fffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40), 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:26 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000800)='/proc/asound/timers\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={r5, 0x58, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xffffffffffffffea)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000002000000184200000500000000000000000000001845ffff00000000000000000000200010000000950000000000000095000000b3278280e2aaa4e41bbc1ddddaeffc0a78c73f2b7d1c42b1850d565f2ab1242607475c9a3d3b602b583f68208cf3eb1173b6fdea027c7d53eb10af1ecb962ff4fddef2bee833cefe24435ea1e52d017023781c7ec38af63d6e5e066f9f8dda66fe84f5f9423ea32b9269b5e68fedf58519269068f623dfc5794b696067d50c10247416b85e386cbaf09ab5dbc4f9f9"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffdfff8}, 0x10}, 0x80) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10) (rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000a830050259e656008520000002000000950000000000000095"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x18, 0x3, &(0x7f00000009c0)=ANY=[@ANYBLOB="950000000000000023520c0004007987030a00000400000051c77ab01ea4d4111d0bfce8568e82de49b504b3ec2956770be51199b67c17b454d508668c45b27f5ef160a258edad1a3baea407389055ca9d09787afcc9a1c6734105fe6e2650864579a833f0599a02f5b7ea1025afef38f541648f32b5179127e0ac35bb61e03dde9ddf3800"], &(0x7f0000000440)='syzkaller\x00', 0x6, 0x7d, &(0x7f0000000640)=""/125, 0x41000, 0x1, '\x00', r8, 0x7, r1, 0x8, &(0x7f00000006c0)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x4, 0x9, 0x4, 0x4}, 0x10, 0xffffffffffffffff, r7, 0x0, &(0x7f0000000740)=[r4, r1]}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x1000) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
r9 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r9, 0x0, 0x0) (async)
r10 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r10, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000840)={'wlan0\x00'})
ioctl$MON_IOCQ_URB_LEN(r9, 0x9201)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r9}, 0x8) (async)
r11 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r11, 0x0, 0x0)
r12 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r12, 0x8902)

14:09:26 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x28)

14:09:26 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, 0x0}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2487.784511][T31416]  do_syscall_64+0xcb/0x1c0
[ 2487.788981][T31416]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2487.803963][T31433] selinux_nlmsg_perm: 117 callbacks suppressed
[ 2487.803974][T31433] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31433 comm=syz-executor.1
14:09:26 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x29)

[ 2487.837427][T31439] FAULT_INJECTION: forcing a failure.
[ 2487.837427][T31439] name failslab, interval 1, probability 0, space 0, times 0
[ 2487.840644][T31442] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31442 comm=syz-executor.1
[ 2487.850258][T31439] CPU: 0 PID: 31439 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2487.873029][T31439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2487.883055][T31439] Call Trace:
14:09:26 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000ff0085200000d31a3a847902000000950000000000000095000096b049e86d93687abc2438b6935a67fa0598cb1e794c575f686a2c0b4593bd5bae558ed0b47e019ec96e3c8bb07e91222cbde4f904c01d6eb5c5f906ce1a02859dc04837"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.stat\x00', 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r3, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x82004880}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x184, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x706}, {0x6, 0x11, 0xdbb0}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0x8000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x7ff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0xd77}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0xfffd}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1000}, {0x6}}]}, 0x184}, 0x1, 0x0, 0x0, 0x4000800}, 0x20044861)

[ 2487.886341][T31439]  dump_stack+0x1d8/0x241
[ 2487.890654][T31439]  ? panic+0x73e/0x73e
[ 2487.894703][T31439]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2487.900492][T31439]  should_fail+0x709/0x870
[ 2487.904900][T31439]  ? setup_fault_attr+0x3d0/0x3d0
[ 2487.909904][T31439]  ? mempool_init_node+0x1f6/0x500
[ 2487.914991][T31439]  should_failslab+0x5/0x20
[ 2487.919468][T31439]  kmem_cache_alloc+0x24/0x210
[ 2487.924222][T31439]  ? mempool_free+0x380/0x380
[ 2487.928879][T31439]  mempool_init_node+0x1f6/0x500
[ 2487.933794][T31439]  ? mempool_free+0x380/0x380
[ 2487.938448][T31439]  ? mempool_alloc_slab+0x20/0x20
[ 2487.943446][T31439]  mempool_init+0x35/0x50
[ 2487.947762][T31439]  bioset_init+0x4ec/0x620
[ 2487.952151][T31439]  blk_alloc_queue_node+0xc4/0x580
[ 2487.957231][T31439]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2487.962579][T31439]  blk_mq_init_queue+0x33/0xa0
[ 2487.967316][T31439]  loop_add+0x256/0x710
[ 2487.971443][T31439]  ? radix_tree_lookup+0x17a/0x1d0
[ 2487.976528][T31439]  loop_control_ioctl+0x564/0x740
[ 2487.981553][T31439]  ? loop_remove+0xa0/0xa0
[ 2487.985936][T31439]  ? __lru_cache_add+0x1bf/0x210
[ 2487.990848][T31439]  ? memset+0x1f/0x40
[ 2487.994805][T31439]  ? fsnotify+0x1332/0x13f0
[ 2487.999281][T31439]  ? loop_remove+0xa0/0xa0
[ 2488.003694][T31439]  do_vfs_ioctl+0x744/0x1730
[ 2488.008263][T31439]  ? selinux_file_ioctl+0x723/0x970
[ 2488.013439][T31439]  ? ioctl_preallocate+0x250/0x250
[ 2488.018535][T31439]  ? __fget+0x40c/0x4a0
[ 2488.022673][T31439]  ? fget_many+0x20/0x20
[ 2488.026901][T31439]  ? check_preemption_disabled+0x154/0x330
[ 2488.032681][T31439]  ? debug_smp_processor_id+0x20/0x20
14:09:26 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:26 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000800)='/proc/asound/timers\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={r5, 0x58, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xffffffffffffffea)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000002000000184200000500000000000000000000001845ffff00000000000000000000200010000000950000000000000095000000b3278280e2aaa4e41bbc1ddddaeffc0a78c73f2b7d1c42b1850d565f2ab1242607475c9a3d3b602b583f68208cf3eb1173b6fdea027c7d53eb10af1ecb962ff4fddef2bee833cefe24435ea1e52d017023781c7ec38af63d6e5e066f9f8dda66fe84f5f9423ea32b9269b5e68fedf58519269068f623dfc5794b696067d50c10247416b85e386cbaf09ab5dbc4f9f9"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffdfff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000a830050259e656008520000002000000950000000000000095"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x18, 0x3, &(0x7f00000009c0)=ANY=[@ANYBLOB="950000000000000023520c0004007987030a00000400000051c77ab01ea4d4111d0bfce8568e82de49b504b3ec2956770be51199b67c17b454d508668c45b27f5ef160a258edad1a3baea407389055ca9d09787afcc9a1c6734105fe6e2650864579a833f0599a02f5b7ea1025afef38f541648f32b5179127e0ac35bb61e03dde9ddf3800"], &(0x7f0000000440)='syzkaller\x00', 0x6, 0x7d, &(0x7f0000000640)=""/125, 0x41000, 0x1, '\x00', r8, 0x7, r1, 0x8, &(0x7f00000006c0)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x4, 0x9, 0x4, 0x4}, 0x10, 0xffffffffffffffff, r7, 0x0, &(0x7f0000000740)=[r4, r1]}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x1000)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
r9 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r9, 0x0, 0x0) (async)
r10 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r10, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000840)={'wlan0\x00'}) (async)
ioctl$MON_IOCQ_URB_LEN(r9, 0x9201) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r9}, 0x8)
r11 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r11, 0x0, 0x0) (async)
r12 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r12, 0x8902)

14:09:26 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 17)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:26 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, 0x0}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:26 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000ff0085200000d31a3a847902000000950000000000000095000096b049e86d93687abc2438b6935a67fa0598cb1e794c575f686a2c0b4593bd5bae558ed0b47e019ec96e3c8bb07e91222cbde4f904c01d6eb5c5f906ce1a02859dc04837"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.stat\x00', 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r3, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x82004880}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x184, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x706}, {0x6, 0x11, 0xdbb0}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0x8000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x7ff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0xd77}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0xfffd}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1000}, {0x6}}]}, 0x184}, 0x1, 0x0, 0x0, 0x4000800}, 0x20044861)

14:09:26 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, 0x0}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2488.038027][T31439]  ? security_file_ioctl+0x9d/0xb0
[ 2488.043121][T31439]  __x64_sys_ioctl+0xd4/0x110
[ 2488.047803][T31439]  do_syscall_64+0xcb/0x1c0
[ 2488.052285][T31439]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:26 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2a)

14:09:26 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:26 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000cba902dcaba264c1eaf607f8f5e7c95a104400b46751159c68c1c6052f0116158ad362b81c2ec12dce651c6b46777e1e528415df158ab40e9d44c9fcb38f35b8be2be6d4ec84027ce0190d4f085abd3efd358a34b3471c774a621ebf079e7e038acd0d048a90d9950bc725a0a60d3b7022c1d42ec0c61c6497dd9dd1a7548a492b7126b5c51c6e47d4119fc12d0fb5916e9f108bdc85f329c669cbd30081317eada42f8e04e3c8"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2488.103650][T31475] FAULT_INJECTION: forcing a failure.
[ 2488.103650][T31475] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.119715][T31475] CPU: 0 PID: 31475 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2488.129942][T31475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2488.140056][T31475] Call Trace:
[ 2488.143322][T31475]  dump_stack+0x1d8/0x241
[ 2488.147624][T31475]  ? panic+0x73e/0x73e
[ 2488.151662][T31475]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2488.157435][T31475]  should_fail+0x709/0x870
[ 2488.161823][T31475]  ? setup_fault_attr+0x3d0/0x3d0
[ 2488.166816][T31475]  ? mempool_init_node+0x1f6/0x500
[ 2488.171898][T31475]  should_failslab+0x5/0x20
[ 2488.176375][T31475]  kmem_cache_alloc+0x24/0x210
[ 2488.181109][T31475]  ? mempool_free+0x380/0x380
[ 2488.185757][T31475]  mempool_init_node+0x1f6/0x500
[ 2488.190662][T31475]  ? mempool_free+0x380/0x380
[ 2488.195306][T31475]  ? mempool_alloc_slab+0x20/0x20
[ 2488.200294][T31475]  mempool_init+0x35/0x50
[ 2488.204588][T31475]  bioset_init+0x4ec/0x620
[ 2488.208971][T31475]  blk_alloc_queue_node+0xc4/0x580
[ 2488.214048][T31475]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2488.219384][T31475]  blk_mq_init_queue+0x33/0xa0
[ 2488.224114][T31475]  loop_add+0x256/0x710
[ 2488.228245][T31475]  ? radix_tree_lookup+0x17a/0x1d0
[ 2488.233339][T31475]  loop_control_ioctl+0x564/0x740
[ 2488.238335][T31475]  ? loop_remove+0xa0/0xa0
[ 2488.242723][T31475]  ? __lru_cache_add+0x1bf/0x210
[ 2488.247630][T31475]  ? memset+0x1f/0x40
[ 2488.251584][T31475]  ? fsnotify+0x1332/0x13f0
[ 2488.256051][T31475]  ? loop_remove+0xa0/0xa0
[ 2488.260433][T31475]  do_vfs_ioctl+0x744/0x1730
[ 2488.264991][T31475]  ? selinux_file_ioctl+0x723/0x970
[ 2488.270154][T31475]  ? ioctl_preallocate+0x250/0x250
[ 2488.275240][T31475]  ? __fget+0x40c/0x4a0
[ 2488.279365][T31475]  ? fget_many+0x20/0x20
[ 2488.283573][T31475]  ? check_preemption_disabled+0x154/0x330
[ 2488.289528][T31475]  ? debug_smp_processor_id+0x20/0x20
[ 2488.294895][T31475]  ? security_file_ioctl+0x9d/0xb0
[ 2488.300020][T31475]  __x64_sys_ioctl+0xd4/0x110
14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000cba902dcaba264c1eaf607f8f5e7c95a104400b46751159c68c1c6052f0116158ad362b81c2ec12dce651c6b46777e1e528415df158ab40e9d44c9fcb38f35b8be2be6d4ec84027ce0190d4f085abd3efd358a34b3471c774a621ebf079e7e038acd0d048a90d9950bc725a0a60d3b7022c1d42ec0c61c6497dd9dd1a7548a492b7126b5c51c6e47d4119fc12d0fb5916e9f108bdc85f329c669cbd30081317eada42f8e04e3c8"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (rerun: 32)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:27 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 18)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2488.304663][T31475]  do_syscall_64+0xcb/0x1c0
[ 2488.309137][T31475]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2488.323248][T31504] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31504 comm=syz-executor.1
14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000ff0085200000d31a3a847902000000950000000000000095000096b049e86d93687abc2438b6935a67fa0598cb1e794c575f686a2c0b4593bd5bae558ed0b47e019ec96e3c8bb07e91222cbde4f904c01d6eb5c5f906ce1a02859dc04837"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.stat\x00', 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r3, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x82004880}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x184, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x706}, {0x6, 0x11, 0xdbb0}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0x8000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x7ff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0xd77}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0xfffd}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1000}, {0x6}}]}, 0x184}, 0x1, 0x0, 0x0, 0x4000800}, 0x20044861)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x0, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2c)

