028887.064:8987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.079125][T10288] __nla_validate_parse: 21 callbacks suppressed
[  200.079146][T10288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2492'.
[  200.109806][   T30] audit: type=1326 audit(1748028887.064:8988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.158497][   T30] audit: type=1326 audit(1748028887.064:8989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.186723][   T30] audit: type=1326 audit(1748028887.064:8990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.214129][   T30] audit: type=1326 audit(1748028887.074:8991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.247925][   T30] audit: type=1326 audit(1748028887.074:8992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10271 comm="syz.1.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  200.294900][T10289] random: crng reseeded on system resumption
[  200.441307][T10297] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2495'.
[  200.480926][T10304] 9pnet_fd: Insufficient options for proto=fd
[  200.498521][T10301] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2497'.
[  200.531168][T10308] sd 0:0:1:0: device reset
[  200.554115][T10305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2494'.
[  200.600527][T10314] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2502'.
[  200.626813][T10316] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2501'.
[  200.683492][T10325] loop5: detected capacity change from 0 to 512
[  200.684001][T10320] lo speed is unknown, defaulting to 1000
[  200.699457][T10320] vxcan1 speed is unknown, defaulting to 1000
[  200.732909][T10328] 9pnet_fd: Insufficient options for proto=fd
[  200.806277][T10325] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  200.840401][T10325] EXT4-fs (loop5): mount failed
[  200.916375][T10341] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2508'.
[  200.950453][T10343] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2509'.
[  200.961512][T10341] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2508'.
[  200.980789][T10339] Cannot find add_set index 0 as target
[  201.012910][T10346] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2510'.
[  201.049186][T10351] netlink: 'syz.1.2512': attribute type 10 has an invalid length.
[  201.088545][T10346] random: crng reseeded on system resumption
[  201.213424][T10357] 9pnet_fd: Insufficient options for proto=fd
[  201.388059][T10379] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  201.400594][T10376] IPVS: stopping master sync thread 10379 ...
[  201.651799][T10412] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  201.651958][T10410] IPVS: stopping master sync thread 10412 ...
[  201.699454][T10414] siw: device registration error -23
[  201.776165][T10398] siw: device registration error -23
[  201.945157][T10433] netlink: '+}[@': attribute type 4 has an invalid length.
[  201.960119][T10433] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  201.975447][T10433] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  202.015028][T10447] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  202.034333][T10443] IPVS: stopping master sync thread 10447 ...
[  202.083106][T10451] random: crng reseeded on system resumption
[  202.277526][T10464] lo speed is unknown, defaulting to 1000
[  202.292944][T10464] vxcan1 speed is unknown, defaulting to 1000
[  202.381027][T10467] siw: device registration error -23
[  202.472289][T10481] IPVS: Error connecting to the multicast addr
[  202.507714][T10485] 9pnet_fd: Insufficient options for proto=fd
[  202.540100][T10488] IPVS: Error connecting to the multicast addr
[  202.724264][T10490] siw: device registration error -23
[  202.987242][T10510] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  203.000930][T10509] IPVS: stopping master sync thread 10510 ...
[  203.056072][T10517] FAULT_INJECTION: forcing a failure.
