last executing test programs:

1m38.207268175s ago: executing program 0 (id=2011):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xe8, 0xe8, 0x5, [@func={0xc, 0x0, 0x0, 0xc, 0x1}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0x9}}, @struct={0xe, 0x1, 0x0, 0x4, 0x0, 0x2, [{0x7, 0x4, 0x9}]}, @enum64={0x9, 0x7, 0x0, 0x13, 0x0, 0x0, [{0x8, 0x6, 0x9}, {0xf, 0x6, 0xc}, {0x4, 0x10001, 0x7fff}, {0xf, 0x100, 0x8}, {0xd, 0x6, 0x591}, {0xe, 0x4, 0x2}, {0x3, 0x2}]}, @func={0x3, 0x0, 0x0, 0xc, 0x4}, @func_proto={0x0, 0x4, 0x0, 0xd, 0x0, [{0x6, 0x4}, {0x2}, {0x9, 0x5}, {0x7, 0x3}]}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0xb, 0x4}]}]}, {0x0, [0x5f, 0x5f, 0x5f]}}, &(0x7f0000000140)=""/6, 0x105, 0x6, 0x0, 0x0, 0x10000}, 0x28)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000100)='btrfs_flush_space\x00', r1, 0x0, 0x9}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
close(r2)

1m38.132977466s ago: executing program 0 (id=2015):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, 0x0, 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
r5 = creat(&(0x7f00000003c0)='./file0\x00', 0x36)
write$bt_hci(r5, &(0x7f00000001c0)=ANY=[], 0x6)

1m38.111627166s ago: executing program 0 (id=2016):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000240)={[{@errors_remount}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@errors_remount}, {@block_validity}, {@grpjquota}]}, 0x3, 0x45b, &(0x7f00000010c0)="$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")
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x8, 0x6}, 0x120, 0xffff, 0x33f8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x100020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close(0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd}, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
setgid(0xee01)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
setitimer(0x0, 0x0, 0x0)
openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)

1m37.96588591s ago: executing program 0 (id=2018):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000003e40), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x3c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xdefd}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x1}]}, 0x3c}}, 0x400c890)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r3}, './file0/../file0\x00'})
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x1b, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x10000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x7}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x7fff, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)

1m37.806508652s ago: executing program 0 (id=2022):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000640)='ext4_mballoc_alloc\x00', r1}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r4, 0x0, 0xb}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
flistxattr(r5, 0x0, 0x0)
socketpair(0x1d, 0x2, 0x2, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x5, 0x2, 0x7, 0x0, 0x1, 0xffffffff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r7}, 0x18)
r8 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r8, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='sessionid\x00')
preadv(r9, &(0x7f0000000240)=[{&(0x7f00000004c0)=""/152, 0x98}, {0x0}], 0x2, 0x0, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000040)={@private2, <r10=>0x0}, &(0x7f0000000080)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r9, 0x89f1, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000280)={'ip6gre0\x00', r10, 0x29, 0x23, 0x5, 0x9, 0x45, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1, 0x8000, 0x8, 0x8}})
creat(&(0x7f0000000340)='./bus\x00', 0x10)
socket(0xf, 0x5, 0x8000)

1m37.324107572s ago: executing program 0 (id=2030):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3, 0x0, 0x2ca}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x94eb2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

1m37.323963792s ago: executing program 32 (id=2030):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3, 0x0, 0x2ca}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x94eb2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

27.885495215s ago: executing program 3 (id=3259):
bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x1000007}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffff"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_type(r1, &(0x7f0000000100), 0x2, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000004001000040122000b00000001000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000002800100"/28], 0x48)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af0b"], 0x6)

27.783988147s ago: executing program 3 (id=3260):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0xc000, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0xffffffffffffffff, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x315, 0x24b4}, [@IFLA_MASTER={0x8, 0xa, r2}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x44}, 0x1, 0x0, 0x0, 0x24004844}, 0x8000002)

26.923939043s ago: executing program 3 (id=3270):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000021c0)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {}, {0xffff, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x2, 0x6, 0xb, 0x3, 0x5}, 0x4, 0x11}, [{0xfffffffc, 0xfffffff9, 0x1d47, 0x3, 0x2, 0xe}, {0x8, 0x3, 0x0, 0x7e2, 0x2, 0x3}, {0x9, 0x27c, 0x9bc, 0x7, 0x8, 0x4}, {0x6, 0x7f, 0xc, 0x9, 0x3364, 0x8001}, {0x10001, 0x5, 0xf, 0xffffffff, 0x3, 0x13b}, {0x3, 0x14349d83, 0x4, 0x0, 0x77, 0x7ff}, {0x7, 0xc, 0xff, 0xfffffffe, 0x1, 0x3}, {0xb17, 0x5, 0x5, 0xc2, 0x8, 0x7}, {0x5, 0xffffff62, 0x0, 0x3, 0xf5, 0x2}, {0x4538, 0x4, 0x9426, 0x1, 0x81, 0x197d}, {0xfffffff9, 0x25e0, 0x1, 0x5, 0xd, 0x8}, {0x4, 0x91, 0x10004, 0x200, 0x5}, {0x0, 0xfffff4e1, 0x7fffffff, 0x1, 0x20001, 0xe2}, {0x9, 0x10001, 0x7fffffff, 0x4, 0x6, 0x4f}, {0x5, 0xfffffffb, 0x1, 0x3, 0x9, 0x9}, {0xffffc92f, 0x7fff, 0x6, 0x2, 0x5, 0x3}, {0x1, 0x6, 0x401, 0x3, 0x0, 0x881}, {0x3, 0xf, 0x6b, 0x9bb5, 0x60}, {0xf, 0x3, 0x2, 0x6a41, 0x2, 0x1}, {0x100, 0x1, 0x7, 0x7ffe, 0x5, 0x8}, {0x7, 0x0, 0x7ff, 0x9, 0x634, 0x9}, {0x2, 0x186, 0x0, 0x9, 0x4, 0x6}, {0x10001, 0x19, 0x6, 0x800, 0x7, 0xfffffffe}, {0x39, 0x8, 0x0, 0x5, 0xc3f, 0x6d}, {0xfffffff7, 0xe3, 0x1, 0xffffffd2, 0x8, 0x944}, {0x0, 0x8000, 0x4, 0xffffffff, 0x1, 0x4}, {0x4, 0x4, 0xea82, 0xd16, 0xe687, 0xb}, {0xb9e, 0x800, 0x3eaa2532, 0x80000001, 0x2, 0x5}, {0x0, 0x4, 0x3, 0xa9, 0x2, 0x23f3}, {0x1f, 0x47, 0xfffffff7, 0x4, 0x6, 0x8}, {0x3, 0xb01, 0x26, 0x10000, 0x4b, 0x3}, {0x6, 0x9, 0xfffffffc, 0x4, 0x2, 0x1}, {0x668, 0x6, 0x3d, 0x10001, 0xd66e, 0x4}, {0x0, 0xf, 0x0, 0x1ff, 0xcb, 0xffff8001}, {0x4, 0x2, 0xb853, 0x9}, {0x9, 0x5, 0xa, 0x8000, 0x7, 0x1a}, {0x800, 0x4, 0x80, 0x0, 0x4, 0xa}, {0x1, 0xf1f, 0x400, 0x39, 0x40, 0xffff}, {0xe, 0xa8, 0x7fffffff, 0x6, 0x7, 0x6}, {0x10, 0x10, 0xfffffffc, 0x3, 0x3, 0x80}, {0xc, 0x8001, 0x6cbb, 0x2, 0x7fffffff, 0xfffffffc}, {0x3, 0x80000000, 0x8, 0x5, 0x10, 0x200}, {0x800, 0x8, 0x3, 0x8001, 0x81, 0x2}, {0x8, 0xe25, 0x8, 0xffff0001, 0x9, 0xa}, {0x3, 0x8, 0x7, 0x9, 0x4, 0x24}, {0xcd85, 0xb, 0x218a, 0x4, 0x5, 0x1}, {0x200, 0x2, 0x97e, 0x1, 0xa, 0xd814}, {0x1, 0x3ff, 0x6, 0xfffffff2, 0x800, 0x11898e13}, {0x6, 0x2, 0x8000, 0x9, 0x6, 0x2}, {0x1ff, 0x852, 0xc66, 0x7, 0x6, 0x3}, {0x2, 0x9, 0xfffffffa, 0x5, 0x4, 0x2}, {0x3, 0xb, 0x1, 0x9, 0x3dbc0000, 0x200}, {0xfffffffe, 0x8, 0x5b, 0x5, 0x5, 0x2}, {0x9, 0x5, 0x8, 0xffff, 0x7f3b, 0x80}, {0x3, 0x5, 0x8, 0xf96, 0xfe0, 0x9}, {0x10001, 0x4, 0xf, 0x1, 0x401, 0x8}, {0xfffffff5, 0x7ff, 0xffff, 0x8000, 0x7, 0x8}, {0x0, 0xffe00000, 0x9, 0x2, 0xd91, 0x7}, {0x5, 0x2, 0x7fffffff, 0x0, 0xfffffff8, 0xfff}, {0x400, 0x9, 0x6, 0x5, 0x3d63, 0x2}, {0xb6f, 0x9, 0x7fff, 0x48bc, 0x2, 0x7ff}, {0x0, 0x5, 0x2, 0x8, 0x85, 0x10}, {0xff, 0x0, 0x0, 0x7, 0x2, 0x6}, {0x83, 0x0, 0x200, 0x9, 0x5, 0x3}, {0x9, 0x40, 0x18d, 0x7, 0x0, 0x3}, {0x5, 0x7ff80000, 0xffffffff, 0xd, 0x80000000, 0x3}, {0x80000001, 0x81, 0x7a82, 0x0, 0x3, 0x4}, {0x1000, 0x298edb52, 0x8, 0x6cd, 0xfffffff8, 0xeecf}, {0x5, 0x2, 0x6, 0x3ff, 0x8, 0x10}, {0x4, 0x9, 0x7, 0x1, 0x7, 0x1}, {0x80000001, 0xffffff80, 0x7ff, 0x9, 0x9, 0x6}, {0x3, 0x8, 0x7, 0xb2d, 0x8, 0x85}, {0xb3b, 0x9fee, 0xbe1, 0xb1a0, 0x9, 0x100}, {0x0, 0x5b, 0x6fc, 0x9, 0x7, 0x41}, {0x5, 0x7, 0x3, 0x3, 0x0, 0x10001}, {0x8, 0x84, 0x3, 0x80000001, 0x3}, {0x8, 0x8001, 0x7, 0x7f, 0x2, 0x8}, {0x4, 0x1ff, 0x6d3, 0x6, 0x6, 0xa000}, {0x10001, 0xbf4, 0x2, 0x8001, 0x7f, 0x9}, {0x3800000, 0x6, 0x1ff, 0x10000, 0xffffff9e, 0x3}, {0x87, 0x0, 0x4, 0x1, 0x3, 0x7}, {0x8, 0x7, 0x5, 0x5, 0x10000, 0x1}, {0x6, 0x4, 0x80090f3, 0x4, 0xa9, 0x3}, {0x7fffffff, 0x9, 0x6, 0x3, 0xd105, 0x4}, {0x5, 0x4, 0xa, 0x6, 0x5, 0x2}, {0x5, 0x7a96, 0xa54, 0x100, 0x0, 0xe}, {0x1, 0xfffffffe, 0x4, 0x6, 0x6}, {0x0, 0x2, 0x4, 0x2, 0x2, 0xe4}, {0xc000008, 0xfff, 0x6, 0x6, 0x894, 0x6}, {0x3, 0x3, 0x2, 0x1678, 0x5, 0x2}, {0x6, 0x80000001, 0xde1, 0xff, 0x7, 0x8}, {0x2, 0x0, 0x7fff, 0x80000003, 0x2, 0x86db}, {0xf7ef, 0x7, 0x200, 0x4, 0x8, 0xc6ab}, {0x2, 0x1, 0x2, 0x2, 0x6, 0x9}, {0x5e24, 0x8, 0xffffffff, 0x6, 0x1000, 0x8}, {0x2, 0x2, 0xff, 0x3, 0xf, 0x5}, {0x7, 0x8, 0x2e16, 0x3ff, 0x40, 0x401}, {0x6, 0x3, 0x5, 0xfffffff9, 0xbd83, 0x7}, {0x7e1, 0x9, 0x7ff, 0x100000, 0x7, 0x401}, {0x4, 0xb, 0x4, 0x8, 0x3ff, 0xf32}, {0x7, 0xfff, 0x3, 0xaeb3, 0x7, 0xffff}, {0x5, 0x5f, 0x3ff, 0x8, 0x101, 0xffffd456}, {0x0, 0x9, 0x6, 0x400, 0x2, 0x7}, {0xbda0, 0xc, 0x8, 0x4, 0x553, 0x101}, {0x3, 0x1000, 0x5, 0x37, 0xbcc2, 0x345}, {0x100, 0x0, 0x7f, 0xffffff00, 0x1ff, 0x8}, {0x1, 0x4, 0xfff, 0x2, 0x2, 0x7}, {0x9, 0x9, 0x467, 0x4, 0x4, 0x2}, {0x8cd, 0x5, 0x2, 0x4c, 0xc, 0x8}, {0x2, 0x10000, 0x8, 0x0, 0x200, 0x2}, {0x7, 0x80000000, 0x101, 0x401, 0x1ff, 0x4}, {0x10, 0x8, 0x9, 0x6, 0x1, 0x4}, {0x2, 0x0, 0x9, 0x3, 0x3, 0x5}, {0xfa, 0x2, 0x6, 0xff, 0x1, 0x401}, {0x42, 0x1, 0x2, 0x4, 0x0, 0x1}, {0x6, 0x4, 0x9, 0x5, 0x2097, 0x47}, {0x10001, 0x9, 0x9, 0x2, 0x6539, 0xfffffff7}, {0x82, 0xb00, 0x86, 0x1, 0x10, 0x80000001}, {0x8, 0x9, 0xc, 0x8000, 0x3, 0x5}, {0x0, 0xfffffff7, 0x6, 0xbb, 0x7fff, 0x3}, {0x4, 0x1800000, 0xfffffffd, 0x4, 0x1c000, 0x68}, {0x0, 0xfffffffb, 0x5, 0x6c, 0x4, 0x5}, {0x5, 0x7, 0x9, 0x9, 0x2, 0x4}, {0x9, 0x1, 0xfff, 0x9, 0xc, 0xfffffffb}, {0x9, 0x7f3, 0x1000, 0x4, 0x5, 0x3}, {0x1, 0x401, 0xffffe7ad, 0xa, 0x894, 0x7}, {0x64d7e3ec, 0x2000009, 0x203, 0x5, 0x8001, 0x8}, {0x0, 0x78f3, 0x7fffffff, 0x78b, 0xffffffff, 0x3}], [{0x1, 0x1}, {0x5}, {0x3}, {0x0, 0x1}, {0x2}, {0x2}, {0x4}, {0x2}, {0x3}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x6}, {0x1}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x1}, {0x5}, {0x1}, {0x3}, {0x1, 0x1}, {0x3}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x3}, {0x1}, {0x7}, {0x0, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x5}, {}, {0x3}, {0x1, 0x1}, {0x2}, {0x1, 0x1}, {0x5}, {0x1}, {}, {0x5}, {}, {0x1}, {0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x5}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x4}, {0x4}, {0x3}, {0x4}, {0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x2, 0x1}, {0x5, 0x1}, {0x2}, {0x1}, {0xdc11eedf34026e23}, {0x2, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x5}, {}, {0x3}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x1}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x1}, 0x800)

26.871570734s ago: executing program 3 (id=3271):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x545, &(0x7f0000001300)="$eJzs3c9vHFcdAPDvrL2Okzi1CxygUktFi5IKshvXtLU4lCIhOFVClHsw9saysvZG9rqNrQo2fwESQoDECS5ckPgDkFAkLhwRUiQ4g1QEQpCCBIfSQbM7G5v1rL0xa2+8/nykybw3v77f5/iNZ3aeZgM4t56PiDci4sM0TV+KiNl8eSmfotWZsu3ef/jucjYlkaZv/S2JJF+WbZamado95uV8t+mI+NpXIr6Z7As4nc93dm8v1eu1zbxaba7fqW7t7F5fW19ara3WNhYW5l9dfG3xlcUbQ2nnlYh4/Ut/+v53fvrl13/52Xf+ePMv176VpTWTr++24xgmD1vZaXr5wnTPDpvHDPYkytpT/iCvXBxsn3snmRAAAH1l1/gfiYhPRcRLMRsTh1/OAgAAAGdQ+oWZ+CDpPL8rMNVnOQAAAHCGlNpjYJNSJR8LMBOlUqXSGcP7sbhUqje2mp+51djeWOmMlZ2LcunWWr12Ix8rPBflJKvPt8t79Zd76gsR8XREfG/2YrteWW7UV0b94QcAAACcE5d77v//Odu5/z9ccjrJAQAAAMMzN+oEAAAAgBPn/h8AAADGWnnUCQAAAAAn7qtvvplNaff7r1fe3tm+3Xj7+kpt63ZlfXu5stzYvFNZbTRW2+/sWz/qePVG487nYmP7brVZ22pWr+zs3lxvbG80b67F9Kk0CAAAADjg6U/e/30SEa3PX2xPmalRJwWcislHpe47PQt6/x+e6szfO6WkgFMxMcA2710oXu46Ac62yd4Fffo6MH6M/weO+kaPvoN3ftOZlYacDwAAMHxXP1H8/P/o6/mWS34443RiOL96nv+ns6NKBDh17ef/gw7kcbEAY6U80AhAYJz9v8//j5amj5UQAAAwdDPtKSlV8o/3ZqJUqlQirrS/FrCc3Fqr125ExFMR8bvZ8oWsPt/eMznyngEAAAAAAAAAAAAAAAAAAAAAAAAA6EjTJFIAAABgrEWU/pz8qvMu/6uzL870fj4wlfy7/ZXAUxHxzo/e+sHdpWZzcz5b/vdHy5s/zJe/PIpPMAAAAIBe3fv09vxfo84GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHHz/sN3l7vTAJtfHFbcv34xIuaK4k/GdHs+HeWIuPSPJCb37ZdExMQQ4rfuRcTHi+InWVqPQhbFH8YPoXUvaaVthfFjLv8pFMW/PIT4cJ7dz84/bxT1/1I8354X97/JiP+pH1f/8188Ov9N9On/VwaM8cyDn1f7xr8X8cxk8fmvGz/pE/+FgaKX4xtf393ttzb9ccTV7t+f9hlvf4S9UrW5fqe6tbN7fW19abW2WttYWJh/dfG1xVcWb1RvrdVr+b+FMb777C8+PKz9lwr//iV5Nv3b/2LB8SYK8v/Pg7sPP9qttA7Gv/ZCQfxf/yTf4mD8Uh7n03k5W3+1W251yvs997PfPndY+1f22l9+nP//a/0O2utAR3l2sF8dAOBEbO3s3l6q12ubY1vI7tKfgDSOU5iKJyKN8S18Oys8GNYB0zRNsz5VsOp+RAxynCSG3NJScT57hb5ngFGfmQAAgGHbu+gfdSYAAAAAAAAAAAAAAAAAAABwfp3GW9Z6Y+69AjkZxiu0AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACG4r8BAAD//7gG3Ac=")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$setregset(0x4205, r1, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b0101edbf6dd6d111d6132f1821a4e4cbec8438c571a70e7ca7b0451a6cc55c", 0x98})
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000b40)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000b00)={<r3=>0xffffffffffffffff}, 0x2, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f00000003c0)=0x6, r3, 0x0, 0x0, 0x1}}, 0x20)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000300))
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)
ptrace$setregset(0x4205, r1, 0x1, &(0x7f0000000240)={&(0x7f0000000200)="c945b9caf300000000f1f413b2f3e6817c0f2e18", 0x14})
process_vm_readv(r1, &(0x7f0000000080)=[{&(0x7f0000000100)=""/81, 0x51}], 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000280)=""/59, 0x3b}], 0x2, 0x0)
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, 0x0, &(0x7f0000000180)={0x3, 0x7, 0x0, 0x2})