[ 2488.355869][T31509] FAULT_INJECTION: forcing a failure.
[ 2488.355869][T31509] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.369211][T31509] CPU: 0 PID: 31509 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2488.379446][T31509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2488.389482][T31509] Call Trace:
[ 2488.392749][T31509]  dump_stack+0x1d8/0x241
[ 2488.397047][T31509]  ? panic+0x73e/0x73e
[ 2488.401089][T31509]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2488.406873][T31509]  ? mempool_init_node+0x1f6/0x500
[ 2488.411952][T31509]  should_fail+0x709/0x870
[ 2488.416341][T31509]  ? setup_fault_attr+0x3d0/0x3d0
[ 2488.421357][T31509]  ? mempool_free+0x380/0x380
[ 2488.426027][T31509]  ? mempool_alloc_slab+0x20/0x20
[ 2488.431037][T31509]  ? mempool_init+0x35/0x50
[ 2488.435510][T31509]  ? bdi_alloc_node+0x69/0xd0
[ 2488.440151][T31509]  should_failslab+0x5/0x20
[ 2488.444708][T31509]  kmem_cache_alloc_trace+0x28/0x240
[ 2488.449972][T31509]  bdi_alloc_node+0x69/0xd0
[ 2488.454446][T31509]  blk_alloc_queue_node+0x10b/0x580
[ 2488.459610][T31509]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2488.464956][T31509]  blk_mq_init_queue+0x33/0xa0
[ 2488.469692][T31509]  loop_add+0x256/0x710
[ 2488.473819][T31509]  ? radix_tree_lookup+0x17a/0x1d0
[ 2488.478936][T31509]  loop_control_ioctl+0x564/0x740
[ 2488.484060][T31509]  ? loop_remove+0xa0/0xa0
[ 2488.488462][T31509]  ? __lru_cache_add+0x1bf/0x210
[ 2488.493379][T31509]  ? memset+0x1f/0x40
[ 2488.497335][T31509]  ? fsnotify+0x1332/0x13f0
[ 2488.501823][T31509]  ? loop_remove+0xa0/0xa0
[ 2488.506228][T31509]  do_vfs_ioctl+0x744/0x1730
[ 2488.510798][T31509]  ? selinux_file_ioctl+0x723/0x970
[ 2488.515968][T31509]  ? ioctl_preallocate+0x250/0x250
[ 2488.521052][T31509]  ? __fget+0x40c/0x4a0
[ 2488.525181][T31509]  ? fget_many+0x20/0x20
[ 2488.529396][T31509]  ? check_preemption_disabled+0x154/0x330
[ 2488.535173][T31509]  ? debug_smp_processor_id+0x20/0x20
[ 2488.540515][T31509]  ? security_file_ioctl+0x9d/0xb0
[ 2488.545606][T31509]  __x64_sys_ioctl+0xd4/0x110
[ 2488.550265][T31509]  do_syscall_64+0xcb/0x1c0
14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000cba902dcaba264c1eaf607f8f5e7c95a104400b46751159c68c1c6052f0116158ad362b81c2ec12dce651c6b46777e1e528415df158ab40e9d44c9fcb38f35b8be2be6d4ec84027ce0190d4f085abd3efd358a34b3471c774a621ebf079e7e038acd0d048a90d9950bc725a0a60d3b7022c1d42ec0c61c6497dd9dd1a7548a492b7126b5c51c6e47d4119fc12d0fb5916e9f108bdc85f329c669cbd30081317eada42f8e04e3c8"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000cba902dcaba264c1eaf607f8f5e7c95a104400b46751159c68c1c6052f0116158ad362b81c2ec12dce651c6b46777e1e528415df158ab40e9d44c9fcb38f35b8be2be6d4ec84027ce0190d4f085abd3efd358a34b3471c774a621ebf079e7e038acd0d048a90d9950bc725a0a60d3b7022c1d42ec0c61c6497dd9dd1a7548a492b7126b5c51c6e47d4119fc12d0fb5916e9f108bdc85f329c669cbd30081317eada42f8e04e3c8"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:27 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 19)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000200000018420000d64bc7d2000000000500000008450000fdffffff001c0000000000008520000002000000950000000000000095000000000000008a7982cf52a2e5e9b647dc9dd4dd9c8a4dd9cfe3567a7206c3ac121a6026f47c806b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x0, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2d)

[ 2488.554753][T31509]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2488.574909][T31527] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31527 comm=syz-executor.1
14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7) (rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000200000018420000d64bc7d2000000000500000008450000fdffffff001c0000000000008520000002000000950000000000000095000000000000008a7982cf52a2e5e9b647dc9dd4dd9c8a4dd9cfe3567a7206c3ac121a6026f47c806b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2e)

14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c40)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800}, @exit], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xd0, r5, 0x400, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}]}, 0xd0}, 0x1, 0x0, 0x0, 0x60000000}, 0x81)

[ 2488.604225][T31547] FAULT_INJECTION: forcing a failure.
[ 2488.604225][T31547] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.626161][T31547] CPU: 0 PID: 31547 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2488.636407][T31547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2488.646434][T31547] Call Trace:
[ 2488.649696][T31547]  dump_stack+0x1d8/0x241
[ 2488.653997][T31547]  ? panic+0x73e/0x73e
[ 2488.658032][T31547]  ? blk_mq_init_queue+0x33/0xa0
[ 2488.662935][T31547]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2488.668706][T31547]  ? __x64_sys_ioctl+0xd4/0x110
[ 2488.673525][T31547]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2488.679557][T31547]  should_fail+0x709/0x870
[ 2488.683943][T31547]  ? setup_fault_attr+0x3d0/0x3d0
[ 2488.688940][T31547]  ? bdi_init+0x19a/0xa90
[ 2488.693240][T31547]  should_failslab+0x5/0x20
[ 2488.697711][T31547]  kmem_cache_alloc_trace+0x28/0x240
[ 2488.702975][T31547]  bdi_init+0x19a/0xa90
[ 2488.707110][T31547]  ? kmem_cache_alloc_trace+0xd8/0x240
[ 2488.712534][T31547]  ? bdi_alloc_node+0x69/0xd0
[ 2488.717184][T31547]  bdi_alloc_node+0x79/0xd0
[ 2488.721654][T31547]  blk_alloc_queue_node+0x10b/0x580
[ 2488.726817][T31547]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2488.732156][T31547]  blk_mq_init_queue+0x33/0xa0
[ 2488.736906][T31547]  loop_add+0x256/0x710
[ 2488.741042][T31547]  ? radix_tree_lookup+0x17a/0x1d0
[ 2488.746124][T31547]  loop_control_ioctl+0x564/0x740
[ 2488.751125][T31547]  ? loop_remove+0xa0/0xa0
[ 2488.755517][T31547]  ? __lru_cache_add+0x1bf/0x210
[ 2488.760430][T31547]  ? memset+0x1f/0x40
[ 2488.764384][T31547]  ? fsnotify+0x1332/0x13f0
[ 2488.768853][T31547]  ? loop_remove+0xa0/0xa0
[ 2488.773236][T31547]  do_vfs_ioctl+0x744/0x1730
[ 2488.777803][T31547]  ? selinux_file_ioctl+0x723/0x970
[ 2488.782987][T31547]  ? ioctl_preallocate+0x250/0x250
[ 2488.788078][T31547]  ? __fget+0x40c/0x4a0
[ 2488.792208][T31547]  ? fget_many+0x20/0x20
[ 2488.796420][T31547]  ? check_preemption_disabled+0x154/0x330
[ 2488.802195][T31547]  ? debug_smp_processor_id+0x20/0x20
14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000200000018420000d64bc7d2000000000500000008450000fdffffff001c0000000000008520000002000000950000000000000095000000000000008a7982cf52a2e5e9b647dc9dd4dd9c8a4dd9cfe3567a7206c3ac121a6026f47c806b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000200000018420000d64bc7d2000000000500000008450000fdffffff001c0000000000008520000002000000950000000000000095000000000000008a7982cf52a2e5e9b647dc9dd4dd9c8a4dd9cfe3567a7206c3ac121a6026f47c806b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x0, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c40)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800}, @exit], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xd0, r5, 0x400, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}]}, 0xd0}, 0x1, 0x0, 0x0, 0x60000000}, 0x81)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x30)

[ 2488.807534][T31547]  ? security_file_ioctl+0x9d/0xb0
[ 2488.812609][T31547]  __x64_sys_ioctl+0xd4/0x110
[ 2488.817254][T31547]  do_syscall_64+0xcb/0x1c0
[ 2488.821729][T31547]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2488.838529][T31571] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31571 comm=syz-executor.1
14:09:27 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 20)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x0, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c40)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800}, @exit], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xd0, r5, 0x400, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}]}, 0xd0}, 0x1, 0x0, 0x0, 0x60000000}, 0x81)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c40)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800}, @exit], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2) (async)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0xd0, r5, 0x400, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}]}, 0xd0}, 0x1, 0x0, 0x0, 0x60000000}, 0x81) (async)

14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x2, &(0x7f0000000100)='N$/}\x00', &(0x7f0000000240)="c49e7d94219aadd3f78ba75fc80156c725899561a8f5454ba7c7e1cfc7e348f035d42901f797d8c71e6d63fa43bea488fb36173257f6d7bced235872f546fe7f6e7170e97a3d93ab521c6e63acd80a770fb8d0ade77877b06aab9a43e6cc713f3a6f142ef8e3ba0fd2c683", 0x6b)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000040)={0x4, 0x10001, 0x0, 0x8001}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000140), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000fc24d456621a746f31dbd3487a1842000005000000000000000000000018450000fdffffff000000000000000000009500000900000000530cc89ff8de758444397055e6c5866fcb161f1e6f18c82fd865ff62b8d4a80a91c26bf8c496553517cf70c9721978fee6f8a749419df27b6aa3a0d6a87bae2ebd463bfe3426d85830fcd585db03ffe8041a3b2f56a2fda350e2d0bd8c632b950fc92f03fe3077ff4ad82eff4f21a81dcaa9bba2e7caf35dabcb474b62f97504e8670116af0930e55e3c966ae30b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x7, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f00000002c0)={0xffffffffffffffff, 0x8, 0x2, 0x80000000, @vifc_lcl_addr=@local, @private=0xa010100}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x31)