[  203.056072][T10517] name failslab, interval 1, probability 0, space 0, times 0
[  203.070046][T10517] CPU: 1 UID: 0 PID: 10517 Comm: syz.5.2579 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  203.070145][T10517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.070161][T10517] Call Trace:
[  203.070166][T10517]  <TASK>
[  203.070174][T10517]  __dump_stack+0x1d/0x30
[  203.070197][T10517]  dump_stack_lvl+0xe8/0x140
[  203.070250][T10517]  dump_stack+0x15/0x1b
[  203.070299][T10517]  should_fail_ex+0x265/0x280
[  203.070341][T10517]  should_failslab+0x8c/0xb0
[  203.070375][T10517]  kmem_cache_alloc_node_noprof+0x57/0x320
[  203.070403][T10517]  ? alloc_vmap_area+0x200/0x1950
[  203.070455][T10517]  alloc_vmap_area+0x200/0x1950
[  203.070476][T10517]  ? mod_objcg_state+0x40e/0x530
[  203.070512][T10517]  ? should_failslab+0x8c/0xb0
[  203.070556][T10517]  ? __kmalloc_cache_node_noprof+0x18a/0x320
[  203.070731][T10517]  __get_vm_area_node+0x173/0x1d0
[  203.070780][T10517]  __vmalloc_node_range_noprof+0x26a/0xdf0
[  203.070807][T10517]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  203.070846][T10517]  ? avc_has_perm_noaudit+0x1b1/0x200
[  203.070923][T10517]  ? selinux_capable+0x1f9/0x270
[  203.070956][T10517]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  203.071003][T10517]  __vmalloc_noprof+0x5f/0x70
[  203.071033][T10517]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  203.071110][T10517]  bpf_prog_alloc_no_stats+0x47/0x390
[  203.071154][T10517]  ? bpf_prog_alloc+0x2a/0x150
[  203.071193][T10517]  bpf_prog_alloc+0x3c/0x150
[  203.071226][T10517]  bpf_prog_load+0x514/0x1070
[  203.071313][T10517]  ? security_bpf+0x2b/0x90
[  203.071348][T10517]  __sys_bpf+0x51d/0x790
[  203.071538][T10517]  __x64_sys_bpf+0x41/0x50
[  203.071577][T10517]  x64_sys_call+0x2478/0x2fb0
[  203.071617][T10517]  do_syscall_64+0xd0/0x1a0
[  203.071658][T10517]  ? clear_bhb_loop+0x40/0x90
[  203.071737][T10517]  ? clear_bhb_loop+0x40/0x90
[  203.071766][T10517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.071791][T10517] RIP: 0033:0x7f339719e969
[  203.071809][T10517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.071846][T10517] RSP: 002b:00007f3395807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  203.071865][T10517] RAX: ffffffffffffffda RBX: 00007f33973c5fa0 RCX: 00007f339719e969
[  203.071880][T10517] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[  203.071896][T10517] RBP: 00007f3395807090 R08: 0000000000000000 R09: 0000000000000000
[  203.071911][T10517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.071927][T10517] R13: 0000000000000000 R14: 00007f33973c5fa0 R15: 00007ffe9f5f8898
[  203.071953][T10517]  </TASK>
[  203.071965][T10517] syz.5.2579: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  203.080683][T10519] lo speed is unknown, defaulting to 1000
[  203.089140][T10517] ,cpuset=/,mems_allowed=0
[  203.089186][T10517] CPU: 1 UID: 0 PID: 10517 Comm: syz.5.2579 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  203.089308][T10517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.089327][T10517] Call Trace:
[  203.089338][T10517]  <TASK>
[  203.089350][T10517]  __dump_stack+0x1d/0x30
[  203.089382][T10517]  dump_stack_lvl+0xe8/0x140
[  203.089500][T10517]  dump_stack+0x15/0x1b
[  203.089524][T10517]  warn_alloc+0x12b/0x1a0
[  203.089572][T10517]  __vmalloc_node_range_noprof+0x28e/0xdf0
[  203.089643][T10517]  ? avc_has_perm_noaudit+0x1b1/0x200
[  203.089949][T10517]  ? selinux_capable+0x1f9/0x270
[  203.089985][T10517]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  203.090069][T10517]  __vmalloc_noprof+0x5f/0x70
[  203.090103][T10517]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  203.090147][T10517]  bpf_prog_alloc_no_stats+0x47/0x390
[  203.090257][T10517]  ? bpf_prog_alloc+0x2a/0x150
[  203.090299][T10517]  bpf_prog_alloc+0x3c/0x150
[  203.090377][T10517]  bpf_prog_load+0x514/0x1070
[  203.090520][T10517]  ? security_bpf+0x2b/0x90
[  203.090559][T10517]  __sys_bpf+0x51d/0x790
[  203.090681][T10517]  __x64_sys_bpf+0x41/0x50
[  203.090711][T10517]  x64_sys_call+0x2478/0x2fb0
[  203.090741][T10517]  do_syscall_64+0xd0/0x1a0
[  203.090820][T10517]  ? clear_bhb_loop+0x40/0x90
[  203.090851][T10517]  ? clear_bhb_loop+0x40/0x90
[  203.090956][T10517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.090987][T10517] RIP: 0033:0x7f339719e969
[  203.091010][T10517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.091108][T10517] RSP: 002b:00007f3395807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  203.091136][T10517] RAX: ffffffffffffffda RBX: 00007f33973c5fa0 RCX: 00007f339719e969
[  203.091155][T10517] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[  203.091173][T10517] RBP: 00007f3395807090 R08: 0000000000000000 R09: 0000000000000000