26.382492904s ago: executing program 3 (id=3275):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/seq/clients\x00', 0x0, 0x0)
close(r2)
r3 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0)
pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r5 = dup(r4)
sendfile(r5, r3, 0x0, 0x8000fffffffc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newtaction={0x64, 0x30, 0xb, 0x270bd2a, 0x0, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x3ff, 0x9, 0x0, 0x61, 0x200}, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x60048804}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0x800000000006}, 0x18)

25.867921043s ago: executing program 3 (id=3281):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000021c0)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {}, {0xffff, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x2, 0x6, 0xb, 0x3, 0x5}, 0x4, 0x11}, [{0xfffffffc, 0xfffffff9, 0x1d47, 0x3, 0x2, 0xe}, {0x8, 0x3, 0x0, 0x7e2, 0x2, 0x3}, {0x9, 0x27c, 0x9bc, 0x7, 0x8, 0x4}, {0x6, 0x7f, 0xc, 0x9, 0x3364, 0x8001}, {0x10001, 0x5, 0xf, 0xffffffff, 0x3, 0x13b}, {0x3, 0x14349d83, 0x4, 0x0, 0x77, 0x7ff}, {0x7, 0xc, 0xff, 0xfffffffe, 0x1, 0x3}, {0xb17, 0x5, 0x5, 0xc2, 0x8, 0x7}, {0x5, 0xffffff62, 0x0, 0x3, 0xf5, 0x2}, {0x4538, 0x4, 0x9426, 0x1, 0x81, 0x197d}, {0xfffffff9, 0x25e0, 0x1, 0x5, 0xd, 0x8}, {0x4, 0x91, 0x10004, 0x200, 0x5}, {0x0, 0xfffff4e1, 0x7fffffff, 0x1, 0x20001, 0xe2}, {0x9, 0x10001, 0x7fffffff, 0x4, 0x6, 0x4f}, {0x5, 0xfffffffb, 0x1, 0x3, 0x9, 0x9}, {0xffffc92f, 0x7fff, 0x6, 0x2, 0x5, 0x3}, {0x1, 0x6, 0x401, 0x3, 0x0, 0x881}, {0x3, 0xf, 0x6b, 0x9bb5, 0x60}, {0xf, 0x3, 0x2, 0x6a41, 0x2, 0x1}, {0x100, 0x1, 0x7, 0x7ffe, 0x5, 0x8}, {0x7, 0x0, 0x7ff, 0x9, 0x634, 0x9}, {0x2, 0x186, 0x0, 0x9, 0x4, 0x6}, {0x10001, 0x19, 0x6, 0x800, 0x7, 0xfffffffe}, {0x39, 0x8, 0x0, 0x5, 0xc3f, 0x6d}, {0xfffffff7, 0xe3, 0x1, 0xffffffd2, 0x8, 0x944}, {0x0, 0x8000, 0x4, 0xffffffff, 0x1, 0x4}, {0x4, 0x4, 0xea82, 0xd16, 0xe687, 0xb}, {0xb9e, 0x800, 0x3eaa2532, 0x80000001, 0x2, 0x5}, {0x0, 0x4, 0x3, 0xa9, 0x2, 0x23f3}, {0x1f, 0x47, 0xfffffff7, 0x4, 0x6, 0x8}, {0x3, 0xb01, 0x26, 0x10000, 0x4b, 0x3}, {0x6, 0x9, 0xfffffffc, 0x4, 0x2, 0x1}, {0x668, 0x6, 0x3d, 0x10001, 0xd66e, 0x4}, {0x0, 0xf, 0x0, 0x1ff, 0xcb, 0xffff8001}, {0x4, 0x2, 0xb853, 0x9}, {0x9, 0x5, 0xa, 0x8000, 0x7, 0x1a}, {0x800, 0x4, 0x80, 0x0, 0x4, 0xa}, {0x1, 0xf1f, 0x400, 0x39, 0x40, 0xffff}, {0xe, 0xa8, 0x7fffffff, 0x6, 0x7, 0x6}, {0x10, 0x10, 0xfffffffc, 0x3, 0x3, 0x80}, {0xc, 0x8001, 0x6cbb, 0x2, 0x7fffffff, 0xfffffffc}, {0x3, 0x80000000, 0x8, 0x5, 0x10, 0x200}, {0x800, 0x8, 0x3, 0x8001, 0x81, 0x2}, {0x8, 0xe25, 0x8, 0xffff0001, 0x9, 0xa}, {0x3, 0x8, 0x7, 0x9, 0x4, 0x24}, {0xcd85, 0xb, 0x218a, 0x4, 0x5, 0x1}, {0x200, 0x2, 0x97e, 0x1, 0xa, 0xd814}, {0x1, 0x3ff, 0x6, 0xfffffff2, 0x800, 0x11898e13}, {0x6, 0x2, 0x8000, 0x9, 0x6, 0x2}, {0x1ff, 0x852, 0xc66, 0x7, 0x6, 0x3}, {0x2, 0x9, 0xfffffffa, 0x5, 0x4, 0x2}, {0x3, 0xb, 0x1, 0x9, 0x3dbc0000, 0x200}, {0xfffffffe, 0x8, 0x5b, 0x5, 0x5, 0x2}, {0x9, 0x5, 0x8, 0xffff, 0x7f3b, 0x80}, {0x3, 0x5, 0x8, 0xf96, 0xfe0, 0x9}, {0x10001, 0x4, 0xf, 0x1, 0x401, 0x8}, {0xfffffff5, 0x7ff, 0xffff, 0x8000, 0x7, 0x8}, {0x0, 0xffe00000, 0x9, 0x2, 0xd91, 0x7}, {0x5, 0x2, 0x7fffffff, 0x0, 0xfffffff8, 0xfff}, {0x400, 0x9, 0x6, 0x5, 0x3d63, 0x2}, {0xb6f, 0x9, 0x7fff, 0x48bc, 0x2, 0x7ff}, {0x0, 0x5, 0x2, 0x8, 0x85, 0x10}, {0xff, 0x0, 0x0, 0x7, 0x2, 0x6}, {0x83, 0x0, 0x200, 0x9, 0x5, 0x3}, {0x9, 0x40, 0x18d, 0x7, 0x0, 0x3}, {0x5, 0x7ff80000, 0xffffffff, 0xd, 0x80000000, 0x3}, {0x80000001, 0x81, 0x7a82, 0x0, 0x3, 0x4}, {0x1000, 0x298edb52, 0x8, 0x6cd, 0xfffffff8, 0xeecf}, {0x5, 0x2, 0x6, 0x3ff, 0x8, 0x10}, {0x4, 0x9, 0x7, 0x1, 0x7, 0x1}, {0x80000001, 0xffffff80, 0x7ff, 0x9, 0x9, 0x6}, {0x3, 0x8, 0x7, 0xb2d, 0x8, 0x85}, {0xb3b, 0x9fee, 0xbe1, 0xb1a0, 0x9, 0x100}, {0x0, 0x5b, 0x6fc, 0x9, 0x7, 0x41}, {0x5, 0x7, 0x3, 0x3, 0x0, 0x10001}, {0x8, 0x84, 0x3, 0x80000001, 0x3}, {0x8, 0x8001, 0x7, 0x7f, 0x2, 0x8}, {0x4, 0x1ff, 0x6d3, 0x6, 0x6, 0xa000}, {0x10001, 0xbf4, 0x2, 0x8001, 0x7f, 0x9}, {0x3800000, 0x6, 0x1ff, 0x10000, 0xffffff9e, 0x3}, {0x87, 0x0, 0x4, 0x1, 0x3, 0x7}, {0x8, 0x7, 0x5, 0x5, 0x10000, 0x1}, {0x6, 0x4, 0x80090f3, 0x4, 0xa9, 0x3}, {0x7fffffff, 0x9, 0x6, 0x3, 0xd105, 0x4}, {0x5, 0x4, 0xa, 0x6, 0x5, 0x2}, {0x5, 0x7a96, 0xa54, 0x100, 0x0, 0xe}, {0x1, 0xfffffffe, 0x4, 0x6, 0x6}, {0x0, 0x2, 0x4, 0x2, 0x2, 0xe4}, {0xc000008, 0xfff, 0x6, 0x6, 0x894, 0x6}, {0x3, 0x3, 0x2, 0x1678, 0x5, 0x2}, {0x6, 0x80000001, 0xde1, 0xff, 0x7, 0x8}, {0x2, 0x0, 0x7fff, 0x80000003, 0x2, 0x86db}, {0xf7ef, 0x7, 0x200, 0x4, 0x8, 0xc6ab}, {0x2, 0x1, 0x2, 0x2, 0x6, 0x9}, {0x5e24, 0x8, 0xffffffff, 0x6, 0x1000, 0x8}, {0x2, 0x2, 0xff, 0x3, 0xf, 0x5}, {0x7, 0x8, 0x2e16, 0x3ff, 0x40, 0x401}, {0x6, 0x3, 0x5, 0xfffffff9, 0xbd83, 0x7}, {0x7e1, 0x9, 0x7ff, 0x100000, 0x7, 0x401}, {0x4, 0xb, 0x4, 0x8, 0x3ff, 0xf32}, {0x7, 0xfff, 0x3, 0xaeb3, 0x7, 0xffff}, {0x5, 0x5f, 0x3ff, 0x8, 0x101, 0xffffd456}, {0x0, 0x9, 0x6, 0x400, 0x2, 0x7}, {0xbda0, 0xc, 0x8, 0x4, 0x553, 0x101}, {0x3, 0x1000, 0x5, 0x37, 0xbcc2, 0x345}, {0x100, 0x0, 0x7f, 0xffffff00, 0x1ff, 0x8}, {0x1, 0x4, 0xfff, 0x2, 0x2, 0x7}, {0x9, 0x9, 0x467, 0x4, 0x4, 0x2}, {0x8cd, 0x5, 0x2, 0x4c, 0xc, 0x8}, {0x2, 0x10000, 0x8, 0x0, 0x200, 0x2}, {0x7, 0x80000000, 0x101, 0x401, 0x1ff, 0x4}, {0x10, 0x8, 0x9, 0x6, 0x1, 0x4}, {0x2, 0x0, 0x9, 0x3, 0x3, 0x5}, {0xfa, 0x2, 0x6, 0xff, 0x1, 0x401}, {0x42, 0x1, 0x2, 0x4, 0x0, 0x1}, {0x6, 0x4, 0x9, 0x5, 0x2097, 0x47}, {0x10001, 0x9, 0x9, 0x2, 0x6539, 0xfffffff7}, {0x82, 0xb00, 0x86, 0x1, 0x10, 0x80000001}, {0x8, 0x9, 0xc, 0x8000, 0x3, 0x5}, {0x0, 0xfffffff7, 0x6, 0xbb, 0x7fff, 0x3}, {0x4, 0x1800000, 0xfffffffd, 0x4, 0x1c000, 0x68}, {0x0, 0xfffffffb, 0x5, 0x6c, 0x4, 0x5}, {0x5, 0x7, 0x9, 0x9, 0x2, 0x4}, {0x9, 0x1, 0xfff, 0x9, 0xc, 0xfffffffb}, {0x9, 0x7f3, 0x1000, 0x4, 0x5, 0x3}, {0x1, 0x401, 0xffffe7ad, 0xa, 0x894, 0x7}, {0x64d7e3ec, 0x2000009, 0x203, 0x5, 0x8001, 0x8}, {0x0, 0x78f3, 0x7fffffff, 0x78b, 0xffffffff, 0x3}], [{0x1, 0x1}, {0x5}, {0x3}, {0x0, 0x1}, {0x2}, {0x2}, {0x4}, {0x2}, {0x3}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x6}, {0x1}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x1}, {0x5}, {0x1}, {0x3}, {0x1, 0x1}, {0x3}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x3}, {0x1}, {0x7}, {0x0, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x5}, {}, {0x3}, {0x1, 0x1}, {0x2}, {0x1, 0x1}, {0x5}, {0x1}, {}, {0x5}, {}, {0x1}, {0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x5}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x4}, {0x4}, {0x3}, {0x4}, {0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x2, 0x1}, {0x5, 0x1}, {0x2}, {0x1}, {0xdc11eedf34026e23}, {0x2, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x5}, {}, {0x3}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x1}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x1}, 0x800)

25.867657324s ago: executing program 33 (id=3281):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000021c0)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {}, {0xffff, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x2, 0x6, 0xb, 0x3, 0x5}, 0x4, 0x11}, [{0xfffffffc, 0xfffffff9, 0x1d47, 0x3, 0x2, 0xe}, {0x8, 0x3, 0x0, 0x7e2, 0x2, 0x3}, {0x9, 0x27c, 0x9bc, 0x7, 0x8, 0x4}, {0x6, 0x7f, 0xc, 0x9, 0x3364, 0x8001}, {0x10001, 0x5, 0xf, 0xffffffff, 0x3, 0x13b}, {0x3, 0x14349d83, 0x4, 0x0, 0x77, 0x7ff}, {0x7, 0xc, 0xff, 0xfffffffe, 0x1, 0x3}, {0xb17, 0x5, 0x5, 0xc2, 0x8, 0x7}, {0x5, 0xffffff62, 0x0, 0x3, 0xf5, 0x2}, {0x4538, 0x4, 0x9426, 0x1, 0x81, 0x197d}, {0xfffffff9, 0x25e0, 0x1, 0x5, 0xd, 0x8}, {0x4, 0x91, 0x10004, 0x200, 0x5}, {0x0, 0xfffff4e1, 0x7fffffff, 0x1, 0x20001, 0xe2}, {0x9, 0x10001, 0x7fffffff, 0x4, 0x6, 0x4f}, {0x5, 0xfffffffb, 0x1, 0x3, 0x9, 0x9}, {0xffffc92f, 0x7fff, 0x6, 0x2, 0x5, 0x3}, {0x1, 0x6, 0x401, 0x3, 0x0, 0x881}, {0x3, 0xf, 0x6b, 0x9bb5, 0x60}, {0xf, 0x3, 0x2, 0x6a41, 0x2, 0x1}, {0x100, 0x1, 0x7, 0x7ffe, 0x5, 0x8}, {0x7, 0x0, 0x7ff, 0x9, 0x634, 0x9}, {0x2, 0x186, 0x0, 0x9, 0x4, 0x6}, {0x10001, 0x19, 0x6, 0x800, 0x7, 0xfffffffe}, {0x39, 0x8, 0x0, 0x5, 0xc3f, 0x6d}, {0xfffffff7, 0xe3, 0x1, 0xffffffd2, 0x8, 0x944}, {0x0, 0x8000, 0x4, 0xffffffff, 0x1, 0x4}, {0x4, 0x4, 0xea82, 0xd16, 0xe687, 0xb}, {0xb9e, 0x800, 0x3eaa2532, 0x80000001, 0x2, 0x5}, {0x0, 0x4, 0x3, 0xa9, 0x2, 0x23f3}, {0x1f, 0x47, 0xfffffff7, 0x4, 0x6, 0x8}, {0x3, 0xb01, 0x26, 0x10000, 0x4b, 0x3}, {0x6, 0x9, 0xfffffffc, 0x4, 0x2, 0x1}, {0x668, 0x6, 0x3d, 0x10001, 0xd66e, 0x4}, {0x0, 0xf, 0x0, 0x1ff, 0xcb, 0xffff8001}, {0x4, 0x2, 0xb853, 0x9}, {0x9, 0x5, 0xa, 0x8000, 0x7, 0x1a}, {0x800, 0x4, 0x80, 0x0, 0x4, 0xa}, {0x1, 0xf1f, 0x400, 0x39, 0x40, 0xffff}, {0xe, 0xa8, 0x7fffffff, 0x6, 0x7, 0x6}, {0x10, 0x10, 0xfffffffc, 0x3, 0x3, 0x80}, {0xc, 0x8001, 0x6cbb, 0x2, 0x7fffffff, 0xfffffffc}, {0x3, 0x80000000, 0x8, 0x5, 0x10, 0x200}, {0x800, 0x8, 0x3, 0x8001, 0x81, 0x2}, {0x8, 0xe25, 0x8, 0xffff0001, 0x9, 0xa}, {0x3, 0x8, 0x7, 0x9, 0x4, 0x24}, {0xcd85, 0xb, 0x218a, 0x4, 0x5, 0x1}, {0x200, 0x2, 0x97e, 0x1, 0xa, 0xd814}, {0x1, 0x3ff, 0x6, 0xfffffff2, 0x800, 0x11898e13}, {0x6, 0x2, 0x8000, 0x9, 0x6, 0x2}, {0x1ff, 0x852, 0xc66, 0x7, 0x6, 0x3}, {0x2, 0x9, 0xfffffffa, 0x5, 0x4, 0x2}, {0x3, 0xb, 0x1, 0x9, 0x3dbc0000, 0x200}, {0xfffffffe, 0x8, 0x5b, 0x5, 0x5, 0x2}, {0x9, 0x5, 0x8, 0xffff, 0x7f3b, 0x80}, {0x3, 0x5, 0x8, 0xf96, 0xfe0, 0x9}, {0x10001, 0x4, 0xf, 0x1, 0x401, 0x8}, {0xfffffff5, 0x7ff, 0xffff, 0x8000, 0x7, 0x8}, {0x0, 0xffe00000, 0x9, 0x2, 0xd91, 0x7}, {0x5, 0x2, 0x7fffffff, 0x0, 0xfffffff8, 0xfff}, {0x400, 0x9, 0x6, 0x5, 0x3d63, 0x2}, {0xb6f, 0x9, 0x7fff, 0x48bc, 0x2, 0x7ff}, {0x0, 0x5, 0x2, 0x8, 0x85, 0x10}, {0xff, 0x0, 0x0, 0x7, 0x2, 0x6}, {0x83, 0x0, 0x200, 0x9, 0x5, 0x3}, {0x9, 0x40, 0x18d, 0x7, 0x0, 0x3}, {0x5, 0x7ff80000, 0xffffffff, 0xd, 0x80000000, 0x3}, {0x80000001, 0x81, 0x7a82, 0x0, 0x3, 0x4}, {0x1000, 0x298edb52, 0x8, 0x6cd, 0xfffffff8, 0xeecf}, {0x5, 0x2, 0x6, 0x3ff, 0x8, 0x10}, {0x4, 0x9, 0x7, 0x1, 0x7, 0x1}, {0x80000001, 0xffffff80, 0x7ff, 0x9, 0x9, 0x6}, {0x3, 0x8, 0x7, 0xb2d, 0x8, 0x85}, {0xb3b, 0x9fee, 0xbe1, 0xb1a0, 0x9, 0x100}, {0x0, 0x5b, 0x6fc, 0x9, 0x7, 0x41}, {0x5, 0x7, 0x3, 0x3, 0x0, 0x10001}, {0x8, 0x84, 0x3, 0x80000001, 0x3}, {0x8, 0x8001, 0x7, 0x7f, 0x2, 0x8}, {0x4, 0x1ff, 0x6d3, 0x6, 0x6, 0xa000}, {0x10001, 0xbf4, 0x2, 0x8001, 0x7f, 0x9}, {0x3800000, 0x6, 0x1ff, 0x10000, 0xffffff9e, 0x3}, {0x87, 0x0, 0x4, 0x1, 0x3, 0x7}, {0x8, 0x7, 0x5, 0x5, 0x10000, 0x1}, {0x6, 0x4, 0x80090f3, 0x4, 0xa9, 0x3}, {0x7fffffff, 0x9, 0x6, 0x3, 0xd105, 0x4}, {0x5, 0x4, 0xa, 0x6, 0x5, 0x2}, {0x5, 0x7a96, 0xa54, 0x100, 0x0, 0xe}, {0x1, 0xfffffffe, 0x4, 0x6, 0x6}, {0x0, 0x2, 0x4, 0x2, 0x2, 0xe4}, {0xc000008, 0xfff, 0x6, 0x6, 0x894, 0x6}, {0x3, 0x3, 0x2, 0x1678, 0x5, 0x2}, {0x6, 0x80000001, 0xde1, 0xff, 0x7, 0x8}, {0x2, 0x0, 0x7fff, 0x80000003, 0x2, 0x86db}, {0xf7ef, 0x7, 0x200, 0x4, 0x8, 0xc6ab}, {0x2, 0x1, 0x2, 0x2, 0x6, 0x9}, {0x5e24, 0x8, 0xffffffff, 0x6, 0x1000, 0x8}, {0x2, 0x2, 0xff, 0x3, 0xf, 0x5}, {0x7, 0x8, 0x2e16, 0x3ff, 0x40, 0x401}, {0x6, 0x3, 0x5, 0xfffffff9, 0xbd83, 0x7}, {0x7e1, 0x9, 0x7ff, 0x100000, 0x7, 0x401}, {0x4, 0xb, 0x4, 0x8, 0x3ff, 0xf32}, {0x7, 0xfff, 0x3, 0xaeb3, 0x7, 0xffff}, {0x5, 0x5f, 0x3ff, 0x8, 0x101, 0xffffd456}, {0x0, 0x9, 0x6, 0x400, 0x2, 0x7}, {0xbda0, 0xc, 0x8, 0x4, 0x553, 0x101}, {0x3, 0x1000, 0x5, 0x37, 0xbcc2, 0x345}, {0x100, 0x0, 0x7f, 0xffffff00, 0x1ff, 0x8}, {0x1, 0x4, 0xfff, 0x2, 0x2, 0x7}, {0x9, 0x9, 0x467, 0x4, 0x4, 0x2}, {0x8cd, 0x5, 0x2, 0x4c, 0xc, 0x8}, {0x2, 0x10000, 0x8, 0x0, 0x200, 0x2}, {0x7, 0x80000000, 0x101, 0x401, 0x1ff, 0x4}, {0x10, 0x8, 0x9, 0x6, 0x1, 0x4}, {0x2, 0x0, 0x9, 0x3, 0x3, 0x5}, {0xfa, 0x2, 0x6, 0xff, 0x1, 0x401}, {0x42, 0x1, 0x2, 0x4, 0x0, 0x1}, {0x6, 0x4, 0x9, 0x5, 0x2097, 0x47}, {0x10001, 0x9, 0x9, 0x2, 0x6539, 0xfffffff7}, {0x82, 0xb00, 0x86, 0x1, 0x10, 0x80000001}, {0x8, 0x9, 0xc, 0x8000, 0x3, 0x5}, {0x0, 0xfffffff7, 0x6, 0xbb, 0x7fff, 0x3}, {0x4, 0x1800000, 0xfffffffd, 0x4, 0x1c000, 0x68}, {0x0, 0xfffffffb, 0x5, 0x6c, 0x4, 0x5}, {0x5, 0x7, 0x9, 0x9, 0x2, 0x4}, {0x9, 0x1, 0xfff, 0x9, 0xc, 0xfffffffb}, {0x9, 0x7f3, 0x1000, 0x4, 0x5, 0x3}, {0x1, 0x401, 0xffffe7ad, 0xa, 0x894, 0x7}, {0x64d7e3ec, 0x2000009, 0x203, 0x5, 0x8001, 0x8}, {0x0, 0x78f3, 0x7fffffff, 0x78b, 0xffffffff, 0x3}], [{0x1, 0x1}, {0x5}, {0x3}, {0x0, 0x1}, {0x2}, {0x2}, {0x4}, {0x2}, {0x3}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x6}, {0x1}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x1}, {0x5}, {0x1}, {0x3}, {0x1, 0x1}, {0x3}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x3}, {0x1}, {0x7}, {0x0, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x5}, {}, {0x3}, {0x1, 0x1}, {0x2}, {0x1, 0x1}, {0x5}, {0x1}, {}, {0x5}, {}, {0x1}, {0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x5}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x4}, {0x4}, {0x3}, {0x4}, {0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x2, 0x1}, {0x5, 0x1}, {0x2}, {0x1}, {0xdc11eedf34026e23}, {0x2, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x5}, {}, {0x3}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x1}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x1}, 0x800)