14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x0, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x2, &(0x7f0000000100)='N$/}\x00', &(0x7f0000000240)="c49e7d94219aadd3f78ba75fc80156c725899561a8f5454ba7c7e1cfc7e348f035d42901f797d8c71e6d63fa43bea488fb36173257f6d7bced235872f546fe7f6e7170e97a3d93ab521c6e63acd80a770fb8d0ade77877b06aab9a43e6cc713f3a6f142ef8e3ba0fd2c683", 0x6b)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000040)={0x4, 0x10001, 0x0, 0x8001}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000140), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000fc24d456621a746f31dbd3487a1842000005000000000000000000000018450000fdffffff000000000000000000009500000900000000530cc89ff8de758444397055e6c5866fcb161f1e6f18c82fd865ff62b8d4a80a91c26bf8c496553517cf70c9721978fee6f8a749419df27b6aa3a0d6a87bae2ebd463bfe3426d85830fcd585db03ffe8041a3b2f56a2fda350e2d0bd8c632b950fc92f03fe3077ff4ad82eff4f21a81dcaa9bba2e7caf35dabcb474b62f97504e8670116af0930e55e3c966ae30b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x7, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f00000002c0)={0xffffffffffffffff, 0x8, 0x2, 0x80000000, @vifc_lcl_addr=@local, @private=0xa010100}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x2, &(0x7f0000000100)='N$/}\x00', &(0x7f0000000240)="c49e7d94219aadd3f78ba75fc80156c725899561a8f5454ba7c7e1cfc7e348f035d42901f797d8c71e6d63fa43bea488fb36173257f6d7bced235872f546fe7f6e7170e97a3d93ab521c6e63acd80a770fb8d0ade77877b06aab9a43e6cc713f3a6f142ef8e3ba0fd2c683", 0x6b) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000040)={0x4, 0x10001, 0x0, 0x8001}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0) (async)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000140), 0x4) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000fc24d456621a746f31dbd3487a1842000005000000000000000000000018450000fdffffff000000000000000000009500000900000000530cc89ff8de758444397055e6c5866fcb161f1e6f18c82fd865ff62b8d4a80a91c26bf8c496553517cf70c9721978fee6f8a749419df27b6aa3a0d6a87bae2ebd463bfe3426d85830fcd585db03ffe8041a3b2f56a2fda350e2d0bd8c632b950fc92f03fe3077ff4ad82eff4f21a81dcaa9bba2e7caf35dabcb474b62f97504e8670116af0930e55e3c966ae30b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x7, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f00000002c0)={0xffffffffffffffff, 0x8, 0x2, 0x80000000, @vifc_lcl_addr=@local, @private=0xa010100}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x32)

[ 2488.886177][T31591] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31591 comm=syz-executor.1
14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000002c0)='io.pressure\x00', 0x2, 0x0)
fstat(r1, &(0x7f0000000300))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x18, 0x1, &(0x7f0000001c40)=@raw=[@jmp={0x5, 0x0, 0x9, 0x4, 0x2, 0xc, 0xfffffffffffffff8}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x200, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2488.939024][T31618] FAULT_INJECTION: forcing a failure.
[ 2488.939024][T31618] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.944910][T31627] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31627 comm=syz-executor.1
[ 2488.965070][T31618] CPU: 1 PID: 31618 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2488.975294][T31618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2488.985321][T31618] Call Trace:
[ 2488.988588][T31618]  dump_stack+0x1d8/0x241
[ 2488.992893][T31618]  ? panic+0x73e/0x73e
[ 2488.996946][T31618]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2489.002718][T31618]  ? _raw_spin_lock_irqsave+0xf8/0x210
[ 2489.008140][T31618]  ? cpumask_next+0xc/0x20
[ 2489.012520][T31618]  should_fail+0x709/0x870
[ 2489.016902][T31618]  ? setup_fault_attr+0x3d0/0x3d0
[ 2489.021897][T31618]  ? _raw_spin_unlock_irqrestore+0x57/0x80
[ 2489.027685][T31618]  ? blk_alloc_queue_stats+0x48/0x100
[ 2489.033024][T31618]  should_failslab+0x5/0x20
[ 2489.037491][T31618]  kmem_cache_alloc_trace+0x28/0x240
[ 2489.042740][T31618]  blk_alloc_queue_stats+0x48/0x100
[ 2489.047920][T31618]  blk_alloc_queue_node+0x150/0x580
[ 2489.053101][T31618]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2489.058438][T31618]  blk_mq_init_queue+0x33/0xa0
[ 2489.063167][T31618]  loop_add+0x256/0x710
[ 2489.067290][T31618]  ? radix_tree_lookup+0x17a/0x1d0
[ 2489.072374][T31618]  loop_control_ioctl+0x564/0x740
[ 2489.077381][T31618]  ? loop_remove+0xa0/0xa0
[ 2489.081767][T31618]  ? __lru_cache_add+0x1bf/0x210
[ 2489.086673][T31618]  ? memset+0x1f/0x40
[ 2489.090620][T31618]  ? fsnotify+0x1332/0x13f0
[ 2489.095088][T31618]  ? loop_remove+0xa0/0xa0
[ 2489.099470][T31618]  do_vfs_ioctl+0x744/0x1730
[ 2489.104026][T31618]  ? selinux_file_ioctl+0x723/0x970
[ 2489.109189][T31618]  ? ioctl_preallocate+0x250/0x250
[ 2489.114267][T31618]  ? __fget+0x40c/0x4a0
[ 2489.118389][T31618]  ? fget_many+0x20/0x20
[ 2489.122596][T31618]  ? check_preemption_disabled+0x154/0x330
[ 2489.128372][T31618]  ? debug_smp_processor_id+0x20/0x20
[ 2489.133714][T31618]  ? security_file_ioctl+0x9d/0xb0
14:09:27 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 21)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x2, &(0x7f0000000100)='N$/}\x00', &(0x7f0000000240)="c49e7d94219aadd3f78ba75fc80156c725899561a8f5454ba7c7e1cfc7e348f035d42901f797d8c71e6d63fa43bea488fb36173257f6d7bced235872f546fe7f6e7170e97a3d93ab521c6e63acd80a770fb8d0ade77877b06aab9a43e6cc713f3a6f142ef8e3ba0fd2c683", 0x6b)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000040)={0x4, 0x10001, 0x0, 0x8001}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000140), 0x4) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000fc24d456621a746f31dbd3487a1842000005000000000000000000000018450000fdffffff000000000000000000009500000900000000530cc89ff8de758444397055e6c5866fcb161f1e6f18c82fd865ff62b8d4a80a91c26bf8c496553517cf70c9721978fee6f8a749419df27b6aa3a0d6a87bae2ebd463bfe3426d85830fcd585db03ffe8041a3b2f56a2fda350e2d0bd8c632b950fc92f03fe3077ff4ad82eff4f21a81dcaa9bba2e7caf35dabcb474b62f97504e8670116af0930e55e3c966ae30b"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x7, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f00000002c0)={0xffffffffffffffff, 0x8, 0x2, 0x80000000, @vifc_lcl_addr=@local, @private=0xa010100}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x34)

14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async, rerun: 32)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000002c0)='io.pressure\x00', 0x2, 0x0)
fstat(r1, &(0x7f0000000300)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x18, 0x1, &(0x7f0000001c40)=@raw=[@jmp={0x5, 0x0, 0x9, 0x4, 0x2, 0xc, 0xfffffffffffffff8}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x200, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x0, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2489.138791][T31618]  __x64_sys_ioctl+0xd4/0x110
[ 2489.143441][T31618]  do_syscall_64+0xcb/0x1c0
[ 2489.147917][T31618]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2489.183237][T31665] FAULT_INJECTION: forcing a failure.
[ 2489.183237][T31665] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.187435][T31663] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31663 comm=syz-executor.1
[ 2489.199841][T31665] CPU: 0 PID: 31665 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2489.218817][T31665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2489.228842][T31665] Call Trace:
14:09:27 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000002c0)='io.pressure\x00', 0x2, 0x0)
fstat(r1, &(0x7f0000000300))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x18, 0x1, &(0x7f0000001c40)=@raw=[@jmp={0x5, 0x0, 0x9, 0x4, 0x2, 0xc, 0xfffffffffffffff8}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x200, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2489.232138][T31665]  dump_stack+0x1d8/0x241
[ 2489.236434][T31665]  ? panic+0x73e/0x73e
[ 2489.240475][T31665]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2489.246255][T31665]  ? pcpu_chunk_relocate+0xe5/0x3a0
[ 2489.251430][T31665]  should_fail+0x709/0x870
[ 2489.255820][T31665]  ? setup_fault_attr+0x3d0/0x3d0
[ 2489.260809][T31665]  ? find_next_bit+0xc6/0x110
[ 2489.265464][T31665]  ? cpumask_next+0xc/0x20
[ 2489.269866][T31665]  ? blk_mq_poll_stats_fn+0x1b0/0x1b0
[ 2489.275226][T31665]  ? blk_stat_alloc_callback+0x5c/0x210
[ 2489.280757][T31665]  should_failslab+0x5/0x20
[ 2489.285227][T31665]  kmem_cache_alloc_trace+0x28/0x240
[ 2489.290478][T31665]  ? blk_mq_poll_stats_fn+0x1b0/0x1b0
[ 2489.295820][T31665]  ? blk_mq_free_tag_set+0x480/0x480
[ 2489.301075][T31665]  blk_stat_alloc_callback+0x5c/0x210
[ 2489.306415][T31665]  blk_mq_init_allocated_queue+0x86/0x16c0
[ 2489.312189][T31665]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2489.317528][T31665]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2489.322870][T31665]  blk_mq_init_queue+0x48/0xa0
[ 2489.327606][T31665]  loop_add+0x256/0x710
[ 2489.331739][T31665]  ? radix_tree_lookup+0x17a/0x1d0
[ 2489.336821][T31665]  loop_control_ioctl+0x564/0x740
[ 2489.341815][T31665]  ? loop_remove+0xa0/0xa0
[ 2489.346202][T31665]  ? __lru_cache_add+0x1bf/0x210
[ 2489.351105][T31665]  ? memset+0x1f/0x40
[ 2489.355055][T31665]  ? fsnotify+0x1332/0x13f0
[ 2489.359523][T31665]  ? loop_remove+0xa0/0xa0
[ 2489.363914][T31665]  do_vfs_ioctl+0x744/0x1730
[ 2489.368480][T31665]  ? selinux_file_ioctl+0x723/0x970
[ 2489.373650][T31665]  ? ioctl_preallocate+0x250/0x250
[ 2489.378735][T31665]  ? __fget+0x40c/0x4a0
14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3a)