[  203.091191][T10517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.091210][T10517] R13: 0000000000000000 R14: 00007f33973c5fa0 R15: 00007ffe9f5f8898
[  203.091239][T10517]  </TASK>
[  203.091362][T10517] Mem-Info:
[  203.117665][T10519] vxcan1 speed is unknown, defaulting to 1000
[  203.120164][T10517] active_anon:10256 inactive_anon:2 isolated_anon:0
[  203.120164][T10517]  active_file:25400 inactive_file:2257 isolated_file:0
[  203.120164][T10517]  unevictable:0 dirty:378 writeback:0
[  203.120164][T10517]  slab_reclaimable:3280 slab_unreclaimable:50462
[  203.120164][T10517]  mapped:32391 shmem:7206 pagetables:765
[  203.120164][T10517]  sec_pagetables:0 bounce:0
[  203.120164][T10517]  kernel_misc_reclaimable:0
[  203.120164][T10517]  free:1847713 free_pcp:4152 free_cma:0
[  203.120296][T10517] Node 0 active_anon:41024kB inactive_anon:8kB active_file:101600kB inactive_file:9028kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:129564kB dirty:1512kB writeback:0kB shmem:28824kB writeback_tmp:0kB kernel_stack:2992kB pagetables:3060kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  203.641136][T10530] siw: device registration error -23
[  203.644509][T10517] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  203.791768][T10517] lowmem_reserve[]: 0 2884 7863 7863
[  203.799390][T10517] Node 0 DMA32 free:2949928kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953560kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  203.836956][T10517] lowmem_reserve[]: 0 0 4978 4978
[  203.846619][T10517] Node 0 Normal free:4417368kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:41140kB inactive_anon:8kB active_file:101600kB inactive_file:9028kB unevictable:0kB writepending:1512kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:14988kB local_pcp:2364kB free_cma:0kB
[  203.886595][T10517] lowmem_reserve[]: 0 0 0 0
[  203.891688][T10517] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  203.908318][T10517] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949928kB
[  203.926836][T10517] Node 0 Normal: 7*4kB (UME) 1*8kB (M) 1*16kB (U) 327*32kB (UM) 624*64kB (UME) 218*128kB (UM) 146*256kB (M) 83*512kB (UME) 43*1024kB (UM) 22*2048kB (UME) 1018*4096kB (UM) = 4417044kB
[  203.949789][T10517] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  203.960612][T10517] 34863 total pagecache pages
[  203.965852][T10517] 3 pages in swap cache
[  203.970422][T10517] Free swap  = 124984kB
[  203.975250][T10517] Total swap = 124996kB
[  203.979918][T10517] 2097051 pages RAM
[  203.984366][T10517] 0 pages HighMem/MovableOnly
[  203.989330][T10517] 80260 pages reserved
[  204.004263][T10544] netlink: 'syz.3.2587': attribute type 4 has an invalid length.
[  204.232340][T10559] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  204.288321][T10566] IPVS: Error connecting to the multicast addr
[  204.413835][T10570] loop3: detected capacity change from 0 to 512
[  204.425264][T10572] lo speed is unknown, defaulting to 1000
[  204.450800][T10572] vxcan1 speed is unknown, defaulting to 1000
[  204.509467][T10570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.526861][T10570] ext4 filesystem being mounted at /521/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  204.793708][   T30] kauditd_printk_skb: 240 callbacks suppressed
[  204.793726][   T30] audit: type=1326 audit(1748028891.894:9232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  204.868269][   T30] audit: type=1326 audit(1748028891.894:9233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  204.899598][   T30] audit: type=1326 audit(1748028891.894:9234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  204.926995][   T30] audit: type=1326 audit(1748028891.894:9235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  204.954632][   T30] audit: type=1326 audit(1748028891.894:9236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  204.973747][T10596] 9pnet_fd: Insufficient options for proto=fd
[  204.984257][   T30] audit: type=1326 audit(1748028891.894:9237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  205.020673][   T30] audit: type=1326 audit(1748028891.894:9238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  205.057589][   T30] audit: type=1326 audit(1748028891.894:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  205.087159][   T30] audit: type=1326 audit(1748028891.894:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  205.103976][T10597] siw: device registration error -23
[  205.114957][   T30] audit: type=1326 audit(1748028891.894:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10590 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44df49e969 code=0x7ffc0000
[  205.172855][T10600] __nla_validate_parse: 16 callbacks suppressed
[  205.172880][T10600] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2606'.