11.745847665s ago: executing program 1 (id=3524):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = socket(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000204850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket(0x1e, 0x1, 0x0)
connect$tipc(r3, &(0x7f0000000040)=@id, 0x10)
shutdown(r3, 0x2)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x10000802, 0x80, 0x0, 0x40000}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200010004000000000000001c0000001400", @ANYRES16=r1], 0x28}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r5}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mremap(&(0x7f0000dfd000/0x4000)=nil, 0x4000, 0x1000, 0x6, &(0x7f0000baf000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r4}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2800)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000240)=@sr0, r6, &(0x7f00000004c0))
r7 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r8 = dup(r7)
pipe2$9p(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r10, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRESDEC], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {}, 0x2c, {[{@version_9p2000}]}})
ioctl$TIOCL_SETSEL(r8, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x3, 0x101, 0x100}})

4.538520363s ago: executing program 1 (id=3662):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
select(0x40, &(0x7f0000000400)={0x3, 0x7, 0x7, 0x9, 0x8, 0xa784, 0xd6, 0xfffffffffffffff9}, &(0x7f0000000580)={0x800, 0x0, 0x0, 0x1, 0x4, 0x4, 0x4, 0x2}, &(0x7f0000000600)={0x8, 0x2, 0x401, 0x2, 0x8f6, 0x0, 0x4, 0x9d}, &(0x7f0000000640))

4.487874744s ago: executing program 1 (id=3664):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$cgroup(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x1000000, &(0x7f0000000080)={[{@clone_children}, {@noprefix}, {@noprefix}, {}, {@name={'name', 0x3d, ':{*'}}], [{@obj_user={'obj_user', 0x3d, '\\(.@+^'}}, {@seclabel}]})

4.465609654s ago: executing program 1 (id=3666):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000240)={[{@errors_remount}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@errors_remount}, {@block_validity}, {@grpjquota}]}, 0x3, 0x45b, &(0x7f00000010c0)="$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")
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x8, 0x6}, 0x120, 0xffff, 0x33f8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x100020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close(0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd}, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
setgid(0xee01)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
flock(0xffffffffffffffff, 0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
setitimer(0x0, 0x0, 0x0)
openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)

4.392584536s ago: executing program 1 (id=3670):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a500000008000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
listen(0xffffffffffffffff, 0x0)
connect$unix(r2, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r2, &(0x7f00000005c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r3 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00')
fchdir(r3)
r4 = dup3(0xffffffffffffffff, r2, 0x0)
accept4$unix(r4, 0xfffffffffffffffe, 0x0, 0x0)

4.333909897s ago: executing program 1 (id=3672):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = socket(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000204850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket(0x1e, 0x1, 0x0)
connect$tipc(r3, &(0x7f0000000040)=@id, 0x10)
shutdown(r3, 0x2)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x10000802, 0x80, 0x0, 0x40000}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200010004000000000000001c0000001400", @ANYRES16=r1], 0x28}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r5}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mremap(&(0x7f0000dfd000/0x4000)=nil, 0x4000, 0x1000, 0x6, &(0x7f0000baf000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r4}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2800)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000240)=@sr0, r6, &(0x7f00000004c0))
r7 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r8 = dup(r7)
pipe2$9p(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r10, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRESDEC], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {}, 0x2c, {[{@version_9p2000}]}})
ioctl$TIOCL_SETSEL(r8, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x3, 0x101, 0x100}})

3.215375038s ago: executing program 6 (id=3699):
syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2202)
write(0xffffffffffffffff, &(0x7f00000000c0)="24010000010006d4d851fcc64bda9668df9655fa7c1a456dc5f0ae1922928c7da42cdfb64bb9291b990b03ded404ad4f55306ff77cae4d9166a4561f37d328d06929c99418c1529048abb76fb7fdc995b30e81a3fac99a820899e033fb24b1f9d5b4b59074302780d5da", 0x6a)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x66, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb86dd6745208e00303a000000000000000000ff00ffff64010100ff0200000000000000000000000000010401907800000001630108f9fffb2b0000000000000000000000ffff0a010102f0ff0000000000000000"], 0x0)
recvmmsg(r0, &(0x7f0000000100), 0x1, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendmmsg$inet(r1, &(0x7f00000004c0)=[{{&(0x7f0000000340)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x1a}, @multicast1}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001440)="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", 0xbc1}], 0x1}}], 0x2, 0x40080c0)

2.349119625s ago: executing program 6 (id=3735):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$cgroup(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x1000000, &(0x7f0000000080)={[{@clone_children}, {@noprefix}, {@noprefix}, {}, {@name={'name', 0x3d, ':{*'}}], [{@obj_user={'obj_user', 0x3d, '\\(.@+^'}}, {@seclabel}]})

2.288441666s ago: executing program 6 (id=3728):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000200), &(0x7f00000002c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000010000018010000696c6c2500000000002020207b1a12ff000000004fa100000000000007010000f8ffffffb702000008000000b703000000000000850000009900000095"], &(0x7f0000000000)='syzkaller\x00', 0xa, 0xfe7, &(0x7f0000001e00)=""/4071}, 0x94)
epoll_create(0x3ff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
read$snapshot(r5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
memfd_create(&(0x7f0000000cc0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\xd5\xfd\xa9\r\xac7V\xf2\x93A\x94k\xcd\t\x00\x90\xbe\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\agB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\x9f#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xd8\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x96!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2_\x16\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0V\\w\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x17fNo\xb3\x1d\xbb\xcaI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%UH\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\x02Y\x8e\xae\xf5m\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5\x04\x00\x00\x00\x00\x00\x00\x00\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9\xcfJ\t}\xd4:\xe4\xbe\x1c\x10\n\xc6hPO\xeagxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!D\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\xca\xc5kz\x8e9\xd6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa3d5V\x80\x1a\x90\x10\xe3\xdf%\xfdz\xf7\x9aE\xe6\x9b\x00'/993, 0x3)
r6 = socket$kcm(0x2d, 0x2, 0x0)
vmsplice(r6, &(0x7f0000000280), 0x0, 0x4)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd91}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r9}, 0x10)
write(r8, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c7", 0xb)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7fffeffd)

1.346280604s ago: executing program 6 (id=3742):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000540)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0xf00)

1.295508266s ago: executing program 6 (id=3744):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_uid}, {@cache_readahead}]}})
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r5, &(0x7f0000000140)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r6, @ANYBLOB="0000000a010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000080)=@newlink={0x4c, 0x10, 0x439, 0x70bd2a, 0xffffffea, {0x0, 0x0, 0xe403, r7, 0x3, 0x610c0}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @sit={{0x8}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @private=0xa010102}, @IFLA_IPTUN_6RD_PREFIX={0x14, 0xb, @local}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x39, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x20, 0x7, [{{0x9, 0x4, 0x0, 0xc5, 0x1, 0x3, 0x1, 0x3, 0x5, {0x9, 0x21, 0x6, 0xcb, 0x1, {0x22, 0x8b2}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x40, 0x1a, 0x52}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x3, 0x9, 0x3}}]}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000001000)={0xa, 0x6, 0x310, 0x9, 0x40, 0x85, 0xff, 0x3}, 0x4e, &(0x7f00000006c0)=ANY=[@ANYBLOB="050f4e000514100402cdf86d5330b35d6de6629dea3f3f108c1410040404a52ee7cf1616047dd1e307dfab8d5803100b1410040867a76c91493286ccf1278c386e5e18d80ace01051003000600020081ff"], 0x2, [{0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x1004}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x448}}]})
syz_usb_disconnect(r10)
syz_usb_ep_read(r10, 0x0, 0x4e, &(0x7f0000000740)=""/78)
syz_usb_control_io(r10, &(0x7f0000000640)={0x2c, &(0x7f0000000380)={0x40, 0x2, 0x91, {0x91, 0x22, "14726008e577ac07586eac875afd595404b27cc9a180fd632c0e40ad9ef6c9f13dd2e8db9c989b196dcdf48a6d5b3b49dc746d6078ceb62a23528b8c24f2ba476f6cfc7e2187abcbc8eb9ad5048782ced8c35315796b3f14e35f9667957261c2a0a5dc024ee7946ca8b6edef538218e830d279c68caabf4f31b655bbfa8065d3748d3d25df7fe84e7e66badaaf5033"}}, &(0x7f00000002c0)={0x0, 0x3, 0xb, @string={0xb, 0x3, "ee3d917bc9558781a8"}}, &(0x7f0000000880)={0x0, 0xf, 0xd2, {0x5, 0xf, 0xd2, 0x5, [@ptm_cap={0x3}, @generic={0x50, 0x10, 0xb, "199dc1f3516c9d2605dc0534f6ed41f1441640f17f76f47f9f6ae71d645ac48759641e95cb32da17c70086fa0f80159b6a0ecc82bc0f7738bc74c5b13d2d769d364e3f9b6dbfe46548e4e8b802"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x61, 0x6, 0x0, 0x0, 0x18}, @generic={0x6c, 0x10, 0x1, "7a1b65fdba2d98198b36438194c12c728e93ea74cb24b7d8f83f4a9bec8834166df3ce5148ab323455b530c65a43b666b6d8919b995fb45bd777d9f8d9238a3224fe258d82bc48455fb912ac860d7d10dc0c5ddef102336e7b505daf25f94d67d6ed1dc2ff30620455"}, @ptm_cap={0x3}]}}, &(0x7f0000000300)={0x20, 0x29, 0xf, {0xf, 0x29, 0x31, 0x3, 0x70, 0xd9, "53aaf103", "dfc99bb2"}}, &(0x7f0000000600)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x9, 0x80, 0x4, 0x52, 0x8}}}, &(0x7f0000000e40)={0x84, &(0x7f0000000f00)=ANY=[@ANYBLOB="2012c8000000a47f3194b0ba09c0e5a8a895848d661ee37974b670d2d6a8518b07aac3a006d6f6a75718907fc0e7b708e891cc595b7736139483a94b065ebdf32e14ff75840a06274ef7c60eeca58f9bd16aee6fa776ef406da91cbdf1dc429a04f4cd138c4d6cc21356bec08238bf6f7b149ea293d95281f3a0e23c035e0d3b0510a175f99ae8512dc6038e541b6eb5176e9b4f3ea2f2cd60e33275334cded607fcc57e23f0aecb88f3feb0db9dc4e065eb78a4f9f75ecf28f9282cce639f18e8ac98f9026dbbc84ebbd3ec2383ee90793007586bdc9811"], &(0x7f0000000680)={0x0, 0xa, 0x1, 0x8}, &(0x7f0000000980)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000b00)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000b40)={0x20, 0x0, 0x4, {0x140, 0xa0}}, &(0x7f0000000b80)={0x40, 0x7, 0x2, 0x3}, &(0x7f0000000bc0)={0x40, 0x9, 0x1, 0x9}, &(0x7f0000000c00)={0x40, 0xb, 0x2, 'P&'}, &(0x7f0000000c40)={0x40, 0xf, 0x2, 0x7e04}, &(0x7f0000000c80)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x17}}, &(0x7f0000000cc0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000d00)={0x40, 0x19, 0x2, "82c4"}, &(0x7f0000000d40)={0x40, 0x1a, 0x2}, &(0x7f0000000d80)={0x40, 0x1c, 0x1, 0x7f}, &(0x7f0000000dc0)={0x40, 0x1e, 0x1, 0x9}, &(0x7f0000000e00)={0x40, 0x21, 0x1, 0x9b}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9, 0x0, 0x1000000000}, 0x18)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r12, 0x6, 0x0, 0x0, 0x0)
r13 = fsmount(r12, 0x1, 0x0)
fchmodat(r13, &(0x7f0000000000)='.\x00', 0xe0)
r14 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="31832abd70000000000019000000180001801400020065727370616e300000000000000000007f449dca366ef9d6ed6f1eaf37c767438398212e19dbaf96a0037e1f58d8a3c1408a4a0ed19370a263f595a07519115210141ece50e8ba5f2290c608144ba32432fcb6d36d61b2fbde07526768504dde4463b8f95f7fa014be7e"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

1.222922647s ago: executing program 5 (id=3747):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2cc, &(0x7f0000000100), 0xfd, 0x4a5, &(0x7f0000000e00)="$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")

1.104108469s ago: executing program 5 (id=3748):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc1ffb}]})
select(0x0, 0x0, 0x0, &(0x7f0000000600)={0x8, 0x2, 0x401, 0x2, 0x8f6, 0x0, 0x4, 0x9d}, &(0x7f0000000640))

1.073676509s ago: executing program 5 (id=3749):
bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x1000007}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffff"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_type(r1, &(0x7f0000000100), 0x2, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000004001000040122000b000000010000", @ANYRES32, @ANYBLOB="0000000000000000000000009828c76c89000000000200000028f54e4192535d7f8fc799339c9310cf43a7d8399c8ed6add9f18a97a767de4378c67384c83b7d9825443cb53c023200000000000000b71f8397f02ca53435b6a8a10a5e6fef16a492168bdce76dec95e4c06876ca0fe52a7f0862352119285744fdf93c31569f2c0f0cdd404c06244ad39db389f99cfc", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000002800100"/28], 0x48)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af0b"], 0x6)

1.05512037s ago: executing program 5 (id=3750):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$cgroup(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x1000000, &(0x7f0000000080)={[{@clone_children}, {@noprefix}, {@noprefix}, {}, {@name={'name', 0x3d, ':{*'}}], [{@obj_user={'obj_user', 0x3d, '\\(.@+^'}}, {@seclabel}]})

1.025325431s ago: executing program 5 (id=3751):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f00000005c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

997.156791ms ago: executing program 5 (id=3753):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000200), &(0x7f00000002c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000010000018010000696c6c2500000000002020207b1a12ff000000004fa100000000000007010000f8ffffffb702000008000000b703000000000000850000009900000095"], &(0x7f0000000000)='syzkaller\x00', 0xa, 0xfe7, &(0x7f0000001e00)=""/4071}, 0x94)
epoll_create(0x3ff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
read$snapshot(r5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
memfd_create(&(0x7f0000000cc0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\xd5\xfd\xa9\r\xac7V\xf2\x93A\x94k\xcd\t\x00\x90\xbe\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\agB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\x9f#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xd8\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x96!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2_\x16\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0V\\w\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x17fNo\xb3\x1d\xbb\xcaI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%UH\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\x02Y\x8e\xae\xf5m\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5\x04\x00\x00\x00\x00\x00\x00\x00\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9\xcfJ\t}\xd4:\xe4\xbe\x1c\x10\n\xc6hPO\xeagxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!D\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\xca\xc5kz\x8e9\xd6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa3d5V\x80\x1a\x90\x10\xe3\xdf%\xfdz\xf7\x9aE\xe6\x9b\x00'/993, 0x3)
r6 = socket$kcm(0x2d, 0x2, 0x0)
vmsplice(r6, &(0x7f0000000280), 0x0, 0x4)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd91}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r9}, 0x10)
write(r8, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c7", 0xb)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7fffeffd)

721.936996ms ago: executing program 2 (id=3759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2cc, &(0x7f0000000100), 0xfd, 0x4a5, &(0x7f0000000e00)="$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")

678.509447ms ago: executing program 2 (id=3761):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$cgroup(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x1000000, &(0x7f0000000080)={[{@clone_children}, {@noprefix}, {@noprefix}, {}, {@name={'name', 0x3d, ':{*'}}], [{@obj_user={'obj_user', 0x3d, '\\(.@+^'}}, {@seclabel}]})

612.624258ms ago: executing program 4 (id=3763):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f00000005c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

595.226759ms ago: executing program 2 (id=3764):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendmmsg$inet(r1, &(0x7f00000004c0)=[{{&(0x7f0000000340)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x1a}, @multicast1}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001440)="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", 0xbc1}], 0x1}}], 0x2, 0x40080c0)

569.544569ms ago: executing program 4 (id=3765):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000240)={[{@errors_remount}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@errors_remount}, {@block_validity}, {@grpjquota}]}, 0x3, 0x45b, &(0x7f00000010c0)="$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")
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x8, 0x6}, 0x120, 0xffff, 0x33f8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x100020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000012000000000000"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close(0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
setgid(0xee01)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
flock(0xffffffffffffffff, 0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
setitimer(0x0, 0x0, 0x0)
openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)