14:09:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 22)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2489.382861][T31665]  ? fget_many+0x20/0x20
[ 2489.387071][T31665]  ? check_preemption_disabled+0x154/0x330
[ 2489.392855][T31665]  ? debug_smp_processor_id+0x20/0x20
[ 2489.398200][T31665]  ? security_file_ioctl+0x9d/0xb0
[ 2489.403279][T31665]  __x64_sys_ioctl+0xd4/0x110
[ 2489.407925][T31665]  do_syscall_64+0xcb/0x1c0
[ 2489.412412][T31665]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x0, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x2, &(0x7f0000000080)='.\x00', &(0x7f0000000540)="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", 0x1000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x240, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r4=>0xffffffffffffffff})
r5 = fsmount(0xffffffffffffffff, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r6, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r5)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r8, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x23c, r8, 0x2, 0x70bd29, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x40000}, {0x6, 0x16, 0x5}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x3ff}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x1397}, {0x6, 0x16, 0x1}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x800}, {0x6, 0x16, 0x9}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x2b}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0xde39}, {0x6, 0x16, 0x6c}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x2}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x2}, {0x6, 0x16, 0x5}, {0x5}}]}, 0x23c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0xfffffffffffffeb7)
openat$cgroup(r2, &(0x7f0000000380)='syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180020000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r9, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2489.437255][T31694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31694 comm=syz-executor.1
[ 2489.455208][T31697] FAULT_INJECTION: forcing a failure.
[ 2489.455208][T31697] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.487156][T31697] CPU: 0 PID: 31697 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2489.497398][T31697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2489.507457][T31697] Call Trace:
[ 2489.510720][T31697]  dump_stack+0x1d8/0x241
[ 2489.515027][T31697]  ? panic+0x73e/0x73e
[ 2489.519067][T31697]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2489.524840][T31697]  should_fail+0x709/0x870
[ 2489.529223][T31697]  ? setup_fault_attr+0x3d0/0x3d0
[ 2489.534218][T31697]  ? blk_mq_poll_stats_fn+0x1b0/0x1b0
[ 2489.539559][T31697]  ? blk_stat_alloc_callback+0x95/0x210
[ 2489.545074][T31697]  should_failslab+0x5/0x20
[ 2489.549543][T31697]  __kmalloc+0x51/0x2b0
[ 2489.553678][T31697]  ? blk_stat_alloc_callback+0x5c/0x210
[ 2489.559189][T31697]  ? blk_mq_poll_stats_fn+0x1b0/0x1b0
[ 2489.564524][T31697]  ? blk_mq_free_tag_set+0x480/0x480
[ 2489.569771][T31697]  blk_stat_alloc_callback+0x95/0x210
[ 2489.575119][T31697]  ? blk_mq_free_tag_set+0x480/0x480
[ 2489.580366][T31697]  ? blk_mq_poll_stats_fn+0x1b0/0x1b0
[ 2489.585709][T31697]  blk_mq_init_allocated_queue+0x86/0x16c0
[ 2489.591495][T31697]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2489.596836][T31697]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2489.602173][T31697]  blk_mq_init_queue+0x48/0xa0
[ 2489.606902][T31697]  loop_add+0x256/0x710
[ 2489.611025][T31697]  ? radix_tree_lookup+0x17a/0x1d0
[ 2489.616105][T31697]  loop_control_ioctl+0x564/0x740
[ 2489.621094][T31697]  ? loop_remove+0xa0/0xa0
[ 2489.625481][T31697]  ? __lru_cache_add+0x1bf/0x210
[ 2489.630383][T31697]  ? memset+0x1f/0x40
[ 2489.634331][T31697]  ? fsnotify+0x1332/0x13f0
[ 2489.638817][T31697]  ? loop_remove+0xa0/0xa0
[ 2489.643332][T31697]  do_vfs_ioctl+0x744/0x1730
[ 2489.647892][T31697]  ? selinux_file_ioctl+0x723/0x970
[ 2489.653070][T31697]  ? ioctl_preallocate+0x250/0x250
[ 2489.658156][T31697]  ? __fget+0x40c/0x4a0
[ 2489.662289][T31697]  ? fget_many+0x20/0x20
[ 2489.666529][T31697]  ? check_preemption_disabled+0x154/0x330
[ 2489.672309][T31697]  ? debug_smp_processor_id+0x20/0x20
[ 2489.677656][T31697]  ? security_file_ioctl+0x9d/0xb0
[ 2489.682744][T31697]  __x64_sys_ioctl+0xd4/0x110
14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3e)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x0, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 23)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x2, &(0x7f0000000080)='.\x00', &(0x7f0000000540)="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", 0x1000) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2489.687396][T31697]  do_syscall_64+0xcb/0x1c0
[ 2489.691877][T31697]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2489.710528][T31713] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31713 comm=syz-executor.1
14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x240, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r4=>0xffffffffffffffff})
r5 = fsmount(0xffffffffffffffff, 0x0, 0x0) (async)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r4) (async, rerun: 64)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r7=>0x0}) (rerun: 64)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r6, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010) (async)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r5)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r8, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x23c, r8, 0x2, 0x70bd29, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x40000}, {0x6, 0x16, 0x5}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x3ff}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x1397}, {0x6, 0x16, 0x1}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x800}, {0x6, 0x16, 0x9}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x2b}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0xde39}, {0x6, 0x16, 0x6c}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x2}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x2}, {0x6, 0x16, 0x5}, {0x5}}]}, 0x23c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0xfffffffffffffeb7)
openat$cgroup(r2, &(0x7f0000000380)='syz0\x00', 0x200002, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180020000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r9, @multicast2}, 0x10) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async, rerun: 32)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2489.737979][T31717] FAULT_INJECTION: forcing a failure.
[ 2489.737979][T31717] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.751245][T31717] CPU: 0 PID: 31717 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2489.761475][T31717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2489.771528][T31717] Call Trace:
[ 2489.774795][T31717]  dump_stack+0x1d8/0x241
[ 2489.779093][T31717]  ? panic+0x73e/0x73e
[ 2489.783127][T31717]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2489.788904][T31717]  should_fail+0x709/0x870
[ 2489.793292][T31717]  ? setup_fault_attr+0x3d0/0x3d0
[ 2489.798282][T31717]  ? blk_mq_init_allocated_queue+0xef/0x16c0
[ 2489.804237][T31717]  should_failslab+0x5/0x20
[ 2489.808726][T31717]  kmem_cache_alloc_trace+0x28/0x240
[ 2489.814002][T31717]  blk_mq_init_allocated_queue+0xef/0x16c0
[ 2489.819799][T31717]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2489.825150][T31717]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2489.830488][T31717]  blk_mq_init_queue+0x48/0xa0
[ 2489.835220][T31717]  loop_add+0x256/0x710
[ 2489.839345][T31717]  ? radix_tree_lookup+0x17a/0x1d0
[ 2489.844424][T31717]  loop_control_ioctl+0x564/0x740
[ 2489.849415][T31717]  ? loop_remove+0xa0/0xa0
[ 2489.853809][T31717]  ? __lru_cache_add+0x1bf/0x210
[ 2489.858715][T31717]  ? memset+0x1f/0x40
[ 2489.862676][T31717]  ? fsnotify+0x1332/0x13f0
[ 2489.867165][T31717]  ? loop_remove+0xa0/0xa0
[ 2489.871564][T31717]  do_vfs_ioctl+0x744/0x1730
[ 2489.876124][T31717]  ? selinux_file_ioctl+0x723/0x970
[ 2489.881288][T31717]  ? ioctl_preallocate+0x250/0x250
14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x42)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf2501000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x43)