[  205.276081][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.346824][T10612] siw: device registration error -23
[  205.363180][T10615] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2612'.
[  205.417647][T10617] lo speed is unknown, defaulting to 1000
[  205.456159][T10617] vxcan1 speed is unknown, defaulting to 1000
[  205.487378][T10623] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  205.500752][T10623] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  205.543042][T10628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2617'.
[  205.917575][T10643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2621'.
[  205.973147][T10645] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2623'.
[  206.156887][T10653] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2626'.
[  206.212929][T10655] lo speed is unknown, defaulting to 1000
[  206.220956][T10655] vxcan1 speed is unknown, defaulting to 1000
[  206.524931][T10667] netlink: 'syz.2.2632': attribute type 4 has an invalid length.
[  206.596164][T10669] lo speed is unknown, defaulting to 1000
[  206.606453][T10669] vxcan1 speed is unknown, defaulting to 1000
[  206.609237][T10671] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2634'.
[  206.831970][T10681] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2637'.
[  206.913784][T10687] siw: device registration error -23
[  207.090748][T10699] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2645'.
[  207.169929][T10702] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2646'.
[  207.205818][T10708] random: crng reseeded on system resumption
[  207.369350][T10715] lo speed is unknown, defaulting to 1000
[  207.377076][T10715] vxcan1 speed is unknown, defaulting to 1000
[  207.682625][ T3321] ==================================================================
[  207.691380][ T3321] BUG: KCSAN: data-race in __dentry_kill / d_set_d_op
[  207.699359][ T3321] 
[  207.701704][ T3321] read-write to 0xffff88811cc5ac00 of 4 bytes by task 3314 on cpu 1:
[  207.710008][ T3321]  d_set_d_op+0x143/0x1d0
[  207.714378][ T3321]  simple_lookup+0x7c/0xa0
[  207.718831][ T3321]  path_openat+0xcf0/0x2170
[  207.723720][ T3321]  do_filp_open+0x109/0x230
[  207.728422][ T3321]  do_sys_openat2+0xa6/0x110
[  207.733729][ T3321]  __x64_sys_openat+0xf2/0x120
[  207.738690][ T3321]  x64_sys_call+0x1af/0x2fb0
[  207.743660][ T3321]  do_syscall_64+0xd0/0x1a0
[  207.748287][ T3321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.754560][ T3321] 
[  207.757824][ T3321] read to 0xffff88811cc5ac00 of 4 bytes by task 3321 on cpu 0:
[  207.765749][ T3321]  __dentry_kill+0x2aa/0x4b0
[  207.770566][ T3321]  dput+0x5e/0xd0
[  207.774254][ T3321]  step_into+0x5b2/0x820
[  207.778798][ T3321]  path_openat+0x13e8/0x2170
[  207.784003][ T3321]  do_filp_open+0x109/0x230
[  207.788560][ T3321]  do_sys_openat2+0xa6/0x110
[  207.793239][ T3321]  __x64_sys_openat+0xf2/0x120
[  207.798295][ T3321]  x64_sys_call+0x1af/0x2fb0
[  207.802921][ T3321]  do_syscall_64+0xd0/0x1a0
[  207.807756][ T3321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.814387][ T3321] 
[  207.816723][ T3321] value changed: 0x01000000 -> 0x00000008
[  207.823689][ T3321] 
[  207.826179][ T3321] Reported by Kernel Concurrency Sanitizer on:
[  207.833790][ T3321] CPU: 0 UID: 0 PID: 3321 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(voluntary) 
[  207.850147][ T3321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.861379][ T3321] ==================================================================