547.58136ms ago: executing program 2 (id=3766):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0xf1, &(0x7f0000000240)={&(0x7f0000000500)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0xf1ffffff, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x4}]}}]}, 0x38}}, 0x0)

470.197361ms ago: executing program 6 (id=3767):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000980)=ANY=[@ANYBLOB="54010000100001000000000000000000e000000200000000000000000000000000000000000000000000000000000000002000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x154}}, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r0], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r3}, 0x18)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@getchain={0x34, 0x66, 0x327, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x5, 0x10}, {0x6}, {0xfff3, 0x10}}, [{0x8, 0xb, 0x6}, {0x8, 0xb, 0x2a}]}, 0x34}}, 0x4000811)
setsockopt$inet_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r7, &(0x7f0000001180)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x10121, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0xffffffffffffff1d)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600), 0x1, 0x0, 0x5c}, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000010000000000010000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000808500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r9}, 0x10)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r10, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r10, &(0x7f0000000140)="24010000010006", 0x7)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000040)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r13, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0xfc, 0x0, 0x1, 0xffffffff}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40080c0}, 0x0)

463.928001ms ago: executing program 2 (id=3768):
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4046851, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xfff3, 0xffe0}, {}, {0xffe0, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_IPV4_DST={0x8, 0xc, @private=0xa010102}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000240)={0x0, @broadcast, @empty}, &(0x7f0000000400)=0xc)
read$qrtrtun(r1, &(0x7f0000000440)=""/19, 0x13)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x285}, &(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000480)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
setsockopt$inet_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000007c0), 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x3498, 0x969, 0x0, 0x0, 0x0)
r9 = dup3(r6, r1, 0x80000)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000500), r9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='inet_sk_error_report\x00', r0}, 0x18)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r10, 0x0, 0x4}, 0x18)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000140)={&(0x7f00000005c0)="894dd186f2d7954c48b3c74c881a9fce31df0d0bd15b98fb6c42c8f5e122f3835aceb0dc40d36a98468eefab3dc2c9133b62174c3d4ad0eff839a0cbf0af8b885425bc8f4b3fcafed019f70abe806bc945a1acdcf868c0365d27c22203cff7ed652abb3b774f972de2230e23eb351042b2d1dd22a0bcd5b75e6f3f15971635aa66369ef208a36e205601e333cdda3a0e1dc845b56e71c4acacc2896061192aba3a4e67824afbe9800a4e4d6f4ec8f9253c7f24793b12cef652", &(0x7f0000000680)=""/154, &(0x7f0000000040)="58e15c42ac2e42d5a1a2faafa6fb1d22d6d197d5ce03d4602863de32565239", &(0x7f0000000740)="b06b82ea4d33d217f9be52cd84c1de0f2c9ce178d1d0a103b1c764627143711be0ed8fe95a904f7fd0d171248b3070c958b76ccd085c0898563fd72343ed91f7c7ac3bd19ea2829f2c47ab99d21f19f2edfdd1a48a1b89f45b416f54b8a4a2c7740af2efc08fc8c53c22f258a4001a3603035545600e406386b774365ebcdcb8", 0x9, r9, 0x4}, 0x38)
socket$nl_generic(0x10, 0x3, 0x10)

247.188625ms ago: executing program 2 (id=3769):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = geteuid()
r1 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x4}]}, 0x10)
syz_emit_ethernet(0x66, &(0x7f00000002c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x30, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "00641a", 0x0, 0x3a, 0x0, @mcast1, @mcast1}}}}}}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b9376000000000000000000000000000000000000000000020000000000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb8, 0x19, 0x1, 0xfffffffc, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x2c}, @in6=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0x60}, {0x0, 0x1000000000000401, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x7a, 0x5, 0x0, 0x7fff}, 0x8, 0x0, 0x1, 0x0, 0x3}}, 0xb8}}, 0x8044)
sendto$inet6(r2, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)
syz_mount_image$ext4(&(0x7f00000004c0)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x2214020, &(0x7f0000000200)={[], [{@uid_gt={'uid>', r0}}]}, 0x1, 0x4af, &(0x7f0000000a40)="$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")
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a9a4850000000400000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='itimer_state\x00', r5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$packet(0x11, 0x4000000000002, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x4, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r6, 0x107, 0xe, 0x0, &(0x7f0000004640))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x7, 0x1, 0x0, 0x200000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x100000000000, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_GET_NEXT_ID(0xb, 0x0, 0x0)

247.032536ms ago: executing program 4 (id=3770):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3577244d7c0bbd8b, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4ad3}, 0x1c)

200.015286ms ago: executing program 4 (id=3771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

127.506068ms ago: executing program 4 (id=3772):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11fe", @ANYBLOB], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x3548}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x50, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x20, 0x2, [@TCA_BASIC_EMATCHES={0x1c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_META={0xc, 0x2, 0x0, 0x0, {{0x0, 0x4, 0x4}}}]}]}]}}]}, 0x50}}, 0x0) (fail_nth: 3)

0s ago: executing program 4 (id=3773):
creat(0x0, 0x48)
memfd_create(0x0, 0x6)
r0 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x64)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x3c, 0x4, 0x8, 0x3, 0x0, 0x0, {0x7, 0x0, 0x5}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x888e}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000090}, 0x10)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000100140001"], 0x114}], 0x1, 0x0, 0x0, 0x20000001}, 0x4010)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000600)={{{@in=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x1a}, 0x4e23, 0x0, 0x4e24, 0x0, 0x2, 0x80, 0x0, 0x29, 0x0, r3}, {0xe61, 0x0, 0x0, 0x8, 0xb, 0x800, 0xffd, 0xffffffffffffffff}, {0x7, 0x4, 0x7fffffffffffffff, 0x7}, 0x8000, 0x6e6bb3, 0x0, 0x1, 0x2, 0x1}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4d3, 0x3c}, 0xa, @in6=@remote, 0x3500, 0x2, 0x0, 0x4, 0xc, 0xd0, 0x4001}}, 0xe8)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00"/11], 0x50)
getgid()
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0xc000)

kernel console output (not intermixed with test programs):