14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0x0, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x240, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r4=>0xffffffffffffffff}) (async)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r6, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010) (async)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r5)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r8, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x23c, r8, 0x2, 0x70bd29, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x40000}, {0x6, 0x16, 0x5}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x3ff}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x1397}, {0x6, 0x16, 0x1}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x800}, {0x6, 0x16, 0x9}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x2b}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0xde39}, {0x6, 0x16, 0x6c}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x2}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x2}, {0x6, 0x16, 0x5}, {0x5}}]}, 0x23c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0xfffffffffffffeb7)
openat$cgroup(r2, &(0x7f0000000380)='syz0\x00', 0x200002, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180020000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r9, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x2, &(0x7f0000000080)='.\x00', &(0x7f0000000540)="ec5e0aca835aa43c9f30e17caf89443b0283edd82605c1f71be98e4ccef8fe882fb23a65524f729a06adcf24b8618fffd3c061e515feabdcae71e890fbb876a7fa57dc4712d3156758c17d50cb1b4595109b86501d110a8ffb4955b68451370eac37b6c20c0be6c39eb55e8e806ab13620a959d6ec4b17266e95edfc121c3740bb2c170a26024e765b658ed3cb60959a35c47aa368e196c0c9e347d4a73650417dca8f8f0a16479f1374454aa798cc7d4703e1727382e7778fe25645580899cc02ce0b89bd79772a93b355df9c7b44c54538eeadc5ff214db5552ddb0c39c2a495477e7f8e389a184043398dd9d1c4f84b496dbb07bb099a254a55e9b866a0b5073011924cb5e2680a15bdad5a30491be78bef81e4c8e2f040a757df9c81f45899356185ea3fa4e44be9143d681fbd22598042d214d76965a6636f424e980e025b25f05e13a39412ec50a915a43d677421bf11af1904a63374beb4e93f9cfd5886500f1e6259e2b418ef52a0f2efb448e1b049d130deaf77ce6199e8e038a235e1c1e34a1f498801ce11a08c838c537022da2e25dae502a800849c5d3fd4cf9c3e3616b803a94ea45cdfd3307fe118be8ab317acda9ea937f53435bc26aaaf973703f30a56f5d5f3de3f421897c77b6d61a9a0265dd1210932a013d95b4a98b520070687e5146ca1beed0b331d9bd291bf250bda9a7900bacd9c0d019684fea6f1d1c07cb6b08a80ae51689cd07fa80796ace852991e1162491097b933ed92d4648815359db2ddd7486e8676e9ab9880fc1c997f065a35f366b546dc809415c54e6c42d276074238a81940124e4feb26879eaf5067d687b14f2758076d486b53d22c899509be414664563a647284d7ffdc732836232351fd9ea63b2198f078e4fa1c159c21a379b6249d86524a6f3876f542a7f948ca263773b7a19b44f9344dc7fe2241f9f04d5b6a7dd46778846ae037c48734c90e3949eeb2955781b6efc5f6417623b7c16247ed53c3b626d8e0cf4190d9e0566e1b4489cb3c5535ce07379978b3c728ac477c6fc173df3af1e4ce799baa6e697bd4368406c1b26a6edc505b4eb416f0e219142e13e6b499630145a9d24434ff9d2719630597c1a46a4caad5a135a6cb1049a4159eef343478b2d80d5335db35bfff922c754993afab4f2dc77a9b28b8a1727637a04220ae448c610ebc274a8e7fa16783fe02f978ee05f3579831fb064a3e91c60dd5b338b76452dfc1ae6e5debae81eebb35d7e667dc70353df91276c8079ce6b3e4a4415612d1643dee2a738a091f1a93e0d5ea5872939be6a1ba9ddddd12881dcc46d9ab6d550cd9ad3c469f23c1191f66140376ddf03047e3e98dacc251394152884636ffd1764013a702673830a9873ba3eec80dc19124dbf829df6fe9552a57bfe1883e2912c89e8eac2b5448000b1eb2b3098d23048f53ae18b720311557364094832c670472fb8fb5991a0e4964cf0d5f48fb39489ddd9a29d5910558a51d2e881fd7ad5476c89377ed1a7c4429784b7ecd2dd3df13db1af0a260bd8037a9672e823d0e53d35536a1b85b3f1245a1d9a4acea7d33cf39defa180050b9ec9ad27821f69ba040ebca1a17ac87a15ec708a0ca8cc8dbf5f74b203ac2f7f074311f827ee7d98dcebcff6cabbc6e512d906438561b613da60f6532b5c2b2395aa62e24d67efa314a360890248e2d3ae024398e44ff4082966eb6fa87e687175483d998db75b963587e060cdfa960f87462eb78bf1af9ee8cdc344a7b1e5cce30d98512263f0304381e23c35016e3a0f6c69bb915d506283409977ef986bfc5d57397361de9c5e88cc41dbc51010ee3abafb8f7834922a87a96b25017e107610c1af6e53f183cca227d330944191bd094fb52fd8f567026083df03fbf6a893db808b23c629ba76e8a824496c4d8e5c341ea14d50bd3985d08ea4618bbcd8a53f9fa3b3da6f294507703387c2232635551ad3e3dc5cccb3cd6e6b7db63bcc2269192fc8053a2991c11d02c0a1fcdef6d3908e1cbd2abaf5428f675a0de21f30e944e3ea9c5b82a1d65f09ee4d31d46b03b531e1d29c9d59363453d52cfb6553b0f935cf1f297df013004cba2a809d4434c2b6940744caaf65c6af4cf147b9013dc18a3418a907e37ddb64fbe539b38f0ae05c3dd85badaeaa5f2bb01a0639e006d3d9f47266be2dfd6705037a2baa0df2ce9760d130e1a0ccb7652c97fa33a4f3533f5eef755bf62bb21981a89488b8f9daf09bff301a961a61aa712792e6e452854dcdb3cb96938c496e91c94086a955b6bbcbcca86a037c2389bfbb6f6ed3dfa827e970172d70a58989fdf33c916ee2206598438e03b312d122c0d0e288a097280355e14722041056a5da4f5df01eb9fdc10c9ae2781adf72cc1cf6add4d2716a1366408e1ff83a95e982efc1e3439b06ef3eb9342ebf95644ebb6e423d7324b0ecc4013c46a157e2d5f54ff5657b4021834277dbb73d4f87c250665a0f949756bade8284dd978b35cd79f8b83cdbea34051fa5cecce254742e8058105d49296dd2a995c7fec2420ae82e090ce9d7f24a7cbe34767ee794d8d6ad81d2ad2f46306815282cc71728bd2823173e09bafb220abb509f1434b3fef6c1438e616bc6823c230fef705e180caddf7295ccf650bc40df2b142e19d425c14e3a254cd4008f2a1daa68f6e2cfbe0f5edfcc5d999ecb27a02e0241a52a10be9b6c13b2b220919ec989d74aa5daf611b712729f81f04c57dc5b58499297ff5a91d0e7e1dbaf45119736555960c2f3bc285a74fa18f112b764237a03e076def7753fb86712d33ebab9add289363fd8fc10de8487928df8a4b910cdf0140fb3508c311c17de947ff9988c916d785a5258644d3540d335156367f93d8a2016f28fdb6c17f91620ce2e916b2870a3316e527bc22c8b610e6b5fa536331124f6a5d015196e509ad138198be7b26681f7e192f13e1f16d1e1fcc46f69e2dc3cedd7fa197ac03f477c856613645882820028faebfb070d6c5c12c0148ead8e1abd43bcb7e5ac85c3da2ab0b345e9322b80e9293b79e4333fa297fffb5e8c09c3aa24da9759036140fcce2a17157a087d574392572ff4dcac9d212d8df9a46d650785674949f956f2174e1a0b97e1ebd5dbf69123e2579137825b00de3fa058c5944ca36797b958d9b1290c278b40fab979f0ccfaa1d117494348c6fe37a1859c175299dcf357351eba815e95f042d2106aa59d9fda312ac1cc558c847af4bc3cfb166f5f121217c24d488bb3f60925b4b600757f9d4f5b842d000cd7d599d816178029b0be0f9fa021fb2f60d18cd46917ccab200a8ed9a0cc647a8167aeefa619ba31f95b3db3ae28acdb56f4477a6762bb41f2d1a79c298b81950be2214ad6f63eb9430c484036da2ecc65dc7d6fd025a561b5b4cf84780e46e8f529c4c0d7045786ab0e170379600abd182825a33270c257e1c552be6c72f7797ab629bebc6c5e04e5e58160932ed9442d6d6a028561b564d9df16ffb7be582d451fc60bb00b9d44cb592f3b91c6bc78ab372683287393ab8333e552e794e8c93a39ccf624ca288c391e648347dad21250c5825760922919bc5f92e9356b125da9ee49d56a0fc5476e87cc0cca06edecc2d9c4557f30a74ec9c41c2b18e4f4acaf3df9f9ac83bd85a527f4623ec2d7c9aaaa5ec007ef0390f84545922da8c6b4403ed1a0e42c6858ec3c126d7e20b5fcf722c5273a08722e7f3e9c10f8c39c14d4847e679159f286ae0adacdcce7aa22f02452c48c4548aa7b7f87a95ea239c3f2a8fda2568605ba8b14156a65a027d2d0a79046c8b89748c4ca24f8f576347a16fb0452810a7aebd2a2049a3ae1d91aedd338bbcee55739ffecf2fdccb5feedc2cafb84cfd92e6d4a8664dac9d26f1b732e51e18c9934d8bebf8c5ede39b6b7d73740fa3d5d5e2af486a5364fb5beffeea4324a5d686c8fac3deb01206908500bf532f76ee5f96263a5a6950073751df59bda2fb160a0e929c619039f2517cc2c633299e9cbe41ee6832ce5ec31e12c37e038a3639d50a837764f4da58789d6014c3ffad76a88e0945f7a545caef76cb48300e21b89ba08332d66e439c3ad4a67ebdf02125067c13091566e5e314f500aedba332da1df6223fd666eeaccf482088a0c68dc0c6f09688b1f27db49d1aaa58f7d56ca233125c519fdc626ca2ab93a7f97366072fa90a4028dd31192518b7e6e657bc53c5c6dcd7a4e2e25cc76d50d0f1e1fa1fd9eaa36483d39d7eb7264ca403adbaa653ad4121a0adce910cb544537ff38e5e42fdfd6d5b305bee8e6ceeffcda736b0fb53ff0474501a9473f29a61862feb6ab6d42752d9e7e3ff9ad25cd7607c859144ad3417aa56e4358a0ba3dbba79a2b5ea57c3248f1baca5b9dc2f342f65b1d7d676752cbd6147ac50b2b55f4d65d6d9c1989b69c0987288799daab8393908d008435302748afbf6f0ca15afe687af1d0d1188fff2a30eb17b060143c415e32c9af31955ccc6f4342edee8df4d766b6db27748a185f9521c2969f2c575a1457ef9d674eae2d3cc091fe11d987306183227c1d61e7776be6ecb711dc0f96d14ee29179df30137696bdb7261fecd606d5b7c30a7898480b15cfef77095fc39a54fa981a19bdf18bdc11bf750db7f28161a02fc5f83784608d00f39c0bd58eb7f18d3cf4aa0bcea88bf3530db9f45f6b8dd5eb87e1f4e18fe372621cfceec421d41de56d3f681b5b242ed77ff0c8fac7a177719559a6456f40b27413e88f9d34335027642bcea7dfe4811364fa443d23b86ba86bfdf80225ca39c4e9df984f23b5da1bc5c7919d29e020e795dfee8b02867662e7dae6cc4923348cf24d252e19dba2c9faee9902c95602d3dcc356d63b1a16d885b4b232a891246f15ceb6a83af417835efac966051cab9897eb6c52317ed0d021c6c90279ebc80ea2a4da794bfb3d3aaf3ad8cba13f84271f0dbb11b931b6a3d20b25ae61b7d60db203da1ff3a8a519e6f7eef722d80a41e80115c8afa6c3f3f09538e5ccd5adbc64f48b1ebca492d5f4dff5fdab2ab7ba3e0ba31bef2aec1dd10727dee04add7ec17c2f601497da43a9023023074c6a576f1c1afe761f62b82ba56c91f3469683a1c02b94953cdc5b93bf54833e800c16b94bd7c87318633ffe39eec466b8db4ff361d4b7a8236dab98a33309ab6cf9637af23296f5df231c80e3561fcd139d46a51bd7b6d416d159a46280450fa1c3febaade4bf5968811f0c43d043cd24f3c5d72fb9b1e3b8818e2b519ad6bd7d9c4fc51aa50415c71da139faf4508e9ca686442b7f0cdf31f30600590f78c1e8e86959a10d556b1ccc55baae6519b6b8fff44b5b5f094472d0e8492ed784e1a4a5b48bb6eb30d6ced029a40f577428e56ea97e4f5b2a108f442b32aeb265b66ec3cf85ec24ec91ef20a037dc5751d487e1c9964da2845ad1cc55ed111a9e659e01f38ebe423635dc5ae4cc414a4b38d73bd160ceefb55360b77cd1e9a6f87e04f61b9169b2bcf6455ca253cb33c5004f8398229eca9fb9f05557e9fa0897405a1bd909e7b130358e0ee59d9d94b2fd2dcf166059c6546b03b4905bf90eb143fbfb0d477e069f585b8876a34ab7ff95c215d7d74a4b28f2b98fe53acaebb0384e3868b01b6ced6a5f60ed7c1353b090f732861f5d69d8c9efe2d368db882e30af744c5622a6818355a4eae0f715589bf665eab68edf27310de6b73453a13e7fb99cdcc792218a236b4b669d0b6180261613cb83426f1624ee522f247d656c90c48df684ea919c98e", 0x1000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x2, &(0x7f0000000080)='.\x00', &(0x7f0000000540)="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", 0x1000) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2489.886366][T31717]  ? __fget+0x40c/0x4a0
[ 2489.890496][T31717]  ? fget_many+0x20/0x20
[ 2489.894706][T31717]  ? check_preemption_disabled+0x154/0x330
[ 2489.900479][T31717]  ? debug_smp_processor_id+0x20/0x20
[ 2489.905825][T31717]  ? security_file_ioctl+0x9d/0xb0
[ 2489.910912][T31717]  __x64_sys_ioctl+0xd4/0x110
[ 2489.915564][T31717]  do_syscall_64+0xcb/0x1c0
[ 2489.920043][T31717]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 24)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000008500000002000000950000f0ffff3f40950000000000d200"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x48)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf2501000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf2501000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x49)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000008500000002000000950000f0ffff3f40950000000000d200"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000008500000002000000950000f0ffff3f40950000000000d200"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2490.019079][T31771] FAULT_INJECTION: forcing a failure.
[ 2490.019079][T31771] name failslab, interval 1, probability 0, space 0, times 0
[ 2490.033093][T31771] CPU: 1 PID: 31771 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2490.043321][T31771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2490.053350][T31771] Call Trace:
[ 2490.056617][T31771]  dump_stack+0x1d8/0x241
[ 2490.060930][T31771]  ? panic+0x73e/0x73e
[ 2490.064966][T31771]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2490.070750][T31771]  ? pcpu_alloc_area+0x696/0x790
[ 2490.075669][T31771]  should_fail+0x709/0x870
[ 2490.080072][T31771]  ? setup_fault_attr+0x3d0/0x3d0
[ 2490.085068][T31771]  ? find_next_bit+0xc6/0x110
[ 2490.089722][T31771]  ? cpumask_next+0xc/0x20
[ 2490.094126][T31771]  ? kobject_init+0x7d/0x1d0
[ 2490.098690][T31771]  ? find_next_bit+0xc6/0x110
[ 2490.103341][T31771]  ? blk_mq_init_allocated_queue+0x427/0x16c0
[ 2490.109388][T31771]  should_failslab+0x5/0x20
[ 2490.113870][T31771]  __kmalloc+0x51/0x2b0
14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r1 = fsopen(0x0, 0x0) (rerun: 32)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7) (rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000000008500000002000000950000f0ffff3f40950000000000d200"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 64)

[ 2490.118001][T31771]  blk_mq_init_allocated_queue+0x427/0x16c0
[ 2490.123873][T31771]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2490.129226][T31771]  ? blk_mq_alloc_tag_set+0x68b/0x890
[ 2490.134564][T31771]  blk_mq_init_queue+0x48/0xa0
[ 2490.139304][T31771]  loop_add+0x256/0x710
[ 2490.143439][T31771]  ? radix_tree_lookup+0x17a/0x1d0
[ 2490.148538][T31771]  loop_control_ioctl+0x564/0x740
[ 2490.153552][T31771]  ? loop_remove+0xa0/0xa0
[ 2490.157957][T31771]  ? __lru_cache_add+0x1bf/0x210
[ 2490.162889][T31771]  ? memset+0x1f/0x40
[ 2490.166861][T31771]  ? fsnotify+0x1332/0x13f0
[ 2490.171353][T31771]  ? loop_remove+0xa0/0xa0
[ 2490.175757][T31771]  do_vfs_ioctl+0x744/0x1730
[ 2490.180337][T31771]  ? selinux_file_ioctl+0x723/0x970
[ 2490.185522][T31771]  ? ioctl_preallocate+0x250/0x250
[ 2490.190609][T31771]  ? __fget+0x40c/0x4a0
[ 2490.194733][T31771]  ? fget_many+0x20/0x20
[ 2490.198946][T31771]  ? check_preemption_disabled+0x154/0x330
[ 2490.204721][T31771]  ? debug_smp_processor_id+0x20/0x20
[ 2490.210177][T31771]  ? security_file_ioctl+0x9d/0xb0
[ 2490.215254][T31771]  __x64_sys_ioctl+0xd4/0x110
14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000040)='memory.numa_stat\x00', 0x0, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 25)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4a)

14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:28 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2490.219907][T31771]  do_syscall_64+0xcb/0x1c0
[ 2490.224387][T31771]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:28 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4c)

14:09:28 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
socket$igmp(0x2, 0x3, 0x2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

14:09:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
openat$cgroup_ro(r1, &(0x7f0000000040)='memory.numa_stat\x00', 0x0, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2490.284563][T31828] FAULT_INJECTION: forcing a failure.
[ 2490.284563][T31828] name failslab, interval 1, probability 0, space 0, times 0
[ 2490.298157][T31828] CPU: 1 PID: 31828 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2490.308392][T31828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2490.318434][T31828] Call Trace:
[ 2490.321720][T31828]  dump_stack+0x1d8/0x241
[ 2490.326034][T31828]  ? panic+0x73e/0x73e
[ 2490.330082][T31828]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2490.335869][T31828]  should_fail+0x709/0x870
[ 2490.340259][T31828]  ? blk_mq_init_queue+0x48/0xa0
[ 2490.345166][T31828]  ? loop_add+0x256/0x710
[ 2490.349465][T31828]  ? __x64_sys_ioctl+0xd4/0x110
[ 2490.354286][T31828]  ? setup_fault_attr+0x3d0/0x3d0
[ 2490.359284][T31828]  ? _raw_spin_lock+0xa3/0x1b0
[ 2490.364022][T31828]  ? blk_mq_realloc_hw_ctxs+0x3b9/0x1450
[ 2490.369623][T31828]  should_failslab+0x5/0x20
[ 2490.374094][T31828]  __kmalloc+0x51/0x2b0
[ 2490.378224][T31828]  ? blk_mq_hw_queue_to_node+0xeb/0x100
[ 2490.383749][T31828]  blk_mq_realloc_hw_ctxs+0x3b9/0x1450
[ 2490.389195][T31828]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 2490.395062][T31828]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2490.400409][T31828]  blk_mq_init_queue+0x48/0xa0
[ 2490.405154][T31828]  loop_add+0x256/0x710
[ 2490.409287][T31828]  ? radix_tree_lookup+0x17a/0x1d0
[ 2490.414632][T31828]  loop_control_ioctl+0x564/0x740
[ 2490.419627][T31828]  ? loop_remove+0xa0/0xa0
[ 2490.424011][T31828]  ? __lru_cache_add+0x1bf/0x210
[ 2490.428917][T31828]  ? memset+0x1f/0x40
[ 2490.432871][T31828]  ? fsnotify+0x1332/0x13f0
[ 2490.437345][T31828]  ? loop_remove+0xa0/0xa0
[ 2490.441734][T31828]  do_vfs_ioctl+0x744/0x1730
[ 2490.446406][T31828]  ? selinux_file_ioctl+0x723/0x970
[ 2490.451581][T31828]  ? ioctl_preallocate+0x250/0x250
[ 2490.456664][T31828]  ? __fget+0x40c/0x4a0
[ 2490.460813][T31828]  ? fget_many+0x20/0x20
[ 2490.465033][T31828]  ? check_preemption_disabled+0x154/0x330
[ 2490.470814][T31828]  ? debug_smp_processor_id+0x20/0x20
[ 2490.476160][T31828]  ? security_file_ioctl+0x9d/0xb0
14:09:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
socket$igmp(0x2, 0x3, 0x2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
socket$igmp(0x2, 0x3, 0x2) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (async)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4e)

14:09:29 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 26)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000040)='memory.numa_stat\x00', 0x0, 0x0) (async, rerun: 64)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 64)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 64)
r2 = fsopen(0x0, 0x0) (rerun: 64)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4f)

14:09:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
r2 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2490.481246][T31828]  __x64_sys_ioctl+0xd4/0x110
[ 2490.485905][T31828]  do_syscall_64+0xcb/0x1c0
[ 2490.490379][T31828]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x50)

14:09:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async, rerun: 32)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (rerun: 32)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (rerun: 64)
socket$igmp(0x2, 0x3, 0x2) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async, rerun: 64)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) (rerun: 64)

[ 2490.546959][T31857] FAULT_INJECTION: forcing a failure.
[ 2490.546959][T31857] name failslab, interval 1, probability 0, space 0, times 0
[ 2490.561907][T31857] CPU: 1 PID: 31857 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2490.572149][T31857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2490.582192][T31857] Call Trace:
[ 2490.585473][T31857]  dump_stack+0x1d8/0x241
[ 2490.589786][T31857]  ? panic+0x73e/0x73e
[ 2490.593826][T31857]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2490.599609][T31857]  should_fail+0x709/0x870
[ 2490.604004][T31857]  ? setup_fault_attr+0x3d0/0x3d0
[ 2490.609002][T31857]  ? blk_mq_realloc_hw_ctxs+0x68a/0x1450
[ 2490.614688][T31857]  should_failslab+0x5/0x20
[ 2490.619163][T31857]  __kmalloc+0x51/0x2b0
[ 2490.623309][T31857]  ? init_timer_key+0x23/0x1c0
[ 2490.628049][T31857]  blk_mq_realloc_hw_ctxs+0x68a/0x1450
[ 2490.633480][T31857]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 2490.639525][T31857]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2490.644875][T31857]  blk_mq_init_queue+0x48/0xa0
[ 2490.649618][T31857]  loop_add+0x256/0x710
[ 2490.653756][T31857]  ? radix_tree_lookup+0x17a/0x1d0
[ 2490.658844][T31857]  loop_control_ioctl+0x564/0x740
[ 2490.663842][T31857]  ? loop_remove+0xa0/0xa0
[ 2490.668226][T31857]  ? __lru_cache_add+0x1bf/0x210
[ 2490.673132][T31857]  ? memset+0x1f/0x40
[ 2490.677093][T31857]  ? fsnotify+0x1332/0x13f0
[ 2490.681580][T31857]  ? loop_remove+0xa0/0xa0
[ 2490.685989][T31857]  do_vfs_ioctl+0x744/0x1730
[ 2490.690568][T31857]  ? selinux_file_ioctl+0x723/0x970
14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xa)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x51)

14:09:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000380)=0x3, 0x4)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
r2 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2490.695754][T31857]  ? ioctl_preallocate+0x250/0x250
[ 2490.700846][T31857]  ? __fget+0x40c/0x4a0
[ 2490.704979][T31857]  ? fget_many+0x20/0x20
[ 2490.709191][T31857]  ? check_preemption_disabled+0x154/0x330
[ 2490.715016][T31857]  ? debug_smp_processor_id+0x20/0x20
[ 2490.720360][T31857]  ? security_file_ioctl+0x9d/0xb0
[ 2490.725442][T31857]  __x64_sys_ioctl+0xd4/0x110
[ 2490.730093][T31857]  do_syscall_64+0xcb/0x1c0
[ 2490.734566][T31857]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:29 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 27)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x52)

14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xa)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x54)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x55)

14:09:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
r2 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2490.802401][T31906] FAULT_INJECTION: forcing a failure.
[ 2490.802401][T31906] name failslab, interval 1, probability 0, space 0, times 0
[ 2490.815904][T31906] CPU: 1 PID: 31906 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2490.826134][T31906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2490.836163][T31906] Call Trace:
[ 2490.839426][T31906]  dump_stack+0x1d8/0x241
[ 2490.843726][T31906]  ? panic+0x73e/0x73e
[ 2490.847765][T31906]  ? blk_mq_realloc_hw_ctxs+0x68a/0x1450
[ 2490.853371][T31906]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2490.859158][T31906]  ? loop_control_ioctl+0x564/0x740
[ 2490.864847][T31906]  ? __x64_sys_ioctl+0xd4/0x110
[ 2490.869673][T31906]  ? do_syscall_64+0xcb/0x1c0
[ 2490.874320][T31906]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2490.880373][T31906]  should_fail+0x709/0x870
[ 2490.884772][T31906]  ? setup_fault_attr+0x3d0/0x3d0
[ 2490.889767][T31906]  ? sbitmap_init_node+0x14e/0x3a0
[ 2490.894846][T31906]  should_failslab+0x5/0x20
[ 2490.899323][T31906]  __kmalloc+0x51/0x2b0
[ 2490.903449][T31906]  sbitmap_init_node+0x14e/0x3a0
[ 2490.908356][T31906]  blk_mq_realloc_hw_ctxs+0x6f0/0x1450
[ 2490.913791][T31906]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 2490.919652][T31906]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2490.925009][T31906]  blk_mq_init_queue+0x48/0xa0
[ 2490.929751][T31906]  loop_add+0x256/0x710
[ 2490.933877][T31906]  ? radix_tree_lookup+0x17a/0x1d0
[ 2490.938962][T31906]  loop_control_ioctl+0x564/0x740
[ 2490.943960][T31906]  ? loop_remove+0xa0/0xa0
[ 2490.948343][T31906]  ? __lru_cache_add+0x1bf/0x210
[ 2490.953249][T31906]  ? memset+0x1f/0x40
[ 2490.957200][T31906]  ? fsnotify+0x1332/0x13f0
[ 2490.961673][T31906]  ? loop_remove+0xa0/0xa0
[ 2490.966058][T31906]  do_vfs_ioctl+0x744/0x1730
[ 2490.970616][T31906]  ? selinux_file_ioctl+0x723/0x970
[ 2490.975781][T31906]  ? ioctl_preallocate+0x250/0x250
[ 2490.980863][T31906]  ? __fget+0x40c/0x4a0
[ 2490.984990][T31906]  ? fget_many+0x20/0x20
[ 2490.989201][T31906]  ? check_preemption_disabled+0x154/0x330
[ 2490.994974][T31906]  ? debug_smp_processor_id+0x20/0x20
14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xa)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xa) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async, rerun: 32)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000380)=0x3, 0x4)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x56)

14:09:29 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 28)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2491.000314][T31906]  ? security_file_ioctl+0x9d/0xb0
[ 2491.005394][T31906]  __x64_sys_ioctl+0xd4/0x110
[ 2491.010039][T31906]  do_syscall_64+0xcb/0x1c0
[ 2491.014520][T31906]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c800}, 0x4000000)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, 0x0, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x58)