extra_isize_ea:2798: inode #11: comm syz.3.3138: corrupted xattr block 95: invalid header
[  211.604300][ T3677] team0 (unregistering): Port device team_slave_1 removed
[  211.604345][T15891] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3138: bg 0: block 7: invalid block bitmap
[  211.627084][T15891] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  211.636216][ T3677] team0 (unregistering): Port device team_slave_0 removed
[  211.643941][T15891] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #11: comm syz.3.3138: corrupted xattr block 95: invalid header
[  211.680231][T15891] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  211.699559][T15891] EXT4-fs (loop3): 1 orphan inode deleted
[  211.712045][T15891] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.730139][T15847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.750651][T15847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.761066][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.802717][T15847] team0: Port device team_slave_0 added
[  211.812068][T15847] team0: Port device team_slave_1 added
[  211.845485][T15847] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.852474][T15847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.878533][T15847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  211.902494][T15847] batman_adv: batadv0: Adding interface: batadv_slave_1
[  211.909517][T15847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.935466][T15847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  212.022625][T15847] hsr_slave_0: entered promiscuous mode
[  212.040957][T15847] hsr_slave_1: entered promiscuous mode
[  212.060919][T15847] debugfs: 'hsr0' already exists in 'hsr'
[  212.066744][T15847] Cannot create hsr debugfs directory
[  212.380467][T15965] 9pnet_fd: Insufficient options for proto=fd
[  212.406238][T15965] loop4: detected capacity change from 0 to 128
[  212.451170][T15847] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  212.465022][T15965] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  212.486524][T15847] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  212.508607][T15847] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  212.535428][T15847] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  212.583414][   T29] kauditd_printk_skb: 546 callbacks suppressed
[  212.583442][   T29] audit: type=1326 audit(212.570:16538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15964 comm="syz.4.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7d4422ebe9 code=0x7ffc0000
[  212.627930][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  212.637204][   T29] audit: type=1326 audit(212.570:16539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15964 comm="syz.4.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d4422ebe9 code=0x7ffc0000
[  212.660314][   T29] audit: type=1326 audit(212.570:16540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15964 comm="syz.4.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d4422ebe9 code=0x7ffc0000
[  212.795578][T15847] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.824526][T15847] 8021q: adding VLAN 0 to HW filter on device team0
[  212.845804][ T3661] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.847116][   T29] audit: type=1326 audit(212.830:16541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.852904][ T3661] bridge0: port 1(bridge_slave_0) entered forwarding state
[  212.875929][   T29] audit: type=1326 audit(212.830:16542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.905950][   T29] audit: type=1326 audit(212.830:16543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.928957][   T29] audit: type=1326 audit(212.830:16544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.952036][   T29] audit: type=1326 audit(212.830:16545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.975195][   T29] audit: type=1326 audit(212.830:16546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  212.998203][   T29] audit: type=1326 audit(212.830:16547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15982 comm="syz.3.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25e085ebe9 code=0x7ffc0000
[  213.024139][  T174] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.031204][  T174] bridge0: port 2(bridge_slave_1) entered forwarding state
[  213.041337][T15983] 9pnet_fd: Insufficient options for proto=fd
[  213.078774][T15983] loop3: detected capacity change from 0 to 128
[  213.079783][T15847] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  213.095430][T15847] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  213.099239][T15983] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  213.109515][T15985] loop4: detected capacity change from 0 to 512
[  213.146363][T15985] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3148: corrupted xattr block 95: invalid header
[  213.190292][T15985] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3148: bg 0: block 7: invalid block bitmap
[  213.237641][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  213.248402][T15985] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  213.256798][T15847] 8021q: adding VLAN 0 to HW filter on device batadv0
[  213.274232][T15985] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3148: corrupted xattr block 95: invalid header
[  213.306903][T15985] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  213.319735][T15985] EXT4-fs (loop4): 1 orphan inode deleted
[  213.328330][T15996] FAULT_INJECTION: forcing a failure.
[  213.328330][T15996] name failslab, interval 1, probability 0, space 0, times 0
[  213.341055][T15996] CPU: 1 UID: 0 PID: 15996 Comm: syz.2.3150 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  213.341089][T15996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  213.341105][T15996] Call Trace:
[  213.341113][T15996]  <TASK>
[  213.341123][T15996]  __dump_stack+0x1d/0x30
[  213.341182][T15996]  dump_stack_lvl+0xe8/0x140
[  213.341208][T15996]  dump_stack+0x15/0x1b
[  213.341230][T15996]  should_fail_ex+0x265/0x280
[  213.341261][T15996]  should_failslab+0x8c/0xb0
[  213.341286][T15996]  kmem_cache_alloc_noprof+0x50/0x310
[  213.341364][T15996]  ? audit_log_start+0x365/0x6c0
[  213.341414][T15996]  ? set_fd_set+0x39/0xa0
[  213.341443][T15996]  audit_log_start+0x365/0x6c0
[  213.341476][T15996]  audit_seccomp+0x48/0x100
[  213.341555][T15996]  ? __seccomp_filter+0x68c/0x10d0
[  213.341576][T15996]  __seccomp_filter+0x69d/0x10d0
[  213.341605][T15996]  ? poll_select_finish+0x3a3/0x3f0
[  213.341715][T15996]  __secure_computing+0x82/0x150
[  213.341736][T15996]  syscall_trace_enter+0xcf/0x1e0
[  213.341759][T15996]  do_syscall_64+0xac/0x200
[  213.341794][T15996]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  213.341862][T15996]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  213.341899][T15996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.341927][T15996] RIP: 0033:0x7fb558afd5fc
[  213.341946][T15996] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  213.341968][T15996] RSP: 002b:00007fb55755f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  213.342028][T15996] RAX: ffffffffffffffda RBX: 00007fb558d35fa0 RCX: 00007fb558afd5fc
[  213.342044][T15996] RDX: 000000000000000f RSI: 00007fb55755f0a0 RDI: 0000000000000003
[  213.342059][T15996] RBP: 00007fb55755f090 R08: 0000000000000000 R09: 0000000000000000
[  213.342076][T15996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.342089][T15996] R13: 00007fb558d36038 R14: 00007fb558d35fa0 R15: 00007fff706b75e8
[  213.342112][T15996]  </TASK>
[  213.342891][T15985] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.442984][T15847] veth0_vlan: entered promiscuous mode
[  213.562510][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.580758][T15847] veth1_vlan: entered promiscuous mode
[  213.594426][T16005] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3152'.
[  213.624088][T16005] 8021q: adding VLAN 0 to HW filter on device bond1
[  213.640977][T15847] veth0_macvtap: entered promiscuous mode
[  213.653007][T16005] vlan2: entered allmulticast mode
[  213.658185][T16005] bond1: entered allmulticast mode
[  213.690901][T15847] veth1_macvtap: entered promiscuous mode
[  213.712539][T15847] batman_adv: batadv0: Interface activated: batadv_slave_0
[  213.747209][T15847] batman_adv: batadv0: Interface activated: batadv_slave_1
[  213.773067][ T3679] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.801110][T16016] FAULT_INJECTION: forcing a failure.
[  213.801110][T16016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.814337][T16016] CPU: 0 UID: 0 PID: 16016 Comm: syz.4.3155 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  213.814371][T16016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  213.814387][T16016] Call Trace:
[  213.814394][T16016]  <TASK>
[  213.814404][T16016]  __dump_stack+0x1d/0x30
[  213.814514][T16016]  dump_stack_lvl+0xe8/0x140
[  213.814535][T16016]  dump_stack+0x15/0x1b
[  213.814550][T16016]  should_fail_ex+0x265/0x280
[  213.814626][T16016]  should_fail+0xb/0x20
[  213.814651][T16016]  should_fail_usercopy+0x1a/0x20
[  213.814680][T16016]  _copy_from_user+0x1c/0xb0
[  213.814738][T16016]  do_fcntl+0x5a3/0xdf0
[  213.814775][T16016]  ? selinux_file_fcntl+0x1cb/0x1e0
[  213.814800][T16016]  __se_sys_fcntl+0xb1/0x120
[  213.814914][T16016]  __x64_sys_fcntl+0x43/0x50
[  213.814950][T16016]  x64_sys_call+0x29a0/0x2ff0
[  213.814976][T16016]  do_syscall_64+0xd2/0x200
[  213.815026][T16016]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  213.815056][T16016]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  213.815085][T16016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.815144][T16016] RIP: 0033:0x7f7d4422ebe9
[  213.815163][T16016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.815185][T16016] RSP: 002b:00007f7d42c97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  213.815208][T16016] RAX: ffffffffffffffda RBX: 00007f7d44465fa0 RCX: 00007f7d4422ebe9
[  213.815222][T16016] RDX: 00002000000006c0 RSI: 0000000000000007 RDI: 000000000000000f
[  213.815233][T16016] RBP: 00007f7d42c97090 R08: 0000000000000000 R09: 0000000000000000
[  213.815271][T16016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.815285][T16016] R13: 00007f7d44466038 R14: 00007f7d44465fa0 R15: 00007ffdf0a85a78
[  213.815308][T16016]  </TASK>
[  213.818349][ T3679] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.020719][ T3679] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.030797][ T3679] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.100353][T16034] netlink: 'syz.1.3161': attribute type 13 has an invalid length.
[  214.111976][T16031] loop4: detected capacity change from 0 to 1024
[  214.122097][T16034] gretap0: refused to change device tx_queue_len
[  214.128908][T16034] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  214.146178][T16035] team0: No ports can be present during mode change
[  214.165306][T16031] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.188931][T16044] FAULT_INJECTION: forcing a failure.
[  214.188931][T16044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.202136][T16044] CPU: 1 UID: 0 PID: 16044 Comm: syz.3.3164 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  214.202166][T16044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.202179][T16044] Call Trace:
[  214.202186][T16044]  <TASK>
[  214.202194][T16044]  __dump_stack+0x1d/0x30
[  214.202217][T16044]  dump_stack_lvl+0xe8/0x140
[  214.202299][T16044]  dump_stack+0x15/0x1b
[  214.202317][T16044]  should_fail_ex+0x265/0x280
[  214.202343][T16044]  should_fail+0xb/0x20
[  214.202364][T16044]  should_fail_usercopy+0x1a/0x20
[  214.202391][T16044]  _copy_from_iter+0xd2/0xe80
[  214.202482][T16044]  ? __build_skb_around+0x1a0/0x200
[  214.202562][T16044]  ? __alloc_skb+0x223/0x320
[  214.202586][T16044]  netlink_sendmsg+0x471/0x6b0
[  214.202661][T16044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.202688][T16044]  __sock_sendmsg+0x142/0x180
[  214.202719][T16044]  ____sys_sendmsg+0x31e/0x4e0
[  214.202752][T16044]  ___sys_sendmsg+0x17b/0x1d0
[  214.202793][T16044]  __x64_sys_sendmsg+0xd4/0x160
[  214.202824][T16044]  x64_sys_call+0x191e/0x2ff0
[  214.202920][T16044]  do_syscall_64+0xd2/0x200
[  214.202953][T16044]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  214.202979][T16044]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  214.203057][T16044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.203079][T16044] RIP: 0033:0x7f25e085ebe9
[  214.203134][T16044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.203152][T16044] RSP: 002b:00007f25df2c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.203216][T16044] RAX: ffffffffffffffda RBX: 00007f25e0a95fa0 RCX: 00007f25e085ebe9
[  214.203230][T16044] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000004
[  214.203242][T16044] RBP: 00007f25df2c7090 R08: 0000000000000000 R09: 0000000000000000
[  214.203255][T16044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.203334][T16044] R13: 00007f25e0a96038 R14: 00007f25e0a95fa0 R15: 00007fff28c1f668
[  214.203429][T16044]  </TASK>
[  214.478330][T16031] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  214.480001][T16052] FAULT_INJECTION: forcing a failure.
[  214.480001][T16052] name failslab, interval 1, probability 0, space 0, times 0
[  214.499566][T16052] CPU: 1 UID: 0 PID: 16052 Comm: syz.3.3167 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  214.499595][T16052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.499646][T16052] Call Trace:
[  214.499653][T16052]  <TASK>
[  214.499662][T16052]  __dump_stack+0x1d/0x30
[  214.499688][T16052]  dump_stack_lvl+0xe8/0x140
[  214.499713][T16052]  dump_stack+0x15/0x1b
[  214.499734][T16052]  should_fail_ex+0x265/0x280
[  214.499764][T16052]  should_failslab+0x8c/0xb0
[  214.499816][T16052]  kmem_cache_alloc_node_noprof+0x57/0x320
[  214.499845][T16052]  ? __alloc_skb+0x101/0x320
[  214.499871][T16052]  __alloc_skb+0x101/0x320
[  214.500038][T16052]  ? audit_log_start+0x365/0x6c0
[  214.500069][T16052]  audit_log_start+0x380/0x6c0
[  214.500138][T16052]  ? __list_add_valid_or_report+0x38/0xe0
[  214.500246][T16052]  audit_seccomp+0x48/0x100
[  214.500270][T16052]  ? __seccomp_filter+0x68c/0x10d0
[  214.500364][T16052]  __seccomp_filter+0x69d/0x10d0
[  214.500429][T16052]  ? up_write+0x18/0x60
[  214.500454][T16052]  ? shmem_file_write_iter+0xd0/0xf0
[  214.500479][T16052]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  214.500504][T16052]  ? vfs_write+0x7e8/0x960
[  214.500529][T16052]  __secure_computing+0x82/0x150
[  214.500603][T16052]  syscall_trace_enter+0xcf/0x1e0
[  214.500634][T16052]  do_syscall_64+0xac/0x200
[  214.500663][T16052]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  214.500685][T16052]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  214.500747][T16052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.500767][T16052] RIP: 0033:0x7f25e085d5fc
[  214.500784][T16052] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  214.500805][T16052] RSP: 002b:00007f25df2c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  214.500827][T16052] RAX: ffffffffffffffda RBX: 00007f25e0a95fa0 RCX: 00007f25e085d5fc
[  214.500905][T16052] RDX: 000000000000000f RSI: 00007f25df2c70a0 RDI: 0000000000000004
[  214.500919][T16052] RBP: 00007f25df2c7090 R08: 0000000000000000 R09: 0000000000000000
[  214.500934][T16052] R10: 000000000004fed0 R11: 0000000000000246 R12: 0000000000000001
[  214.501008][T16052] R13: 00007f25e0a96038 R14: 00007f25e0a95fa0 R15: 00007fff28c1f668
[  214.501027][T16052]  </TASK>
[  214.727629][T16056] 9pnet_virtio: no channels available for device 127.0.0.1
[  214.846135][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.096089][T16102] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16102 comm=syz.2.3181
[  215.108956][T16102] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16102 comm=syz.2.3181
[  215.134014][T16102] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16102 comm=syz.2.3181
[  215.179594][T16109] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3182'.
[  215.194863][ T3677] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  215.206303][T16109] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3182'.
[  215.233473][T16109] FAULT_INJECTION: forcing a failure.
[  215.233473][T16109] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.246671][T16109] CPU: 1 UID: 0 PID: 16109 Comm: syz.5.3182 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  215.246698][T16109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  215.246711][T16109] Call Trace:
[  215.246717][T16109]  <TASK>
[  215.246725][T16109]  __dump_stack+0x1d/0x30
[  215.246750][T16109]  dump_stack_lvl+0xe8/0x140
[  215.246836][T16109]  dump_stack+0x15/0x1b
[  215.246858][T16109]  should_fail_ex+0x265/0x280
[  215.246888][T16109]  should_fail+0xb/0x20
[  215.246907][T16109]  should_fail_usercopy+0x1a/0x20
[  215.246936][T16109]  _copy_from_iter+0xd2/0xe80
[  215.247012][T16109]  ? __build_skb_around+0x1a0/0x200
[  215.247041][T16109]  ? __alloc_skb+0x223/0x320
[  215.247100][T16109]  netlink_sendmsg+0x471/0x6b0
[  215.247136][T16109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.247173][T16109]  __sock_sendmsg+0x142/0x180
[  215.247214][T16109]  ____sys_sendmsg+0x31e/0x4e0
[  215.247251][T16109]  ___sys_sendmsg+0x17b/0x1d0
[  215.247342][T16109]  __x64_sys_sendmsg+0xd4/0x160
[  215.247450][T16109]  x64_sys_call+0x191e/0x2ff0
[  215.247482][T16109]  do_syscall_64+0xd2/0x200
[  215.247513][T16109]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  215.247620][T16109]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  215.247655][T16109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.247677][T16109] RIP: 0033:0x7fc3e011ebe9
[  215.247696][T16109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.247719][T16109] RSP: 002b:00007fc3deb87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.247743][T16109] RAX: ffffffffffffffda RBX: 00007fc3e0355fa0 RCX: 00007fc3e011ebe9
[  215.247759][T16109] RDX: 0000000000000000 RSI: 0000200000005840 RDI: 0000000000000004
[  215.247811][T16109] RBP: 00007fc3deb87090 R08: 0000000000000000 R09: 0000000000000000
[  215.247823][T16109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.247838][T16109] R13: 00007fc3e0356038 R14: 00007fc3e0355fa0 R15: 00007ffeef182f38
[  215.247860][T16109]  </TASK>
[  215.478700][ T3677] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  215.527639][T16128] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3188'.
[  215.532527][T16074] chnl_net:caif_netlink_parms(): no params data found
[  215.562741][T16122] netlink: 'syz.1.3186': attribute type 21 has an invalid length.
[  215.573400][T16131] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3190'.
[  215.589771][T16122] netlink: 'syz.1.3186': attribute type 1 has an invalid length.
[  215.597622][T16122] netlink: 144 bytes leftover after parsing attributes in process `syz.1.3186'.
[  215.607667][ T3677] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  215.632547][T16074] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.639778][T16074] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.651438][T16074] bridge_slave_0: entered allmulticast mode
[  215.658005][T16074] bridge_slave_0: entered promiscuous mode
[  215.665042][T16074] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.672164][T16074] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.679584][T16074] bridge_slave_1: entered allmulticast mode
[  215.686178][T16074] bridge_slave_1: entered promiscuous mode
[  215.698899][ T3677] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  215.716324][T16074] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  215.726964][T16074] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.752236][T16074] team0: Port device team_slave_0 added
[  215.763832][T16074] team0: Port device team_slave_1 added
[  215.781297][T16074] batman_adv: batadv0: Adding interface: batadv_slave_0
[  215.788329][T16074] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.792119][T16148] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3193'.
[  215.814369][T16074] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  215.847828][T16148] bond0: entered promiscuous mode
[  215.852982][T16148] bond_slave_0: entered promiscuous mode
[  215.858728][T16148] bond_slave_1: entered promiscuous mode
[  215.867383][T16148] bond0: left promiscuous mode
[  215.872179][T16148] bond_slave_0: left promiscuous mode
[  215.877756][T16148] bond_slave_1: left promiscuous mode
[  215.894724][T16074] batman_adv: batadv0: Adding interface: batadv_slave_1
[  215.901679][T16074] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.927643][T16074] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  215.942933][T16151] loop5: detected capacity change from 0 to 1024
[  215.968331][T16151] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.987009][T16148] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.3193: Allocating blocks 385-513 which overlap fs metadata
[  216.010552][T16147] EXT4-fs (loop5): pa ffff8881071c1a10: logic 16, phys. 129, len 24
[  216.018682][T16147] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  216.041338][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.066141][ T3677] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  216.074939][ T3677] bond0 (unregistering): Released all slaves
[  216.087787][T16074] hsr_slave_0: entered promiscuous mode
[  216.093940][T16074] hsr_slave_1: entered promiscuous mode
[  216.099892][T16074] debugfs: 'hsr0' already exists in 'hsr'
[  216.105644][T16074] Cannot create hsr debugfs directory
[  216.118950][ T3677] hsr_slave_0: left promiscuous mode
[  216.125423][ T3677] veth0_vlan: left promiscuous mode
[  216.134938][ T3677] pimreg (unregistering): left allmulticast mode
[  216.356258][T16172] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3200'.
[  216.424598][T16184] cgroup: Invalid name
[  216.477858][T16194] FAULT_INJECTION: forcing a failure.
[  216.477858][T16194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.491028][T16194] CPU: 0 UID: 0 PID: 16194 Comm: syz.4.3209 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  216.491061][T16194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  216.491077][T16194] Call Trace:
[  216.491085][T16194]  <TASK>
[  216.491095][T16194]  __dump_stack+0x1d/0x30
[  216.491117][T16194]  dump_stack_lvl+0xe8/0x140
[  216.491137][T16194]  dump_stack+0x15/0x1b
[  216.491154][T16194]  should_fail_ex+0x265/0x280
[  216.491221][T16194]  should_fail+0xb/0x20
[  216.491241][T16194]  should_fail_usercopy+0x1a/0x20
[  216.491267][T16194]  _copy_to_user+0x20/0xa0
[  216.491372][T16194]  __se_sys_getcwd+0x21a/0x300
[  216.491411][T16194]  __x64_sys_getcwd+0x31/0x40
[  216.491439][T16194]  x64_sys_call+0x2d68/0x2ff0
[  216.491462][T16194]  do_syscall_64+0xd2/0x200
[  216.491498][T16194]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  216.491523][T16194]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  216.491553][T16194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.491575][T16194] RIP: 0033:0x7f7d4422ebe9
[  216.491609][T16194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.491627][T16194] RSP: 002b:00007f7d42c97038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[  216.491646][T16194] RAX: ffffffffffffffda RBX: 00007f7d44465fa0 RCX: 00007f7d4422ebe9
[  216.491659][T16194] RDX: 0000000000000000 RSI: 00000000000000c5 RDI: 0000200000000040
[  216.491672][T16194] RBP: 00007f7d42c97090 R08: 0000000000000000 R09: 0000000000000000
[  216.491701][T16194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.491791][T16194] R13: 00007f7d44466038 R14: 00007f7d44465fa0 R15: 00007ffdf0a85a78
[  216.491810][T16194]  </TASK>
[  216.665750][ T3677] IPVS: stop unused estimator thread 0...
[  216.760440][T16074] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  216.773289][T16074] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  216.783447][T16207] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3215'.
[  216.792701][T16074] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  216.802882][T16208] loop4: detected capacity change from 0 to 256
[  216.810774][T16074] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  216.846736][T16074] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.865612][T16074] 8021q: adding VLAN 0 to HW filter on device team0
[  216.874780][ T3679] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.881935][ T3679] bridge0: port 1(bridge_slave_0) entered forwarding state
[  216.911517][ T3679] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.918609][ T3679] bridge0: port 2(bridge_slave_1) entered forwarding state
[  216.932012][T16218] loop4: detected capacity change from 0 to 128
[  216.941227][T16218] EXT4-fs: Ignoring removed nobh option
[  216.954396][T16218] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  217.053020][T16074] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.098958][T16226] cgroup: Invalid name
[  217.140300][T16232] netlink: 'syz.2.3218': attribute type 3 has an invalid length.
[  217.149210][T16232] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3218'.
[  217.160787][T16232] ip6gretap0: entered promiscuous mode
[  217.168467][T16232] ip6gretap0: left promiscuous mode
[  217.201841][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  217.220976][T16074] veth0_vlan: entered promiscuous mode
[  217.231223][T16074] veth1_vlan: entered promiscuous mode
[  217.252305][T16074] veth0_macvtap: entered promiscuous mode
[  217.264770][T16074] veth1_macvtap: entered promiscuous mode
[  217.283850][T16074] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.303903][T16074] batman_adv: batadv0: Interface activated: batadv_slave_1
[  217.317292][ T3679] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.340863][ T3679] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.353041][ T3667] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.373090][ T3667] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.532429][T16252] loop3: detected capacity change from 0 to 512
[  217.552249][T16252] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.3.3225: corrupted xattr block 95: invalid header
[  217.582018][T16252] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3225: bg 0: block 7: invalid block bitmap
[  217.606839][T16252] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  217.632954][T16252] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #11: comm syz.3.3225: corrupted xattr block 95: invalid header
[  217.689605][T16252] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  217.725421][T16260] loop5: detected capacity change from 0 to 128
[  217.732160][T16260] EXT4-fs: Ignoring removed nobh option
[  217.735058][T16252] EXT4-fs (loop3): 1 orphan inode deleted