[ 2491.082018][T31944] FAULT_INJECTION: forcing a failure.
[ 2491.082018][T31944] name failslab, interval 1, probability 0, space 0, times 0
[ 2491.096698][T31944] CPU: 1 PID: 31944 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2491.106935][T31944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2491.116969][T31944] Call Trace:
[ 2491.120232][T31944]  dump_stack+0x1d8/0x241
[ 2491.124535][T31944]  ? panic+0x73e/0x73e
[ 2491.128577][T31944]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2491.134371][T31944]  should_fail+0x709/0x870
[ 2491.138758][T31944]  ? setup_fault_attr+0x3d0/0x3d0
[ 2491.143757][T31944]  ? blk_alloc_flush_queue+0x70/0x230
[ 2491.149101][T31944]  should_failslab+0x5/0x20
[ 2491.153578][T31944]  kmem_cache_alloc_trace+0x28/0x240
[ 2491.158833][T31944]  blk_alloc_flush_queue+0x70/0x230
[ 2491.164003][T31944]  blk_mq_realloc_hw_ctxs+0x8b5/0x1450
[ 2491.169432][T31944]  blk_mq_init_allocated_queue+0x4d6/0x16c0
[ 2491.175294][T31944]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2491.180641][T31944]  blk_mq_init_queue+0x48/0xa0
[ 2491.185384][T31944]  loop_add+0x256/0x710
[ 2491.189510][T31944]  ? radix_tree_lookup+0x17a/0x1d0
[ 2491.194589][T31944]  loop_control_ioctl+0x564/0x740
[ 2491.199585][T31944]  ? loop_remove+0xa0/0xa0
[ 2491.203978][T31944]  ? __lru_cache_add+0x1bf/0x210
[ 2491.208922][T31944]  ? memset+0x1f/0x40
[ 2491.212887][T31944]  ? fsnotify+0x1332/0x13f0
[ 2491.217369][T31944]  ? loop_remove+0xa0/0xa0
[ 2491.221759][T31944]  do_vfs_ioctl+0x744/0x1730
[ 2491.226320][T31944]  ? selinux_file_ioctl+0x723/0x970
14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x59)

14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000380)=0x3, 0x4) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7) (async)
getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c800}, 0x4000000)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c800}, 0x4000000) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000480)}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x5a)

[ 2491.231496][T31944]  ? ioctl_preallocate+0x250/0x250
[ 2491.236578][T31944]  ? __fget+0x40c/0x4a0
[ 2491.240722][T31944]  ? fget_many+0x20/0x20
[ 2491.244943][T31944]  ? check_preemption_disabled+0x154/0x330
[ 2491.250737][T31944]  ? debug_smp_processor_id+0x20/0x20
[ 2491.256085][T31944]  ? security_file_ioctl+0x9d/0xb0
[ 2491.261169][T31944]  __x64_sys_ioctl+0xd4/0x110
[ 2491.265821][T31944]  do_syscall_64+0xcb/0x1c0
[ 2491.270366][T31944]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, 0x0, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 29)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x5c)

14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, 0x0, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x5e)

14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c800}, 0x4000000)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c800}, 0x4000000) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000480)}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2491.349775][T31987] FAULT_INJECTION: forcing a failure.
[ 2491.349775][T31987] name failslab, interval 1, probability 0, space 0, times 0
[ 2491.363690][T31987] CPU: 1 PID: 31987 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2491.373937][T31987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2491.383969][T31987] Call Trace:
[ 2491.387237][T31987]  dump_stack+0x1d8/0x241
[ 2491.391536][T31987]  ? panic+0x73e/0x73e
[ 2491.395577][T31987]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2491.401354][T31987]  should_fail+0x709/0x870
[ 2491.405741][T31987]  ? setup_fault_attr+0x3d0/0x3d0
[ 2491.410735][T31987]  ? blk_alloc_flush_queue+0xd0/0x230
[ 2491.416085][T31987]  should_failslab+0x5/0x20
[ 2491.420564][T31987]  __kmalloc+0x51/0x2b0
[ 2491.424691][T31987]  ? blk_alloc_flush_queue+0x70/0x230
[ 2491.430033][T31987]  blk_alloc_flush_queue+0xd0/0x230
[ 2491.435199][T31987]  blk_mq_realloc_hw_ctxs+0x8b5/0x1450
[ 2491.440633][T31987]  blk_mq_init_allocated_queue+0x4d6/0x16c0
14:09:30 executing program 4:
fsopen(&(0x7f0000000100)='minix\x00', 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x12)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2491.446499][T31987]  ? blk_alloc_queue_node+0x4e7/0x580
[ 2491.451842][T31987]  blk_mq_init_queue+0x48/0xa0
[ 2491.456575][T31987]  loop_add+0x256/0x710
[ 2491.460704][T31987]  ? radix_tree_lookup+0x17a/0x1d0
[ 2491.465783][T31987]  loop_control_ioctl+0x564/0x740
[ 2491.470791][T31987]  ? loop_remove+0xa0/0xa0
[ 2491.475194][T31987]  ? __lru_cache_add+0x1bf/0x210
[ 2491.480115][T31987]  ? memset+0x1f/0x40
[ 2491.484091][T31987]  ? fsnotify+0x1332/0x13f0
[ 2491.488580][T31987]  ? loop_remove+0xa0/0xa0
[ 2491.492972][T31987]  do_vfs_ioctl+0x744/0x1730
14:09:30 executing program 3:
r0 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x13ff)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xa)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r3 = fsopen(&(0x7f0000000440)='devpts\x00', 0x1)
r4 = fsmount(r3, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000020000001842000005000000000000000010000018450000fdffffff000000000000852000000200000095000000000007009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r8, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="040026bd7000fedbdf25130000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003000100000008000b00d10c00000600110000800000"], 0x4c}}, 0x44000)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902)
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x6)

14:09:30 executing program 4:
fsopen(&(0x7f0000000100)='minix\x00', 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x12) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 30)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:30 executing program 3:
r0 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x13ff) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xa)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r3 = fsopen(&(0x7f0000000440)='devpts\x00', 0x1)
r4 = fsmount(r3, 0x1, 0x6) (async)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000020000001842000005000000000000000010000018450000fdffffff000000000000852000000200000095000000000007009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r8, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="040026bd7000fedbdf25130000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003000100000008000b00d10c00000600110000800000"], 0x4c}}, 0x44000)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902) (async)
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x6)

[ 2491.497533][T31987]  ? selinux_file_ioctl+0x723/0x970
[ 2491.502742][T31987]  ? ioctl_preallocate+0x250/0x250
[ 2491.507825][T31987]  ? __fget+0x40c/0x4a0
[ 2491.511954][T31987]  ? fget_many+0x20/0x20
[ 2491.516178][T31987]  ? check_preemption_disabled+0x154/0x330
[ 2491.521954][T31987]  ? debug_smp_processor_id+0x20/0x20
[ 2491.527305][T31987]  ? security_file_ioctl+0x9d/0xb0
[ 2491.532393][T31987]  __x64_sys_ioctl+0xd4/0x110
[ 2491.537052][T31987]  do_syscall_64+0xcb/0x1c0
[ 2491.541534][T31987]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f0002000100000005000500040000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 4:
fsopen(&(0x7f0000000100)='minix\x00', 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x12)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
fsopen(&(0x7f0000000100)='minix\x00', 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
socket$netlink(0x10, 0x3, 0x12) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2491.600404][T32032] FAULT_INJECTION: forcing a failure.
[ 2491.600404][T32032] name failslab, interval 1, probability 0, space 0, times 0
[ 2491.613110][T32032] CPU: 1 PID: 32032 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2491.623326][T32032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2491.633357][T32032] Call Trace:
[ 2491.636622][T32032]  dump_stack+0x1d8/0x241
[ 2491.640924][T32032]  ? panic+0x73e/0x73e
[ 2491.644974][T32032]  ? find_next_and_bit+0x17b/0x1a0
[ 2491.650059][T32032]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2491.655945][T32032]  ? blk_mq_map_swqueue+0x16f6/0x1850
[ 2491.661384][T32032]  should_fail+0x709/0x870
[ 2491.665773][T32032]  ? setup_fault_attr+0x3d0/0x3d0
[ 2491.670777][T32032]  ? blk_mq_init_allocated_queue+0x1416/0x16c0
[ 2491.676929][T32032]  ? __alloc_disk_node+0x72/0x380
[ 2491.681948][T32032]  should_failslab+0x5/0x20
[ 2491.686420][T32032]  kmem_cache_alloc_trace+0x28/0x240
[ 2491.691676][T32032]  __alloc_disk_node+0x72/0x380
[ 2491.696495][T32032]  loop_add+0x323/0x710
[ 2491.700634][T32032]  loop_control_ioctl+0x564/0x740
[ 2491.705663][T32032]  ? loop_remove+0xa0/0xa0
[ 2491.710072][T32032]  ? __lru_cache_add+0x1bf/0x210
[ 2491.715012][T32032]  ? memset+0x1f/0x40
[ 2491.718976][T32032]  ? fsnotify+0x1332/0x13f0
[ 2491.723477][T32032]  ? loop_remove+0xa0/0xa0
[ 2491.727875][T32032]  do_vfs_ioctl+0x744/0x1730
[ 2491.732437][T32032]  ? selinux_file_ioctl+0x723/0x970
[ 2491.737602][T32032]  ? ioctl_preallocate+0x250/0x250
[ 2491.742683][T32032]  ? __fget+0x40c/0x4a0
[ 2491.746812][T32032]  ? fget_many+0x20/0x20
14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x60)

14:09:30 executing program 3:
r0 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x13ff) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xa) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r3 = fsopen(&(0x7f0000000440)='devpts\x00', 0x1)
r4 = fsmount(r3, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000020000001842000005000000000000000010000018450000fdffffff000000000000852000000200000095000000000007009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r8, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="040026bd7000fedbdf25130000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003000100000008000b00d10c00000600110000800000"], 0x4c}}, 0x44000) (async)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902)
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x6)

14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000540)={0x3, 0x1})
r3 = fsopen(0x0, 0x0)
fsmount(r3, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
pipe2$watch_queue(&(0x7f0000000580), 0x80)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r2, 0xfffffffffffffeed, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xffe9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000734ae3fea60100000000000000000018450000fdffffff010000000000bf2c852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000440)={r1, 0x58, &(0x7f00000003c0)}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)=""/177, &(0x7f0000000240)=""/23, &(0x7f0000000280)=""/247, 0x100000})
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f0002000100000005000500040000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 31)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x64)

[ 2491.751034][T32032]  ? check_preemption_disabled+0x154/0x330
[ 2491.756826][T32032]  ? debug_smp_processor_id+0x20/0x20
[ 2491.762176][T32032]  ? security_file_ioctl+0x9d/0xb0
[ 2491.767429][T32032]  __x64_sys_ioctl+0xd4/0x110
[ 2491.772075][T32032]  do_syscall_64+0xcb/0x1c0
[ 2491.776548][T32032]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000540)={0x3, 0x1}) (async)
r3 = fsopen(0x0, 0x0)
fsmount(r3, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
pipe2$watch_queue(&(0x7f0000000580), 0x80) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0) (async)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r2, 0xfffffffffffffeed, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xffe9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000734ae3fea60100000000000000000018450000fdffffff010000000000bf2c852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000440)={r1, 0x58, &(0x7f00000003c0)}, 0x10) (async)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)=""/177, &(0x7f0000000240)=""/23, &(0x7f0000000280)=""/247, 0x100000}) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r1 = syz_open_dev$mouse(0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
read$hidraw(r2, &(0x7f0000000300)=""/207, 0xcf)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
socket$pppl2tp(0x18, 0x1, 0x1)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2491.824620][T32076] FAULT_INJECTION: forcing a failure.
[ 2491.824620][T32076] name failslab, interval 1, probability 0, space 0, times 0
[ 2491.841075][T32076] CPU: 1 PID: 32076 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2491.851308][T32076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2491.861342][T32076] Call Trace:
[ 2491.864614][T32076]  dump_stack+0x1d8/0x241
[ 2491.868929][T32076]  ? panic+0x73e/0x73e
[ 2491.872970][T32076]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2491.878755][T32076]  ? pcpu_chunk_relocate+0xe5/0x3a0
[ 2491.883942][T32076]  should_fail+0x709/0x870
[ 2491.888333][T32076]  ? setup_fault_attr+0x3d0/0x3d0
[ 2491.893329][T32076]  ? find_next_bit+0xc6/0x110
[ 2491.898007][T32076]  ? cpumask_next+0xc/0x20
[ 2491.902399][T32076]  ? disk_expand_part_tbl+0x195/0x3b0
[ 2491.907738][T32076]  should_failslab+0x5/0x20
[ 2491.912213][T32076]  __kmalloc+0x51/0x2b0
[ 2491.916338][T32076]  disk_expand_part_tbl+0x195/0x3b0
[ 2491.921511][T32076]  __alloc_disk_node+0x10b/0x380
[ 2491.926425][T32076]  loop_add+0x323/0x710
[ 2491.930560][T32076]  loop_control_ioctl+0x564/0x740
[ 2491.935554][T32076]  ? loop_remove+0xa0/0xa0
[ 2491.939938][T32076]  ? __lru_cache_add+0x1bf/0x210
[ 2491.944853][T32076]  ? memset+0x1f/0x40
[ 2491.948820][T32076]  ? fsnotify+0x1332/0x13f0
[ 2491.953297][T32076]  ? loop_remove+0xa0/0xa0
[ 2491.957768][T32076]  do_vfs_ioctl+0x744/0x1730
[ 2491.962332][T32076]  ? selinux_file_ioctl+0x723/0x970
[ 2491.967501][T32076]  ? ioctl_preallocate+0x250/0x250
14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000540)={0x3, 0x1}) (async)
r3 = fsopen(0x0, 0x0)
fsmount(r3, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
pipe2$watch_queue(&(0x7f0000000580), 0x80) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0) (async)
ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r2, 0xfffffffffffffeed, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xffe9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000734ae3fea60100000000000000000018450000fdffffff010000000000bf2c852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000440)={r1, 0x58, &(0x7f00000003c0)}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)=""/177, &(0x7f0000000240)=""/23, &(0x7f0000000280)=""/247, 0x100000}) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x65)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f0002000100000005000500040000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:30 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
r1 = syz_open_dev$mouse(0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
read$hidraw(r2, &(0x7f0000000300)=""/207, 0xcf)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r1) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x66)