[  217.765902][T16252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.785069][T16260] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  217.860804][T16074] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.020689][T16280] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  218.031358][T16281] netlink: 'syz.3.3235': attribute type 5 has an invalid length.
[  218.077564][   T29] kauditd_printk_skb: 343 callbacks suppressed
[  218.077578][   T29] audit: type=1326 audit(218.060:16887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.106890][   T29] audit: type=1326 audit(218.060:16888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.138628][T16284] 9pnet_fd: Insufficient options for proto=fd
[  218.151273][T16284] loop3: detected capacity change from 0 to 128
[  218.170155][T16284] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  218.176873][   T29] audit: type=1326 audit(218.120:16889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.205684][   T29] audit: type=1326 audit(218.120:16890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.228853][   T29] audit: type=1326 audit(218.120:16891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.251870][   T29] audit: type=1326 audit(218.120:16892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.274910][   T29] audit: type=1326 audit(218.120:16893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.298018][   T29] audit: type=1326 audit(218.120:16894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.321079][   T29] audit: type=1326 audit(218.120:16895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.344082][   T29] audit: type=1326 audit(218.120:16896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16283 comm="syz.3.3236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05715febe9 code=0x7ffc0000
[  218.368749][T11572] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  218.390191][T16074] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  218.396399][T16289] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3237'.
[  218.946111][T16303] netlink: 'syz.4.3243': attribute type 4 has an invalid length.
[  218.957507][T16303] netlink: 'syz.4.3243': attribute type 4 has an invalid length.
[  219.045942][T16312] loop4: detected capacity change from 0 to 128
[  219.052579][T16312] EXT4-fs: Ignoring removed nobh option
[  219.060067][T16312] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  219.261397][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  219.314348][T16337] sctp: [Deprecated]: syz.3.3253 (pid 16337) Use of struct sctp_assoc_value in delayed_ack socket option.
[  219.314348][T16337] Use struct sctp_sack_info instead
[  219.427199][T16353] loop4: detected capacity change from 0 to 1024
[  219.570916][T16376] team0: Device ipvlan2 failed to register rx_handler
[  219.601182][T16379] Falling back ldisc for ttyS3.
[  220.008327][T16431] loop5: detected capacity change from 0 to 512
[  220.026831][T16431] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3264: corrupted xattr block 95: invalid header
[  220.076952][T16431] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3264: bg 0: block 7: invalid block bitmap
[  220.134442][T16431] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  220.164857][T16431] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3264: corrupted xattr block 95: invalid header
[  220.197559][T16431] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  220.223588][T16431] EXT4-fs (loop5): 1 orphan inode deleted
[  220.229781][T16431] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.266156][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.470186][T16476] loop3: detected capacity change from 0 to 512
[  220.496535][T16476] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  220.528285][T16476] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1128: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  220.546961][T16482] FAULT_INJECTION: forcing a failure.
[  220.546961][T16482] name failslab, interval 1, probability 0, space 0, times 0
[  220.559639][T16482] CPU: 1 UID: 0 PID: 16482 Comm: syz.2.3273 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  220.559695][T16482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  220.559709][T16482] Call Trace:
[  220.559716][T16482]  <TASK>
[  220.559725][T16482]  __dump_stack+0x1d/0x30
[  220.559794][T16482]  dump_stack_lvl+0xe8/0x140
[  220.559834][T16482]  dump_stack+0x15/0x1b
[  220.559853][T16482]  should_fail_ex+0x265/0x280
[  220.559883][T16482]  should_failslab+0x8c/0xb0
[  220.559914][T16482]  kmem_cache_alloc_noprof+0x50/0x310
[  220.560003][T16482]  ? security_inode_alloc+0x37/0x100
[  220.560032][T16482]  security_inode_alloc+0x37/0x100
[  220.560057][T16482]  inode_init_always_gfp+0x4b7/0x500
[  220.560117][T16482]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  220.560155][T16482]  alloc_inode+0x58/0x170
[  220.560189][T16482]  new_inode+0x1d/0xe0
[  220.560253][T16482]  hugetlbfs_get_inode+0x7b/0x370
[  220.560280][T16482]  hugetlb_file_setup+0x192/0x3d0
[  220.560414][T16482]  ksys_mmap_pgoff+0x157/0x310
[  220.560473][T16482]  x64_sys_call+0x14a3/0x2ff0
[  220.560497][T16482]  do_syscall_64+0xd2/0x200
[  220.560534][T16482]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  220.560604][T16482]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  220.560636][T16482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.560656][T16482] RIP: 0033:0x7fb558afebe9
[  220.560670][T16482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.560686][T16482] RSP: 002b:00007fb55755f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  220.560754][T16482] RAX: ffffffffffffffda RBX: 00007fb558d35fa0 RCX: 00007fb558afebe9
[  220.560766][T16482] RDX: 0000000000000003 RSI: 0000000000ff5000 RDI: 0000200000000000
[  220.560777][T16482] RBP: 00007fb55755f090 R08: ffffffffffffffff R09: 0000000000000000
[  220.560789][T16482] R10: 000200000005c832 R11: 0000000000000246 R12: 0000000000000001
[  220.560800][T16482] R13: 00007fb558d36038 R14: 00007fb558d35fa0 R15: 00007fff706b75e8
[  220.560821][T16482]  </TASK>
[  220.565546][T16476] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3271: bg 0: block 248: padding at end of block bitmap is not set
[  220.780034][T16476] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.3271: Failed to acquire dquot type 1
[  220.800761][T16476] EXT4-fs (loop3): 1 truncate cleaned up
[  220.808203][T16476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  220.861576][T16476] syz.3.3271 (16476) used greatest stack depth: 9128 bytes left
[  220.870437][T16074] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 7: comm syz-executor: path /17/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=4096 fake=0
[  220.945897][T16074] EXT4-fs error (device loop3): ext4_empty_dir:3120: inode #11: block 7: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12288, inode=5, rec_len=0, size=4096 fake=0
[  220.972237][T16074] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 7: comm syz-executor: path /17/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=4096 fake=0
[  220.995093][T16074] EXT4-fs error (device loop3): ext4_empty_dir:3120: inode #11: block 7: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12288, inode=5, rec_len=0, size=4096 fake=0
[  221.018620][T16074] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 7: comm syz-executor: path /17/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=4096 fake=0
[  221.051160][T16074] EXT4-fs error (device loop3): ext4_empty_dir:3120: inode #11: block 7: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12288, inode=5, rec_len=0, size=4096 fake=0
[  221.075659][T16074] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 7: comm syz-executor: path /17/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=4096 fake=0
[  221.100263][T16074] EXT4-fs error (device loop3): ext4_empty_dir:3120: inode #11: block 7: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12288, inode=5, rec_len=0, size=4096 fake=0
[  221.121635][T16074] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 7: comm syz-executor: path /17/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=4096 fake=0
[  221.144618][T16074] EXT4-fs error (device loop3): ext4_empty_dir:3120: inode #11: block 7: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12288, inode=5, rec_len=0, size=4096 fake=0
[  221.390063][T16492] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  221.399286][ T3673] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.457223][ T3673] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.517532][ T3673] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.567057][ T3673] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.649621][T16506] chnl_net:caif_netlink_parms(): no params data found
[  221.658856][ T3673] bridge_slave_1: left allmulticast mode
[  221.664623][ T3673] bridge_slave_1: left promiscuous mode
[  221.670329][ T3673] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.678819][ T3673] bridge_slave_0: left allmulticast mode
[  221.684558][ T3673] bridge_slave_0: left promiscuous mode
[  221.690311][ T3673] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.778187][ T3673] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  221.788557][ T3673] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  221.798611][ T3673] bond0 (unregistering): Released all slaves
[  221.846351][T16521] 9pnet_fd: Insufficient options for proto=fd
[  221.863623][T16521] loop5: detected capacity change from 0 to 128
[  221.871386][T16506] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.878646][T16506] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.884031][T16521] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  221.901414][T16506] bridge_slave_0: entered allmulticast mode
[  221.909074][T16506] bridge_slave_0: entered promiscuous mode
[  221.918304][ T3673] hsr_slave_0: left promiscuous mode
[  221.924278][ T3673] hsr_slave_1: left promiscuous mode
[  221.930078][ T3673] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  221.937613][ T3673] batman_adv: batadv0: Removing interface: batadv_slave_0
[  221.945518][ T3673] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  221.952966][ T3673] batman_adv: batadv0: Removing interface: batadv_slave_1
[  221.966729][ T3673] veth1_macvtap: left promiscuous mode
[  221.972391][ T3673] veth0_macvtap: left promiscuous mode
[  221.978161][ T3673] veth1_vlan: left promiscuous mode
[  221.979615][T11572] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  221.983613][ T3673] veth0_vlan: left promiscuous mode
[  222.057832][T16532] loop5: detected capacity change from 0 to 512
[  222.076655][ T3673] team0 (unregistering): Port device team_slave_1 removed
[  222.088959][ T3673] team0 (unregistering): Port device team_slave_0 removed
[  222.100771][T16532] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.134433][T16506] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.141541][T16506] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.160331][T16506] bridge_slave_1: entered allmulticast mode
[  222.174958][T16506] bridge_slave_1: entered promiscuous mode
[  222.187125][T16546] netlink: 'syz.2.3290': attribute type 21 has an invalid length.
[  222.220275][T16506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  222.229609][T16546] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3290'.
[  222.242889][T16506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.285210][T16506] team0: Port device team_slave_0 added
[  222.291852][T16506] team0: Port device team_slave_1 added
[  222.358949][T16506] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.366165][T16506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.392159][T16506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.404290][T16506] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.411360][T16506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.437293][T16506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.500286][T16506] hsr_slave_0: entered promiscuous mode
[  222.516428][T16506] hsr_slave_1: entered promiscuous mode
[  222.522523][T16506] debugfs: 'hsr0' already exists in 'hsr'
[  222.528328][T16506] Cannot create hsr debugfs directory
[  222.546554][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.605859][T16567] netlink: 'syz.5.3295': attribute type 3 has an invalid length.
[  222.687132][T16579] loop5: detected capacity change from 0 to 512
[  222.710910][T16506] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  222.718495][T16579] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3297: corrupted xattr block 95: invalid header
[  222.738852][T16506] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  222.749317][T16579] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3297: bg 0: block 7: invalid block bitmap
[  222.768898][T16506] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  222.778408][T16579] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  222.787867][T16506] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  222.797217][T16579] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3297: corrupted xattr block 95: invalid header
[  222.814388][T16579] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  222.832524][T16579] EXT4-fs (loop5): 1 orphan inode deleted
[  222.839228][T16579] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.903278][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.937564][T16506] 8021q: adding VLAN 0 to HW filter on device bond0
[  222.977830][T16506] 8021q: adding VLAN 0 to HW filter on device team0
[  222.994285][ T3679] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.001385][ T3679] bridge0: port 1(bridge_slave_0) entered forwarding state
[  223.032142][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.039306][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  223.228393][T16506] 8021q: adding VLAN 0 to HW filter on device batadv0
[  223.498699][T16506] veth0_vlan: entered promiscuous mode
[  223.506452][T16506] veth1_vlan: entered promiscuous mode
[  223.521390][T16506] veth0_macvtap: entered promiscuous mode
[  223.530524][T16506] veth1_macvtap: entered promiscuous mode
[  223.542419][T16506] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.555211][T16506] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.567314][ T3673] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.595886][ T3673] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.614919][ T3673] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.635493][ T3673] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.729458][T16688] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3307'.
[  223.751133][   T29] kauditd_printk_skb: 341 callbacks suppressed
[  223.751149][   T29] audit: type=1326 audit(223.730:17235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.780599][   T29] audit: type=1326 audit(223.730:17236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.803828][   T29] audit: type=1326 audit(223.730:17237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.826891][   T29] audit: type=1326 audit(223.730:17238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.849930][   T29] audit: type=1326 audit(223.730:17239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.873141][   T29] audit: type=1326 audit(223.730:17240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.896229][   T29] audit: type=1326 audit(223.730:17241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.919459][   T29] audit: type=1326 audit(223.730:17242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.942394][   T29] audit: type=1326 audit(223.730:17243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.951501][T16696] loop5: detected capacity change from 0 to 128
[  223.965481][   T29] audit: type=1326 audit(223.730:17244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16689 comm="syz.6.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  223.975084][T16696] EXT4-fs: Ignoring removed nobh option
[  224.003780][T16686] SELinux:  Context system_u:object_r:sudo_exec_t:s0 is not valid (left unmapped).
[  224.017849][T16696] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  224.238564][T11572] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  224.339295][T16745] netlink: 71 bytes leftover after parsing attributes in process `syz.2.3316'.
[  224.474421][T16758] loop5: detected capacity change from 0 to 512
[  224.536811][T16758] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3318: corrupted xattr block 95: invalid header
[  224.594930][T16758] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3318: bg 0: block 7: invalid block bitmap
[  224.632021][T16758] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  224.661706][T16758] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3318: corrupted xattr block 95: invalid header
[  224.691328][T16758] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  224.705013][T16780] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  224.711413][T16758] EXT4-fs (loop5): 1 orphan inode deleted
[  225.052468][T16827] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3328'.
[  225.606103][T16846] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  225.650884][T16851] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3336'.
[  225.651413][T16852] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3336'.
[  225.688178][    T9] kernel write not supported for file /70/oom_adj (pid: 9 comm: kworker/0:0)
[  225.755675][T16856] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3339'.
[  225.780144][T16856] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  225.787780][T16856] batman_adv: batadv0: Removing interface: batadv_slave_0
[  225.798844][T16856] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  225.806418][T16856] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.072949][T16894] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3344'.
[  226.218012][T16917] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  226.275329][T16928] 9pnet_fd: Insufficient options for proto=fd
[  226.277050][T16925] 9pnet_fd: Insufficient options for proto=fd
[  226.294354][T16925] loop5: detected capacity change from 0 to 128
[  226.419045][T16942] FAULT_INJECTION: forcing a failure.
[  226.419045][T16942] name failslab, interval 1, probability 0, space 0, times 0
[  226.431747][T16942] CPU: 1 UID: 0 PID: 16942 Comm: syz.5.3353 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  226.431778][T16942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  226.431792][T16942] Call Trace:
[  226.431800][T16942]  <TASK>
[  226.431809][T16942]  __dump_stack+0x1d/0x30
[  226.431910][T16942]  dump_stack_lvl+0xe8/0x140
[  226.431982][T16942]  dump_stack+0x15/0x1b
[  226.432000][T16942]  should_fail_ex+0x265/0x280
[  226.432024][T16942]  should_failslab+0x8c/0xb0
[  226.432051][T16942]  kmem_cache_alloc_noprof+0x50/0x310
[  226.432122][T16942]  ? getname_flags+0x80/0x3b0
[  226.432183][T16942]  getname_flags+0x80/0x3b0
[  226.432212][T16942]  __x64_sys_symlinkat+0x4d/0x70
[  226.432291][T16942]  x64_sys_call+0x293d/0x2ff0
[  226.432312][T16942]  do_syscall_64+0xd2/0x200
[  226.432372][T16942]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  226.432398][T16942]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  226.432494][T16942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.432519][T16942] RIP: 0033:0x7fc3e011ebe9
[  226.432537][T16942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.432559][T16942] RSP: 002b:00007fc3deb87038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  226.432580][T16942] RAX: ffffffffffffffda RBX: 00007fc3e0355fa0 RCX: 00007fc3e011ebe9
[  226.432665][T16942] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000080
[  226.432678][T16942] RBP: 00007fc3deb87090 R08: 0000000000000000 R09: 0000000000000000
[  226.432691][T16942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  226.432704][T16942] R13: 00007fc3e0356038 R14: 00007fc3e0355fa0 R15: 00007ffeef182f38
[  226.432724][T16942]  </TASK>
[  226.636588][T16954] loop6: detected capacity change from 0 to 256
[  226.707627][T16954] FAT-fs (loop6): Directory bread(block 64) failed
[  226.717651][T16954] FAT-fs (loop6): Directory bread(block 65) failed
[  226.733381][T16954] FAT-fs (loop6): Directory bread(block 66) failed
[  226.748814][T16954] FAT-fs (loop6): Directory bread(block 67) failed
[  226.761974][T16954] FAT-fs (loop6): Directory bread(block 68) failed
[  226.776639][T16954] FAT-fs (loop6): Directory bread(block 69) failed
[  226.793282][T16954] FAT-fs (loop6): Directory bread(block 70) failed
[  226.806651][T16954] FAT-fs (loop6): Directory bread(block 71) failed
[  226.823708][T16954] FAT-fs (loop6): Directory bread(block 72) failed
[  226.838314][T16954] FAT-fs (loop6): Directory bread(block 73) failed
[  226.905918][ T3658] kworker/u8:14: attempt to access beyond end of device
[  226.905918][ T3658] loop6: rw=1, sector=1160, nr_sectors = 4 limit=256
[  226.966004][T16991] loop5: detected capacity change from 0 to 512
[  227.001953][T16991] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3362: corrupted xattr block 95: invalid header
[  227.023782][T16991] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3362: bg 0: block 7: invalid block bitmap
[  227.037489][T16991] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  227.047052][T16991] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3362: corrupted xattr block 95: invalid header
[  227.061438][T16991] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  227.070613][T16991] EXT4-fs (loop5): 1 orphan inode deleted
[  227.124282][T17002] 9pnet_fd: Insufficient options for proto=fd
[  227.151817][T17007] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3367'.
[  227.526469][T17047] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3371'.
[  227.670583][T17061] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  227.700343][T17064] loop4: detected capacity change from 0 to 512
[  227.709644][T17064] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3376: corrupted xattr block 95: invalid header
[  227.726441][T17064] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3376: bg 0: block 7: invalid block bitmap
[  227.748005][T17064] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  227.766735][T17064] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3376: corrupted xattr block 95: invalid header
[  227.794365][T17064] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  227.810793][T17064] EXT4-fs (loop4): 1 orphan inode deleted
[  227.817507][T17064] EXT4-fs mount: 6 callbacks suppressed
[  227.817539][T17064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.859203][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.931533][T17081] netlink: 'syz.4.3378': attribute type 3 has an invalid length.
[  228.070643][T17108] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3379'.
[  228.350712][T17118] FAULT_INJECTION: forcing a failure.
[  228.350712][T17118] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  228.364203][T17118] CPU: 0 UID: 0 PID: 17118 Comm: syz.1.3385 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  228.364288][T17118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  228.364301][T17118] Call Trace:
[  228.364306][T17118]  <TASK>
[  228.364314][T17118]  __dump_stack+0x1d/0x30
[  228.364414][T17118]  dump_stack_lvl+0xe8/0x140
[  228.364435][T17118]  dump_stack+0x15/0x1b
[  228.364456][T17118]  should_fail_ex+0x265/0x280
[  228.364486][T17118]  should_fail+0xb/0x20
[  228.364577][T17118]  should_fail_usercopy+0x1a/0x20
[  228.364603][T17118]  _copy_to_user+0x20/0xa0
[  228.364644][T17118]  simple_read_from_buffer+0xb5/0x130
[  228.364674][T17118]  proc_fail_nth_read+0x10e/0x150
[  228.364731][T17118]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  228.364795][T17118]  vfs_read+0x1a5/0x770
[  228.364822][T17118]  ? __rcu_read_unlock+0x4f/0x70
[  228.364844][T17118]  ? __fget_files+0x184/0x1c0
[  228.364871][T17118]  ksys_read+0xda/0x1a0
[  228.364897][T17118]  __x64_sys_read+0x40/0x50
[  228.364972][T17118]  x64_sys_call+0x27bc/0x2ff0
[  228.364993][T17118]  do_syscall_64+0xd2/0x200
[  228.365028][T17118]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  228.365060][T17118]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  228.365105][T17118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.365134][T17118] RIP: 0033:0x7f5bb1b0d5fc
[  228.365149][T17118] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  228.365168][T17118] RSP: 002b:00007f5bb0577030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  228.365258][T17118] RAX: ffffffffffffffda RBX: 00007f5bb1d45fa0 RCX: 00007f5bb1b0d5fc
[  228.365271][T17118] RDX: 000000000000000f RSI: 00007f5bb05770a0 RDI: 0000000000000003
[  228.365283][T17118] RBP: 00007f5bb0577090 R08: 0000000000000000 R09: 0000000000000000
[  228.365359][T17118] R10: 0000000000000036 R11: 0000000000000246 R12: 0000000000000001
[  228.365374][T17118] R13: 00007f5bb1d46038 R14: 00007f5bb1d45fa0 R15: 00007ffd19f6be38
[  228.365394][T17118]  </TASK>
[  228.594030][T17120] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3386'.
[  228.603035][T17120] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  228.630900][T17122] binfmt_misc: register: failed to install interpreter file ./file2
[  228.663730][T17125] FAULT_INJECTION: forcing a failure.
[  228.663730][T17125] name failslab, interval 1, probability 0, space 0, times 0
[  228.676425][T17125] CPU: 1 UID: 0 PID: 17125 Comm: syz.2.3388 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  228.676495][T17125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  228.676511][T17125] Call Trace:
[  228.676519][T17125]  <TASK>
[  228.676528][T17125]  __dump_stack+0x1d/0x30
[  228.676555][T17125]  dump_stack_lvl+0xe8/0x140
[  228.676580][T17125]  dump_stack+0x15/0x1b
[  228.676667][T17125]  should_fail_ex+0x265/0x280
[  228.676698][T17125]  should_failslab+0x8c/0xb0
[  228.676730][T17125]  __kmalloc_noprof+0xa5/0x3e0
[  228.676758][T17125]  ? bm_register_write+0x9f/0xbf0
[  228.676855][T17125]  bm_register_write+0x9f/0xbf0
[  228.676889][T17125]  ? avc_policy_seqno+0x15/0x30
[  228.676921][T17125]  ? selinux_file_permission+0x1e4/0x320
[  228.676981][T17125]  ? __pfx_bm_register_write+0x10/0x10
[  228.677017][T17125]  vfs_write+0x266/0x960
[  228.677044][T17125]  ? __rcu_read_unlock+0x4f/0x70
[  228.677078][T17125]  ? __fget_files+0x184/0x1c0
[  228.677150][T17125]  ? finish_task_switch+0xad/0x2b0
[  228.677178][T17125]  ksys_write+0xda/0x1a0
[  228.677207][T17125]  __x64_sys_write+0x40/0x50
[  228.677261][T17125]  x64_sys_call+0x27fe/0x2ff0
[  228.677285][T17125]  do_syscall_64+0xd2/0x200
[  228.677323][T17125]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  228.677359][T17125]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  228.677396][T17125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.677424][T17125] RIP: 0033:0x7fb558afebe9
[  228.677442][T17125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.677518][T17125] RSP: 002b:00007fb55755f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  228.677542][T17125] RAX: ffffffffffffffda RBX: 00007fb558d35fa0 RCX: 00007fb558afebe9
[  228.677559][T17125] RDX: 0000000000000032 RSI: 0000200000000440 RDI: 0000000000000006
[  228.677575][T17125] RBP: 00007fb55755f090 R08: 0000000000000000 R09: 0000000000000000
[  228.677602][T17125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.677617][T17125] R13: 00007fb558d36038 R14: 00007fb558d35fa0 R15: 00007fff706b75e8
[  228.677641][T17125]  </TASK>
[  229.023525][T17152] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3396'.
[  229.028640][T17155] loop4: detected capacity change from 0 to 512
[  229.045497][T17157] FAULT_INJECTION: forcing a failure.
[  229.045497][T17157] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  229.058665][T17157] CPU: 1 UID: 0 PID: 17157 Comm: syz.1.3398 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  229.058694][T17157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  229.058711][T17157] Call Trace:
[  229.058718][T17157]  <TASK>
[  229.058728][T17157]  __dump_stack+0x1d/0x30
[  229.058784][T17157]  dump_stack_lvl+0xe8/0x140
[  229.058803][T17157]  dump_stack+0x15/0x1b
[  229.058846][T17157]  should_fail_ex+0x265/0x280
[  229.058876][T17157]  should_fail+0xb/0x20
[  229.058896][T17157]  should_fail_usercopy+0x1a/0x20
[  229.058999][T17157]  _copy_from_user+0x1c/0xb0
[  229.059043][T17157]  kstrtouint_from_user+0x69/0xf0
[  229.059082][T17157]  ? 0xffffffff81000000
[  229.059099][T17157]  ? selinux_file_permission+0x1e4/0x320
[  229.059184][T17157]  proc_fail_nth_write+0x50/0x160
[  229.059261][T17157]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  229.059291][T17157]  vfs_write+0x266/0x960
[  229.059325][T17157]  ? __rcu_read_unlock+0x4f/0x70
[  229.059351][T17157]  ? __fget_files+0x184/0x1c0
[  229.059375][T17157]  ? finish_task_switch+0xad/0x2b0
[  229.059511][T17157]  ksys_write+0xda/0x1a0
[  229.059541][T17157]  __x64_sys_write+0x40/0x50
[  229.059601][T17157]  x64_sys_call+0x27fe/0x2ff0
[  229.059629][T17157]  do_syscall_64+0xd2/0x200
[  229.059668][T17157]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  229.059754][T17157]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  229.059793][T17157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.059877][T17157] RIP: 0033:0x7f5bb1b0d69f
[  229.059892][T17157] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  229.059913][T17157] RSP: 002b:00007f5bb0577030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  229.059978][T17157] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5bb1b0d69f
[  229.059994][T17157] RDX: 0000000000000001 RSI: 00007f5bb05770a0 RDI: 0000000000000003
[  229.060010][T17157] RBP: 00007f5bb0577090 R08: 0000000000000000 R09: 0000000000000000
[  229.060026][T17157] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  229.060072][T17157] R13: 00007f5bb1d46038 R14: 00007f5bb1d45fa0 R15: 00007ffd19f6be38
[  229.060098][T17157]  </TASK>
[  229.287667][T17155] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3397: corrupted xattr block 95: invalid header
[  229.308984][T17155] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3397: bg 0: block 7: invalid block bitmap
[  229.332147][T17155] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  229.338714][T17165] random: crng reseeded on system resumption
[  229.351218][T17155] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3397: corrupted xattr block 95: invalid header
[  229.377451][T17155] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  229.397788][T17155] EXT4-fs (loop4): 1 orphan inode deleted
[  229.409630][T17155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.431185][   T29] kauditd_printk_skb: 241 callbacks suppressed
[  229.431205][   T29] audit: type=1326 audit(229.410:17486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17175 comm="syz.1.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.460530][   T29] audit: type=1326 audit(229.410:17487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17175 comm="syz.1.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.484067][   T29] audit: type=1326 audit(229.410:17488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17175 comm="syz.1.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.507030][   T29] audit: type=1326 audit(229.410:17489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17175 comm="syz.1.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.530162][   T29] audit: type=1326 audit(229.410:17490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17175 comm="syz.1.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.582283][T17181] lo speed is unknown, defaulting to 1000
[  229.588644][T17181] lo speed is unknown, defaulting to 1000
[  229.594654][T17181] lo speed is unknown, defaulting to 1000
[  229.601311][T17181] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  229.622427][T17181] lo speed is unknown, defaulting to 1000
[  229.630633][T17181] lo speed is unknown, defaulting to 1000
[  229.670129][T17181] lo speed is unknown, defaulting to 1000
[  229.692702][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.719638][T17181] lo speed is unknown, defaulting to 1000
[  229.726334][T17181] lo speed is unknown, defaulting to 1000
[  229.792555][T17218] loop4: detected capacity change from 0 to 512
[  229.802709][T17222] netlink: 'syz.1.3407': attribute type 3 has an invalid length.
[  229.804948][T17216] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3404'.
[  229.820279][T17218] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  229.836546][T17218] EXT4-fs (loop4): 1 truncate cleaned up
[  229.847779][T17218] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.872815][   T29] audit: type=1400 audit(229.850:17491): avc:  denied  { setattr } for  pid=17217 comm="syz.4.3405" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  229.921192][T17225] netlink: 'syz.6.3408': attribute type 3 has an invalid length.
[  229.936743][T17229] tipc: Enabling of bearer <eth:syzkal> rejected, failed to enable media
[  229.961294][   T29] audit: type=1326 audit(229.940:17492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17226 comm="syz.1.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.961340][   T29] audit: type=1326 audit(229.940:17493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17226 comm="syz.1.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.961395][   T29] audit: type=1326 audit(229.940:17494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17226 comm="syz.1.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  229.961428][   T29] audit: type=1326 audit(229.940:17495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17226 comm="syz.1.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb1b0ebe9 code=0x7ffc0000
[  230.119794][T17232] loop6: detected capacity change from 0 to 512
[  230.120559][T17232] ext4: Unknown parameter 'euid<00000000000000000000'
[  230.212030][T17248] loop6: detected capacity change from 0 to 164
[  230.215928][T17248] iso9660: Corrupted directory entry in block 4 of inode 1792
[  230.398520][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.508747][T17274] loop6: detected capacity change from 0 to 8192
[  230.564179][T17274]  loop6: p1 p2 p4 < >
[  230.568338][T17274] loop6: partition table partially beyond EOD, truncated
[  230.588709][T17274] loop6: p1 start 16777216 is beyond EOD, truncated
[  230.595486][T17274] loop6: p2 size 515840 extends beyond EOD, truncated
[  230.604720][T17274] loop6: p4 start 16777216 is beyond EOD, truncated
[  230.617156][T17288] netlink: 'syz.4.3420': attribute type 3 has an invalid length.
[  230.690963][T17297] loop4: detected capacity change from 0 to 128
[  230.732912][T17297] Process accounting resumed
[  230.742728][T17305] 9pnet_fd: Insufficient options for proto=fd
[  230.770325][T17305] loop6: detected capacity change from 0 to 128
[  230.787707][T17305] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  230.806893][T17315] loop4: detected capacity change from 0 to 128
[  230.828495][T17315] EXT4-fs: Ignoring removed nobh option
[  230.855285][T17315] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  230.896494][T16506] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  231.024902][T17345] FAULT_INJECTION: forcing a failure.
[  231.024902][T17345] name failslab, interval 1, probability 0, space 0, times 0
[  231.037675][T17345] CPU: 1 UID: 0 PID: 17345 Comm: syz.1.3427 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  231.037708][T17345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  231.037745][T17345] Call Trace:
[  231.037753][T17345]  <TASK>
[  231.037760][T17345]  __dump_stack+0x1d/0x30
[  231.037786][T17345]  dump_stack_lvl+0xe8/0x140
[  231.037810][T17345]  dump_stack+0x15/0x1b
[  231.037831][T17345]  should_fail_ex+0x265/0x280
[  231.037908][T17345]  ? nft_trans_table_add+0x36/0x190
[  231.037944][T17345]  should_failslab+0x8c/0xb0
[  231.037978][T17345]  __kmalloc_cache_noprof+0x4c/0x320
[  231.038011][T17345]  nft_trans_table_add+0x36/0x190
[  231.038043][T17345]  nf_tables_newtable+0x955/0xea0
[  231.038082][T17345]  nfnetlink_rcv+0xb96/0x1690
[  231.038229][T17345]  netlink_unicast+0x5bd/0x690
[  231.038260][T17345]  netlink_sendmsg+0x58b/0x6b0
[  231.038292][T17345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.038331][T17345]  __sock_sendmsg+0x142/0x180
[  231.038371][T17345]  ____sys_sendmsg+0x31e/0x4e0
[  231.038407][T17345]  ___sys_sendmsg+0x17b/0x1d0
[  231.038493][T17345]  __x64_sys_sendmsg+0xd4/0x160
[  231.038529][T17345]  x64_sys_call+0x191e/0x2ff0
[  231.038551][T17345]  do_syscall_64+0xd2/0x200
[  231.038640][T17345]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  231.038671][T17345]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  231.038770][T17345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.038794][T17345] RIP: 0033:0x7f5bb1b0ebe9
[  231.038809][T17345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.038879][T17345] RSP: 002b:00007f5bb0577038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  231.038900][T17345] RAX: ffffffffffffffda RBX: 00007f5bb1d45fa0 RCX: 00007f5bb1b0ebe9
[  231.038913][T17345] RDX: 0000000020050800 RSI: 00002000000000c0 RDI: 0000000000000003
[  231.038925][T17345] RBP: 00007f5bb0577090 R08: 0000000000000000 R09: 0000000000000000
[  231.038936][T17345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  231.038948][T17345] R13: 00007f5bb1d46038 R14: 00007f5bb1d45fa0 R15: 00007ffd19f6be38
[  231.038967][T17345]  </TASK>
[  231.306671][T17350] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  231.341659][T17353] netlink: 'syz.1.3431': attribute type 3 has an invalid length.
[  231.370959][T17356] FAULT_INJECTION: forcing a failure.
[  231.370959][T17356] name failslab, interval 1, probability 0, space 0, times 0
[  231.383693][T17356] CPU: 1 UID: 0 PID: 17356 Comm: syz.6.3432 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  231.383727][T17356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  231.383742][T17356] Call Trace:
[  231.383749][T17356]  <TASK>
[  231.383756][T17356]  __dump_stack+0x1d/0x30
[  231.383798][T17356]  dump_stack_lvl+0xe8/0x140
[  231.383816][T17356]  dump_stack+0x15/0x1b
[  231.383836][T17356]  should_fail_ex+0x265/0x280
[  231.383865][T17356]  ? audit_log_d_path+0x8d/0x150
[  231.383904][T17356]  should_failslab+0x8c/0xb0
[  231.383962][T17356]  __kmalloc_cache_noprof+0x4c/0x320
[  231.383991][T17356]  audit_log_d_path+0x8d/0x150
[  231.384023][T17356]  audit_log_d_path_exe+0x42/0x70
[  231.384107][T17356]  audit_log_task+0x1e9/0x250
[  231.384137][T17356]  audit_seccomp+0x61/0x100
[  231.384196][T17356]  ? __seccomp_filter+0x68c/0x10d0
[  231.384275][T17356]  __seccomp_filter+0x69d/0x10d0
[  231.384303][T17356]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  231.384337][T17356]  ? vfs_write+0x7e8/0x960
[  231.384371][T17356]  __secure_computing+0x82/0x150
[  231.384420][T17356]  syscall_trace_enter+0xcf/0x1e0
[  231.384450][T17356]  do_syscall_64+0xac/0x200
[  231.384602][T17356]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  231.384624][T17356]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  231.384651][T17356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.384747][T17356] RIP: 0033:0x7f445de1ebe9
[  231.384765][T17356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.384783][T17356] RSP: 002b:00007f445c87f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[  231.384805][T17356] RAX: ffffffffffffffda RBX: 00007f445e055fa0 RCX: 00007f445de1ebe9
[  231.384821][T17356] RDX: 0000000000000002 RSI: 0000000000003000 RDI: 0000200000ffc000
[  231.384837][T17356] RBP: 00007f445c87f090 R08: 0000000000000800 R09: 0000000000000000
[  231.384901][T17356] R10: 00000000000007e1 R11: 0000000000000246 R12: 0000000000000001
[  231.384912][T17356] R13: 00007f445e056038 R14: 00007f445e055fa0 R15: 00007fff74e8f4f8
[  231.384931][T17356]  </TASK>
[  231.601810][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  231.710314][T17364] netlink: '+}[@': attribute type 4 has an invalid length.
[  231.895277][T17384] netlink: 'syz.6.3443': attribute type 3 has an invalid length.
[  231.956379][T17388] loop6: detected capacity change from 0 to 512
[  231.973176][T17388] EXT4-fs: Ignoring removed bh option
[  231.978707][T17388] EXT4-fs: Ignoring removed mblk_io_submit option
[  231.999465][T17388] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  232.020750][T17388] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  232.028791][T17388] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  232.059515][T17388] EXT4-fs (loop6): failed to initialize system zone (-117)
[  232.076526][T17388] EXT4-fs (loop6): mount failed
[  232.106667][T17388] netlink: 'syz.6.3445': attribute type 10 has an invalid length.
[  232.124146][T17388] ipvlan0: entered allmulticast mode
[  232.129565][T17388] veth0_vlan: entered allmulticast mode
[  232.149588][T17392] FAULT_INJECTION: forcing a failure.
[  232.149588][T17392] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.150266][T17388] team0: Device ipvlan0 failed to register rx_handler
[  232.162764][T17392] CPU: 1 UID: 0 PID: 17392 Comm: syz.2.3446 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  232.162799][T17392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  232.162814][T17392] Call Trace:
[  232.162824][T17392]  <TASK>
[  232.162884][T17392]  __dump_stack+0x1d/0x30
[  232.162915][T17392]  dump_stack_lvl+0xe8/0x140
[  232.162988][T17392]  dump_stack+0x15/0x1b
[  232.163013][T17392]  should_fail_ex+0x265/0x280
[  232.163047][T17392]  should_fail+0xb/0x20
[  232.163083][T17392]  should_fail_usercopy+0x1a/0x20
[  232.163163][T17392]  _copy_from_user+0x1c/0xb0
[  232.163285][T17392]  kstrtouint_from_user+0x69/0xf0
[  232.163321][T17392]  ? 0xffffffff81000000
[  232.163339][T17392]  ? selinux_file_permission+0x1e4/0x320
[  232.163373][T17392]  proc_fail_nth_write+0x50/0x160
[  232.163421][T17392]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  232.163597][T17392]  vfs_write+0x266/0x960
[  232.163625][T17392]  ? vfs_read+0x4e6/0x770
[  232.163653][T17392]  ? __rcu_read_unlock+0x4f/0x70
[  232.163684][T17392]  ? __fget_files+0x184/0x1c0
[  232.163758][T17392]  ksys_write+0xda/0x1a0
[  232.163856][T17392]  __x64_sys_write+0x40/0x50
[  232.163888][T17392]  x64_sys_call+0x27fe/0x2ff0
[  232.163918][T17392]  do_syscall_64+0xd2/0x200
[  232.164007][T17392]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  232.164041][T17392]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  232.164093][T17392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.164124][T17392] RIP: 0033:0x7fb558afd69f
[  232.164145][T17392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  232.164215][T17392] RSP: 002b:00007fb55755f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  232.164242][T17392] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb558afd69f
[  232.164260][T17392] RDX: 0000000000000001 RSI: 00007fb55755f0a0 RDI: 0000000000000005
[  232.164278][T17392] RBP: 00007fb55755f090 R08: 0000000000000000 R09: 0000000000000000
[  232.164297][T17392] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  232.164314][T17392] R13: 00007fb558d36038 R14: 00007fb558d35fa0 R15: 00007fff706b75e8
[  232.164343][T17392]  </TASK>
[  232.454897][T17397] netlink: 100 bytes leftover after parsing attributes in process `syz.6.3448'.
[  232.483508][T17399] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3449'.
[  232.663262][T17407] tipc: Started in network mode
[  232.668198][T17407] tipc: Node identity 7e88a2718b48, cluster identity 4711
[  232.675420][T17407] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  232.704179][T17405] tipc: Disabling bearer <eth:syzkaller0>
[  232.716894][T17409] 9pnet_fd: Insufficient options for proto=fd
[  232.726812][T17409] loop5: detected capacity change from 0 to 128
[  232.735756][T17409] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  232.821422][T11572] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  232.955579][T17430] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  232.974371][T17429] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  232.980995][T17429] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  232.988683][T17429] vhci_hcd vhci_hcd.0: Device attached
[  233.221676][T17433] vhci_hcd: connection closed
[  233.221987][ T1456] vhci_hcd: stop threads
[  233.230980][ T1456] vhci_hcd: release socket
[  233.233235][ T3386] usb 3-1: new low-speed USB device number 2 using vhci_hcd
[  233.235438][ T1456] vhci_hcd: disconnect device
[  233.365083][T17449] 9pnet_fd: Insufficient options for proto=fd
[  233.375312][T17449] loop6: detected capacity change from 0 to 128
[  233.394348][T17449] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  233.461897][T16506] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  233.566606][T17466] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3473'.
[  233.719181][T17478] loop6: detected capacity change from 0 to 128
[  233.781328][T17482] 9pnet_fd: Insufficient options for proto=fd
[  233.793035][T17482] loop4: detected capacity change from 0 to 128
[  233.813015][T17482] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  233.854806][T17487] netlink: 'syz.1.3482': attribute type 3 has an invalid length.
[  233.862624][T17487] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3482'.
[  233.887802][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  233.958494][T17489] netlink: 'syz.1.3484': attribute type 13 has an invalid length.
[  233.975223][T17492] loop4: detected capacity change from 0 to 2048
[  234.016344][T17489] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.023839][T17489] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.152554][T17489] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  234.181324][T17489] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.288566][  T174] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.322349][  T174] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.350318][  T174] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.383889][  T174] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.430124][T17518] netlink: 'syz.1.3493': attribute type 3 has an invalid length.
[  234.455339][T17520] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  234.465092][   T29] kauditd_printk_skb: 753 callbacks suppressed
[  234.465107][   T29] audit: type=1326 audit(234.450:18249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.494326][   T29] audit: type=1326 audit(234.450:18250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.604094][   T29] audit: type=1326 audit(234.460:18251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.627037][   T29] audit: type=1326 audit(234.460:18252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.650139][   T29] audit: type=1326 audit(234.460:18253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.673272][   T29] audit: type=1326 audit(234.500:18254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.696304][   T29] audit: type=1326 audit(234.500:18255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.719417][   T29] audit: type=1326 audit(234.500:18256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.742429][   T29] audit: type=1326 audit(234.510:18257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.765420][   T29] audit: type=1326 audit(234.510:18258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17521 comm="syz.6.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  234.871938][T17543] loop4: detected capacity change from 0 to 128
[  234.891580][T17548] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3507'.
[  234.892639][T17540] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17540 comm=syz.1.3505
[  234.965242][T17552] netlink: 'syz.1.3508': attribute type 3 has an invalid length.
[  234.984961][T17554] loop6: detected capacity change from 0 to 128
[  235.004917][T17554] vfat: Unknown parameter 'ÿÿ0x0000000000000005'
[  235.224999][T17582] FAULT_INJECTION: forcing a failure.
[  235.224999][T17582] name failslab, interval 1, probability 0, space 0, times 0
[  235.237788][T17582] CPU: 1 UID: 0 PID: 17582 Comm: syz.6.3519 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  235.237820][T17582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.237833][T17582] Call Trace:
[  235.237839][T17582]  <TASK>
[  235.237845][T17582]  __dump_stack+0x1d/0x30
[  235.237867][T17582]  dump_stack_lvl+0xe8/0x140
[  235.237898][T17582]  dump_stack+0x15/0x1b
[  235.237917][T17582]  should_fail_ex+0x265/0x280
[  235.237954][T17582]  should_failslab+0x8c/0xb0
[  235.237988][T17582]  kmem_cache_alloc_noprof+0x50/0x310
[  235.238089][T17582]  ? audit_log_start+0x365/0x6c0
[  235.238147][T17582]  audit_log_start+0x365/0x6c0
[  235.238213][T17582]  audit_seccomp+0x48/0x100
[  235.238246][T17582]  ? __seccomp_filter+0x68c/0x10d0
[  235.238276][T17582]  __seccomp_filter+0x69d/0x10d0
[  235.238345][T17582]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  235.238376][T17582]  ? vfs_write+0x7e8/0x960
[  235.238441][T17582]  ? __rcu_read_unlock+0x4f/0x70
[  235.238509][T17582]  ? __fget_files+0x184/0x1c0
[  235.238546][T17582]  __secure_computing+0x82/0x150
[  235.238579][T17582]  syscall_trace_enter+0xcf/0x1e0
[  235.238682][T17582]  do_syscall_64+0xac/0x200
[  235.238722][T17582]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  235.238799][T17582]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  235.238837][T17582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.238863][T17582] RIP: 0033:0x7f445de1d5fc
[  235.238879][T17582] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  235.238897][T17582] RSP: 002b:00007f445c87f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  235.238918][T17582] RAX: ffffffffffffffda RBX: 00007f445e055fa0 RCX: 00007f445de1d5fc
[  235.238985][T17582] RDX: 000000000000000f RSI: 00007f445c87f0a0 RDI: 0000000000000003
[  235.239001][T17582] RBP: 00007f445c87f090 R08: 0000000000000000 R09: 0000000000000000
[  235.239062][T17582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.239075][T17582] R13: 00007f445e056038 R14: 00007f445e055fa0 R15: 00007fff74e8f4f8
[  235.239125][T17582]  </TASK>
[  235.526798][T17593] netlink: 'syz.6.3521': attribute type 3 has an invalid length.
[  235.551253][T17597] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  235.581201][T17601] batadv0: entered promiscuous mode
[  235.587330][T17601] macvtap1: entered promiscuous mode
[  235.593901][T17601] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  235.603396][T17601] batadv0: left promiscuous mode
[  235.669322][T17613] 9pnet_fd: Insufficient options for proto=fd
[  235.790252][T17635] FAULT_INJECTION: forcing a failure.
[  235.790252][T17635] name failslab, interval 1, probability 0, space 0, times 0
[  235.803006][T17635] CPU: 1 UID: 0 PID: 17635 Comm: syz.6.3529 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  235.803078][T17635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.803091][T17635] Call Trace:
[  235.803099][T17635]  <TASK>
[  235.803109][T17635]  __dump_stack+0x1d/0x30
[  235.803135][T17635]  dump_stack_lvl+0xe8/0x140
[  235.803157][T17635]  dump_stack+0x15/0x1b
[  235.803172][T17635]  should_fail_ex+0x265/0x280
[  235.803262][T17635]  should_failslab+0x8c/0xb0
[  235.803287][T17635]  kmem_cache_alloc_noprof+0x50/0x310
[  235.803385][T17635]  ? copy_sighand+0x52/0x1b0
[  235.803412][T17635]  copy_sighand+0x52/0x1b0
[  235.803446][T17635]  copy_process+0xcaf/0x2000
[  235.803550][T17635]  kernel_clone+0x16c/0x5c0
[  235.803580][T17635]  ? vfs_write+0x7e8/0x960
[  235.803635][T17635]  __x64_sys_clone+0xe6/0x120
[  235.803678][T17635]  x64_sys_call+0x119c/0x2ff0
[  235.803761][T17635]  do_syscall_64+0xd2/0x200
[  235.803797][T17635]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  235.803821][T17635]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  235.803854][T17635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.803918][T17635] RIP: 0033:0x7f445de1ebe9
[  235.803932][T17635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.803952][T17635] RSP: 002b:00007f445c87efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  235.803973][T17635] RAX: ffffffffffffffda RBX: 00007f445e055fa0 RCX: 00007f445de1ebe9
[  235.803988][T17635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000630c1000
[  235.804040][T17635] RBP: 00007f445c87f090 R08: 0000000000000000 R09: 0000000000000000
[  235.804052][T17635] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  235.804064][T17635] R13: 00007f445e056038 R14: 00007f445e055fa0 R15: 00007fff74e8f4f8
[  235.804083][T17635]  </TASK>
[  236.102552][T17650] loop5: detected capacity change from 0 to 512
[  236.140548][T17662] FAULT_INJECTION: forcing a failure.
[  236.140548][T17662] name failslab, interval 1, probability 0, space 0, times 0
[  236.153237][T17662] CPU: 1 UID: 0 PID: 17662 Comm: syz.4.3533 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  236.153322][T17662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  236.153339][T17662] Call Trace:
[  236.153348][T17662]  <TASK>
[  236.153358][T17662]  __dump_stack+0x1d/0x30
[  236.153385][T17662]  dump_stack_lvl+0xe8/0x140
[  236.153464][T17662]  dump_stack+0x15/0x1b
[  236.153486][T17662]  should_fail_ex+0x265/0x280
[  236.153516][T17662]  ? sel_netnode_sid_slow+0x1eb/0x540
[  236.153547][T17662]  should_failslab+0x8c/0xb0
[  236.153624][T17662]  __kmalloc_cache_noprof+0x4c/0x320
[  236.153665][T17662]  sel_netnode_sid_slow+0x1eb/0x540
[  236.153705][T17662]  ? avc_has_perm_noaudit+0x1b1/0x200
[  236.153797][T17662]  sel_netnode_sid+0x1e3/0x250
[  236.153840][T17662]  selinux_socket_bind+0x505/0x6b0
[  236.153911][T17662]  selinux_sctp_bind_connect+0x1bc/0x250
[  236.154048][T17662]  security_sctp_bind_connect+0x50/0x90
[  236.154095][T17662]  sctp_setsockopt_bindx+0x116/0x2c0
[  236.154124][T17662]  sctp_setsockopt+0x79f/0xe30
[  236.154147][T17662]  sock_common_setsockopt+0x69/0x80
[  236.154206][T17662]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  236.154245][T17662]  __sys_setsockopt+0x181/0x200
[  236.154353][T17662]  __x64_sys_setsockopt+0x64/0x80
[  236.154377][T17662]  x64_sys_call+0x20ec/0x2ff0
[  236.154402][T17662]  do_syscall_64+0xd2/0x200
[  236.154450][T17662]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  236.154492][T17662]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  236.154520][T17662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.154542][T17662] RIP: 0033:0x7f7d4422ebe9
[  236.154558][T17662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.154580][T17662] RSP: 002b:00007f7d42c97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  236.154678][T17662] RAX: ffffffffffffffda RBX: 00007f7d44465fa0 RCX: 00007f7d4422ebe9
[  236.154695][T17662] RDX: 0000000000000064 RSI: 0000000000000084 RDI: 0000000000000003
[  236.154711][T17662] RBP: 00007f7d42c97090 R08: 000000000000002c R09: 0000000000000000
[  236.154727][T17662] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  236.154741][T17662] R13: 00007f7d44466038 R14: 00007f7d44465fa0 R15: 00007ffdf0a85a78
[  236.154759][T17662]  </TASK>
[  236.453837][T17677] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  236.482392][T17680] 9pnet_fd: Insufficient options for proto=fd
[  236.504799][T17650] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.518033][T17682] netlink: 100 bytes leftover after parsing attributes in process `syz.6.3537'.
[  236.530259][T17686] 9pnet_fd: Insufficient options for proto=fd
[  236.569202][T17686] loop4: detected capacity change from 0 to 128
[  236.576074][T17690] netlink: 5 bytes leftover after parsing attributes in process `syz.2.3540'.
[  236.586189][T17690] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  236.594440][T17690] 0ªî{X¹¦: entered allmulticast mode
[  236.600524][T17690] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  236.617067][T17686] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  236.728210][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  237.357653][T17723] 9pnet_fd: Insufficient options for proto=fd
[  237.469391][T17728] netlink: 'syz.6.3551': attribute type 3 has an invalid length.
[  237.481412][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.518175][T17732] loop6: detected capacity change from 0 to 512
[  237.540990][T17732] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.6.3553: corrupted xattr block 95: invalid header
[  237.574815][T17732] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.3553: bg 0: block 7: invalid block bitmap
[  237.602983][T17732] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  237.640567][T17732] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2962: inode #11: comm syz.6.3553: corrupted xattr block 95: invalid header
[  237.666544][T17745] netlink: 'syz.4.3559': attribute type 3 has an invalid length.
[  237.683535][T17732] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  237.710993][T17747] 9pnet_fd: Insufficient options for proto=fd
[  237.717346][T17732] EXT4-fs (loop6): 1 orphan inode deleted
[  237.723938][T17749] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  237.732574][T17732] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.783375][T16506] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.805255][T17756] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  238.144197][T17771] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  238.156307][T17773] netlink: 'syz.2.3571': attribute type 3 has an invalid length.
[  238.191788][T17776] 9pnet_fd: Insufficient options for proto=fd
[  238.233321][T17771] loop5: detected capacity change from 0 to 1024
[  238.251201][T17771] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  238.285456][ T3386] usb 3-1: enqueue for inactive port 0
[  238.290974][ T3386] usb 3-1: enqueue for inactive port 0
[  238.383294][ T3386] vhci_hcd: vhci_device speed not set
[  238.394702][T17782] loop4: detected capacity change from 0 to 128
[  238.412235][T17782] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  238.434578][T17782] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  238.457582][T17782] tipc: Started in network mode
[  238.462500][T17782] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  238.470005][T17782] tipc: Enabled bearer <eth:team0>, priority 0
[  238.512740][ T3667] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  238.553618][T17794] 9pnet_fd: Insufficient options for proto=fd
[  238.571328][T17794] loop4: detected capacity change from 0 to 128
[  238.611433][T17794] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  238.749484][T17808] 9pnet_fd: Insufficient options for proto=fd
[  238.807597][T17810] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  238.906379][T17822] loop5: detected capacity change from 0 to 512
[  238.929617][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  238.954865][T17822] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3589: corrupted xattr block 95: invalid header
[  238.985616][T17822] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3589: bg 0: block 7: invalid block bitmap
[  239.046625][T17822] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  239.088904][T17822] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3589: corrupted xattr block 95: invalid header
[  239.109420][T17822] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  239.119268][T17822] EXT4-fs (loop5): 1 orphan inode deleted
[  239.125750][T17822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.162425][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.349981][T17867] 9pnet_fd: Insufficient options for proto=fd
[  239.423033][T17879] 9pnet_fd: Insufficient options for proto=fd
[  239.445927][T17879] loop6: detected capacity change from 0 to 128
[  239.470522][T17879] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  239.500739][   T29] kauditd_printk_skb: 579 callbacks suppressed
[  239.500756][   T29] audit: type=1326 audit(239.480:18836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f445de1d550 code=0x7ffc0000
[  239.536587][   T29] audit: type=1326 audit(239.520:18837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f445de1d937 code=0x7ffc0000
[  239.559547][   T29] audit: type=1326 audit(239.520:18838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f445de1d550 code=0x7ffc0000
[  239.582621][   T29] audit: type=1326 audit(239.520:18839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.605733][   T29] audit: type=1326 audit(239.520:18840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.623218][ T1036] tipc: Node number set to 11578026
[  239.633457][   T29] audit: type=1326 audit(239.620:18841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.657066][   T29] audit: type=1326 audit(239.620:18842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.680161][   T29] audit: type=1326 audit(239.620:18843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.727165][   T29] audit: type=1326 audit(239.690:18844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.750266][   T29] audit: type=1326 audit(239.690:18845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17875 comm="syz.6.3602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f445de1ebe9 code=0x7ffc0000
[  239.775496][T16506] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  239.905903][T17924] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  239.978568][T17924] loop4: detected capacity change from 0 to 1024
[  239.989570][T17941] 9pnet_fd: Insufficient options for proto=fd
[  239.996718][T17924] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  240.066671][T17951] 9pnet_fd: Insufficient options for proto=fd
[  240.081514][T17955] FAULT_INJECTION: forcing a failure.
[  240.081514][T17955] name failslab, interval 1, probability 0, space 0, times 0
[  240.094183][T17955] CPU: 1 UID: 0 PID: 17955 Comm: syz.5.3617 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  240.094216][T17955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  240.094287][T17955] Call Trace:
[  240.094295][T17955]  <TASK>
[  240.094304][T17955]  __dump_stack+0x1d/0x30
[  240.094376][T17955]  dump_stack_lvl+0xe8/0x140
[  240.094400][T17955]  dump_stack+0x15/0x1b
[  240.094421][T17955]  should_fail_ex+0x265/0x280
[  240.094450][T17955]  ? sel_netport_sid_slow+0x11b/0x330
[  240.094489][T17955]  should_failslab+0x8c/0xb0
[  240.094589][T17955]  __kmalloc_cache_noprof+0x4c/0x320
[  240.094628][T17955]  sel_netport_sid_slow+0x11b/0x330
[  240.094710][T17955]  sel_netport_sid+0xe9/0x140
[  240.094751][T17955]  selinux_socket_bind+0x47a/0x6b0
[  240.094794][T17955]  selinux_sctp_bind_connect+0x1bc/0x250
[  240.094883][T17955]  security_sctp_bind_connect+0x50/0x90
[  240.094980][T17955]  sctp_setsockopt_bindx+0x116/0x2c0
[  240.095011][T17955]  sctp_setsockopt+0x79f/0xe30
[  240.095037][T17955]  sock_common_setsockopt+0x69/0x80
[  240.095208][T17955]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  240.095253][T17955]  __sys_setsockopt+0x181/0x200
[  240.095286][T17955]  __x64_sys_setsockopt+0x64/0x80
[  240.095341][T17955]  x64_sys_call+0x20ec/0x2ff0
[  240.095369][T17955]  do_syscall_64+0xd2/0x200
[  240.095408][T17955]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  240.095453][T17955]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  240.095568][T17955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.095616][T17955] RIP: 0033:0x7fc3e011ebe9
[  240.095635][T17955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.095657][T17955] RSP: 002b:00007fc3deb87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  240.095680][T17955] RAX: ffffffffffffffda RBX: 00007fc3e0355fa0 RCX: 00007fc3e011ebe9
[  240.095710][T17955] RDX: 0000000000000064 RSI: 0000000000000084 RDI: 0000000000000003
[  240.095793][T17955] RBP: 00007fc3deb87090 R08: 0000000000000020 R09: 0000000000000000
[  240.095805][T17955] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  240.095817][T17955] R13: 00007fc3e0356038 R14: 00007fc3e0355fa0 R15: 00007ffeef182f38
[  240.095836][T17955]  </TASK>
[  240.375871][T17968] netlink: 'syz.2.3620': attribute type 3 has an invalid length.
[  240.546601][T17985] 9pnet_fd: Insufficient options for proto=fd
[  240.572486][T17990] netlink: 'syz.5.3625': attribute type 3 has an invalid length.
[  240.634716][T17991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  240.643259][T17991] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  241.155996][T18029] loop6: detected capacity change from 0 to 2048
[  241.177156][T18029] EXT4-fs (loop6): failed to initialize system zone (-117)
[  241.185085][T18029] EXT4-fs (loop6): mount failed
[  241.199520][T18038] 9pnet_fd: Insufficient options for proto=fd
[  241.206404][T18039] loop5: detected capacity change from 0 to 1014
[  241.215611][T18029] loop6: detected capacity change from 0 to 164
[  241.232175][T18029] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  241.235710][T18038] loop4: detected capacity change from 0 to 128
[  241.265556][T18038] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  241.289462][T18048] netlink: 'syz.5.3632': attribute type 3 has an invalid length.
[  241.382087][T15208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  241.425818][T18056] 9pnet_fd: Insufficient options for proto=fd
[  241.502096][T18058] loop4: detected capacity change from 0 to 512
[  241.525441][T18058] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3636: corrupted xattr block 95: invalid header
[  241.554831][T18058] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3636: bg 0: block 7: invalid block bitmap
[  241.581730][T18058] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  241.605349][T18058] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3636: corrupted xattr block 95: invalid header
[  241.645555][T18058] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  241.676211][T18058] EXT4-fs (loop4): 1 orphan inode deleted
[  241.694487][T18058] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.750507][T18069] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  241.763410][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.796653][T18071] loop4: detected capacity change from 0 to 512
[  241.827366][T18071] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3642: corrupted xattr block 95: invalid header
[  241.859223][T18076] loop6: detected capacity change from 0 to 512
[  241.867844][T18071] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3642: bg 0: block 7: invalid block bitmap
[  241.887503][T18076] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  241.902662][T18071] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  241.919983][T18076] EXT4-fs (loop6): 1 orphan inode deleted
[  241.925768][T18076] EXT4-fs (loop6): 1 truncate cleaned up
[  241.937403][T18071] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3642: corrupted xattr block 95: invalid header
[  241.953693][T18076] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.977392][T18071] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  242.005075][T18071] EXT4-fs (loop4): 1 orphan inode deleted
[  242.022179][T18071] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.089674][T16506] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.109512][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.145412][T18081] 9pnet_fd: Insufficient options for proto=fd
[  242.289519][T18093] loop4: detected capacity change from 0 to 512
[  242.306183][T18093] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.3651: corrupted xattr block 95: invalid header
[  242.343457][T18093] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3651: bg 0: block 7: invalid block bitmap
[  242.381910][T18093] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  242.401020][T18098] 9pnet_fd: Insufficient options for proto=fd
[  242.408310][T18093] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.3651: corrupted xattr block 95: invalid header
[  242.437219][T18098] loop6: detected capacity change from 0 to 128
[  242.454281][T18093] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  242.474033][T18098] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  242.488418][T18093] EXT4-fs (loop4): 1 orphan inode deleted
[  242.497208][T18093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.555102][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.567625][T16506] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  242.642390][T18105] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  242.657279][T18104] 9pnet_fd: Insufficient options for proto=fd
[  242.821020][T18119] cgroup: Invalid name
[  242.890449][T18123] 9pnet_fd: Insufficient options for proto=fd
[  242.904792][T18123] loop6: detected capacity change from 0 to 128
[  242.930569][T18123] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  242.943886][T18130] 9pnet_fd: Insufficient options for proto=fd
[  242.994977][T18134] netlink: 'syz.4.3671': attribute type 3 has an invalid length.
[  243.060420][T16506] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  243.096724][T18142] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  243.128698][T18144] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3675'.
[  243.182473][T18144] loop4: detected capacity change from 0 to 512
[  243.255280][T18150] loop6: detected capacity change from 0 to 512
[  243.272614][T18150] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.6.3678: corrupted xattr block 95: invalid header
[  243.299998][T18150] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.3678: bg 0: block 7: invalid block bitmap
[  243.325202][T18150] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  243.343551][T18150] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2962: inode #11: comm syz.6.3678: corrupted xattr block 95: invalid header
[  243.370101][T18150] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  243.389363][T18150] EXT4-fs (loop6): 1 orphan inode deleted
[  243.401152][T18150] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.505859][T16506] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.572075][T18160] 9pnet_fd: Insufficient options for proto=fd
[  243.767457][T18172] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  243.864902][T18176] loop6: detected capacity change from 0 to 512
[  243.874633][T18176] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.6.3690: corrupted xattr block 95: invalid header
[  243.888997][T18176] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.3690: bg 0: block 7: invalid block bitmap
[  243.902512][T18176] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  243.911615][T18176] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2962: inode #11: comm syz.6.3690: corrupted xattr block 95: invalid header
[  243.925407][T18176] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  243.934522][T18176] EXT4-fs (loop6): 1 orphan inode deleted
[  243.940870][T18176] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.985362][T16506] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.043472][T18183] 9pnet_fd: Insufficient options for proto=fd
[  244.099807][T18191] 9pnet: Could not find request transport: fd0x0000000000000007
[  244.109943][T18193] cgroup: Invalid name
[  244.157658][T18203] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  244.162792][T18204] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3702'.
[  244.184360][T18200] netlink: 'syz.5.3700': attribute type 3 has an invalid length.
[  244.259706][T18217] 9pnet_fd: Insufficient options for proto=fd
[  244.267199][T18218] loop4: detected capacity change from 0 to 512
[  244.296544][T18218] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.315590][T18218] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3708: bg 0: block 328: padding at end of block bitmap is not set
[  244.326817][T18224] 9pnet: Could not find request transport: fd0x0000000000000007
[  244.347659][T18218] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3708'.
[  244.376713][T18229] cgroup: Invalid name
[  244.587374][   T29] kauditd_printk_skb: 669 callbacks suppressed
[  244.587393][   T29] audit: type=1326 audit(244.570:19515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.620117][   T29] audit: type=1326 audit(244.570:19516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.643295][   T29] audit: type=1326 audit(244.570:19517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.666433][   T29] audit: type=1326 audit(244.570:19518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.689566][   T29] audit: type=1326 audit(244.570:19519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.712552][   T29] audit: type=1326 audit(244.570:19520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.735552][   T29] audit: type=1326 audit(244.570:19521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.758523][   T29] audit: type=1326 audit(244.570:19522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.781592][   T29] audit: type=1326 audit(244.570:19523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.804688][   T29] audit: type=1326 audit(244.570:19524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18244 comm="syz.5.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e011ebe9 code=0x7ffc0000
[  244.837213][T18247] 9pnet_fd: Insufficient options for proto=fd
[  244.862169][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.864821][T18249] netlink: 'syz.5.3720': attribute type 3 has an invalid length.
[  244.911567][T18252] 9pnet: Could not find request transport: fd0x0000000000000007
[  244.944824][T18257] cgroup: Invalid name
[  244.979768][T18260] cgroup: Invalid name
[  245.022780][T18264] loop5: detected capacity change from 0 to 512
[  245.049389][T18264] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3726: corrupted xattr block 95: invalid header
[  245.158654][T18272] loop6: detected capacity change from 0 to 512
[  245.175666][T18264] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3726: bg 0: block 7: invalid block bitmap
[  245.181811][T18274] loop4: detected capacity change from 0 to 512
[  245.199193][T18264] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  245.208364][T18264] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3726: corrupted xattr block 95: invalid header
[  245.223232][T18272] EXT4-fs: Ignoring removed mblk_io_submit option
[  245.230625][T18274] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  245.241549][T18272] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  245.254363][T18274] EXT4-fs (loop4): 1 orphan inode deleted
[  245.260207][T18274] EXT4-fs (loop4): 1 truncate cleaned up
[  245.265939][T18264] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  245.276405][T18274] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.289898][T18264] EXT4-fs (loop5): 1 orphan inode deleted
[  245.297004][T18264] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.310056][T18272] EXT4-fs (loop6): 1 truncate cleaned up
[  245.319997][T18272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.370268][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.473044][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.494331][T18282] 9pnet_fd: Insufficient options for proto=fd
[  245.518586][T18284] 9pnet_fd: Insufficient options for proto=fd
[  245.529110][T18282] loop5: detected capacity change from 0 to 128
[  245.547266][T18282] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  245.678450][T18293] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3738'.
[  245.719753][T11572] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  245.792972][T18296] cgroup: Invalid name
[  245.836880][T18301] loop5: detected capacity change from 0 to 512
[  245.845534][T18301] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  245.868388][T18301] EXT4-fs (loop5): 1 orphan inode deleted
[  245.874254][T18301] EXT4-fs (loop5): 1 truncate cleaned up
[  245.919077][T18301] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.976415][T16506] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.014399][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.079138][T18312] 9pnet_fd: Insufficient options for proto=fd
[  246.108689][T18314] loop5: detected capacity change from 0 to 512
[  246.117679][T18314] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.3747: corrupted xattr block 95: invalid header
[  246.135934][T18314] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3747: bg 0: block 7: invalid block bitmap
[  246.148729][T18314] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  246.158741][T18314] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.3747: corrupted xattr block 95: invalid header
[  246.172584][T18314] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  246.182768][T18314] EXT4-fs (loop5): 1 orphan inode deleted
[  246.190400][T18314] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.217974][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.276123][T18321] cgroup: Invalid name
[  246.386614][T18327] loop5: detected capacity change from 0 to 512
[  246.399952][T18327] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.414192][T18327] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  246.426200][T18327] EXT4-fs (loop5): 1 truncate cleaned up
[  246.428249][T18331] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  246.432497][T18327] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.540343][T18336] 9pnet_fd: Insufficient options for proto=fd
[  246.677561][T18345] cgroup: Invalid name
[  246.765272][T18353] loop4: detected capacity change from 0 to 512
[  246.779428][T18353] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  246.791046][T18355] netlink: 'syz.2.3766': attribute type 3 has an invalid length.
[  246.803060][T18353] EXT4-fs (loop4): 1 orphan inode deleted
[  246.808842][T18353] EXT4-fs (loop4): 1 truncate cleaned up
[  246.815859][T18353] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.862610][T18358] netlink: 100 bytes leftover after parsing attributes in process `syz.6.3767'.
[  246.940677][T15208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.089546][T18368] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3769'.
[  247.150627][T18371] 9pnet_fd: Insufficient options for proto=fd
[  247.215055][T18374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3772'.
[  247.230379][T18374] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3772'.
[  247.280763][T18327] ==================================================================
[  247.288900][T18327] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  247.296998][T18327] 
[  247.299332][T18327] write to 0xffff8881265c32e8 of 8 bytes by task 18337 on cpu 0:
[  247.307048][T18327]  filemap_splice_read+0x4f4/0x740
[  247.312168][T18327]  ext4_file_splice_read+0x8f/0xb0
[  247.317306][T18327]  splice_direct_to_actor+0x26c/0x680
[  247.322686][T18327]  do_splice_direct+0xda/0x150
[  247.327461][T18327]  do_sendfile+0x380/0x650
[  247.331898][T18327]  __x64_sys_sendfile64+0x105/0x150
[  247.337210][T18327]  x64_sys_call+0x2bb0/0x2ff0
[  247.341910][T18327]  do_syscall_64+0xd2/0x200
[  247.346450][T18327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.352378][T18327] 
[  247.354721][T18327] write to 0xffff8881265c32e8 of 8 bytes by task 18327 on cpu 1:
[  247.362479][T18327]  filemap_splice_read+0x4f4/0x740
[  247.367640][T18327]  ext4_file_splice_read+0x8f/0xb0
[  247.372788][T18327]  splice_direct_to_actor+0x26c/0x680
[  247.378172][T18327]  do_splice_direct+0xda/0x150
[  247.382944][T18327]  do_sendfile+0x380/0x650
[  247.387382][T18327]  __x64_sys_sendfile64+0x105/0x150
[  247.392600][T18327]  x64_sys_call+0x2bb0/0x2ff0
[  247.397292][T18327]  do_syscall_64+0xd2/0x200
[  247.401819][T18327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.407717][T18327] 
[  247.410042][T18327] value changed: 0x0000000000002368 -> 0x0000000000002373
[  247.417169][T18327] 
[  247.419496][T18327] Reported by Kernel Concurrency Sanitizer on:
[  247.425684][T18327] CPU: 1 UID: 0 PID: 18327 Comm: gtp Not tainted syzkaller #0 PREEMPT(voluntary) 
[  247.434894][T18327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  247.444966][T18327] ==================================================================
[  247.487450][T18376] netlink: 'syz.4.3773': attribute type 1 has an invalid length.
[  247.495269][T18376] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3773'.
[  247.522136][T11572] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.