14:09:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 32)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2491.972583][T32076]  ? __fget+0x40c/0x4a0
[ 2491.976715][T32076]  ? fget_many+0x20/0x20
[ 2491.980931][T32076]  ? check_preemption_disabled+0x154/0x330
[ 2491.986704][T32076]  ? debug_smp_processor_id+0x20/0x20
[ 2491.992042][T32076]  ? security_file_ioctl+0x9d/0xb0
[ 2491.997119][T32076]  __x64_sys_ioctl+0xd4/0x110
[ 2492.001765][T32076]  do_syscall_64+0xcb/0x1c0
[ 2492.006240][T32076]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
r4 = fsmount(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r5, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r4)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r7, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r7, 0x100, 0x70bd29, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x7}, {0x8, 0x13, 0x7f}, {0x5}}]}, 0x54}, 0x1, 0x0, 0x0, 0x81}, 0x40010)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x68)

[ 2492.066724][T32116] FAULT_INJECTION: forcing a failure.
[ 2492.066724][T32116] name failslab, interval 1, probability 0, space 0, times 0
[ 2492.079845][T32116] CPU: 0 PID: 32116 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2492.090056][T32116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2492.100084][T32116] Call Trace:
[ 2492.103349][T32116]  dump_stack+0x1d8/0x241
[ 2492.107651][T32116]  ? panic+0x73e/0x73e
[ 2492.111693][T32116]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2492.117472][T32116]  ? pcpu_alloc_area+0x696/0x790
[ 2492.122415][T32116]  should_fail+0x709/0x870
[ 2492.126808][T32116]  ? setup_fault_attr+0x3d0/0x3d0
[ 2492.131810][T32116]  ? rand_initialize_disk+0x4b/0xa3
[ 2492.136979][T32116]  should_failslab+0x5/0x20
[ 2492.141451][T32116]  kmem_cache_alloc_trace+0x28/0x240
[ 2492.146710][T32116]  rand_initialize_disk+0x4b/0xa3
[ 2492.151700][T32116]  __alloc_disk_node+0x2cd/0x380
[ 2492.156606][T32116]  loop_add+0x323/0x710
[ 2492.160728][T32116]  loop_control_ioctl+0x564/0x740
[ 2492.165721][T32116]  ? loop_remove+0xa0/0xa0
[ 2492.170106][T32116]  ? __lru_cache_add+0x1bf/0x210
[ 2492.175018][T32116]  ? memset+0x1f/0x40
[ 2492.178978][T32116]  ? fsnotify+0x1332/0x13f0
[ 2492.183476][T32116]  ? loop_remove+0xa0/0xa0
[ 2492.187867][T32116]  do_vfs_ioctl+0x744/0x1730
[ 2492.192425][T32116]  ? selinux_file_ioctl+0x723/0x970
[ 2492.197682][T32116]  ? ioctl_preallocate+0x250/0x250
[ 2492.202762][T32116]  ? __fget+0x40c/0x4a0
[ 2492.206886][T32116]  ? fget_many+0x20/0x20
[ 2492.211097][T32116]  ? check_preemption_disabled+0x154/0x330
14:09:30 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r1 = syz_open_dev$mouse(0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
read$hidraw(r2, &(0x7f0000000300)=""/207, 0xcf)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
socket$pppl2tp(0x18, 0x1, 0x1)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f00000002c0), 0x80) (async)
read$hidraw(r2, &(0x7f0000000300)=""/207, 0xcf) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10) (async)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r1) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 33)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2492.216872][T32116]  ? debug_smp_processor_id+0x20/0x20
[ 2492.222223][T32116]  ? security_file_ioctl+0x9d/0xb0
[ 2492.227317][T32116]  __x64_sys_ioctl+0xd4/0x110
[ 2492.231975][T32116]  do_syscall_64+0xcb/0x1c0
[ 2492.236461][T32116]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0) (async)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
r4 = fsmount(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r3) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r5, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010) (async)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r4)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r7, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r7, 0x100, 0x70bd29, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x7}, {0x8, 0x13, 0x7f}, {0x5}}]}, 0x54}, 0x1, 0x0, 0x0, 0x81}, 0x40010) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:30 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x69)

[ 2492.284385][T32135] FAULT_INJECTION: forcing a failure.
[ 2492.284385][T32135] name failslab, interval 1, probability 0, space 0, times 0
[ 2492.297702][T32135] CPU: 0 PID: 32135 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2492.307928][T32135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2492.317976][T32135] Call Trace:
[ 2492.321247][T32135]  dump_stack+0x1d8/0x241
[ 2492.325549][T32135]  ? panic+0x73e/0x73e
[ 2492.329588][T32135]  ? stack_trace_save+0x200/0x200
[ 2492.334595][T32135]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2492.340558][T32135]  ? arch_stack_walk+0x114/0x140
[ 2492.345465][T32135]  should_fail+0x709/0x870
[ 2492.349869][T32135]  ? setup_fault_attr+0x3d0/0x3d0
[ 2492.354876][T32135]  ? _raw_spin_unlock_irqrestore+0x57/0x80
[ 2492.360651][T32135]  ? init_wait_entry+0xd0/0xd0
[ 2492.365387][T32135]  ? blk_mq_init_tags+0x74/0x290
[ 2492.370291][T32135]  should_failslab+0x5/0x20
[ 2492.374774][T32135]  kmem_cache_alloc_trace+0x28/0x240
[ 2492.380054][T32135]  blk_mq_init_tags+0x74/0x290
[ 2492.384800][T32135]  ? blk_mq_hw_queue_to_node+0xeb/0x100
[ 2492.390324][T32135]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 2492.395321][T32135]  blk_mq_init_sched+0x1f2/0xaf0
[ 2492.400229][T32135]  elevator_init_mq+0x2cd/0x3f0
[ 2492.405061][T32135]  __device_add_disk+0xf1/0x1200
[ 2492.409970][T32135]  ? sprintf+0xd6/0x120
[ 2492.414099][T32135]  ? device_add_disk+0x30/0x30
[ 2492.418841][T32135]  ? vsprintf+0x30/0x30
[ 2492.423056][T32135]  ? device_initialize+0x1c7/0x3d0
[ 2492.428149][T32135]  ? __alloc_disk_node+0x326/0x380
[ 2492.433239][T32135]  loop_add+0x554/0x710
[ 2492.437371][T32135]  loop_control_ioctl+0x564/0x740
[ 2492.442401][T32135]  ? loop_remove+0xa0/0xa0
[ 2492.446790][T32135]  ? __lru_cache_add+0x1bf/0x210
[ 2492.451702][T32135]  ? memset+0x1f/0x40
[ 2492.455657][T32135]  ? fsnotify+0x1332/0x13f0
[ 2492.460140][T32135]  ? loop_remove+0xa0/0xa0
[ 2492.464544][T32135]  do_vfs_ioctl+0x744/0x1730
[ 2492.469108][T32135]  ? selinux_file_ioctl+0x723/0x970
[ 2492.474278][T32135]  ? ioctl_preallocate+0x250/0x250
[ 2492.479367][T32135]  ? __fget+0x40c/0x4a0
14:09:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r4, 0x58, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xff10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:31 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 34)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2492.483494][T32135]  ? fget_many+0x20/0x20
[ 2492.487710][T32135]  ? check_preemption_disabled+0x154/0x330
[ 2492.493485][T32135]  ? debug_smp_processor_id+0x20/0x20
[ 2492.498831][T32135]  ? security_file_ioctl+0x9d/0xb0
[ 2492.503933][T32135]  __x64_sys_ioctl+0xd4/0x110
[ 2492.508591][T32135]  do_syscall_64+0xcb/0x1c0
[ 2492.513076][T32135]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2492.525216][T32135] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:31 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x0, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (rerun: 32)
r2 = fsopen(0x0, 0x0) (async, rerun: 32)
socketpair(0x11, 0xa, 0xc99, &(0x7f0000000180)={<r3=>0xffffffffffffffff}) (rerun: 32)
r4 = fsmount(0xffffffffffffffff, 0x0, 0x0) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r3) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x38, r5, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x17}}}}, [@mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x38}}, 0x40010)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), r4)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x50, r7, 0x4, 0x70bd28, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x7ff}, {0xc, 0x90, 0x6}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) (async)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r7, 0x100, 0x70bd29, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x7}, {0x8, 0x13, 0x7f}, {0x5}}]}, 0x54}, 0x1, 0x0, 0x0, 0x81}, 0x40010) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 32)

14:09:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r4, 0x58, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xff10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:31 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:31 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x6a)

[ 2492.555153][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2492.584643][T32179] FAULT_INJECTION: forcing a failure.
[ 2492.584643][T32179] name failslab, interval 1, probability 0, space 0, times 0
[ 2492.598331][T32179] CPU: 0 PID: 32179 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2492.608563][T32179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2492.618591][T32179] Call Trace:
[ 2492.621856][T32179]  dump_stack+0x1d8/0x241
[ 2492.626154][T32179]  ? panic+0x73e/0x73e
[ 2492.630193][T32179]  ? __kasan_kmalloc+0x1a5/0x1e0
[ 2492.635243][T32179]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2492.641019][T32179]  ? blk_mq_init_tags+0x74/0x290
[ 2492.645928][T32179]  ? blk_mq_alloc_rq_map+0x93/0x1a0
[ 2492.651116][T32179]  ? blk_mq_init_sched+0x1f2/0xaf0
[ 2492.656210][T32179]  ? __device_add_disk+0xf1/0x1200
[ 2492.661290][T32179]  ? loop_add+0x554/0x710
[ 2492.665588][T32179]  ? loop_control_ioctl+0x564/0x740
[ 2492.670756][T32179]  ? do_vfs_ioctl+0x744/0x1730
[ 2492.675492][T32179]  should_fail+0x709/0x870
[ 2492.679877][T32179]  ? setup_fault_attr+0x3d0/0x3d0
[ 2492.684869][T32179]  ? sbitmap_queue_init_node+0x15e/0xf70
[ 2492.690469][T32179]  should_failslab+0x5/0x20
[ 2492.694940][T32179]  __kmalloc+0x51/0x2b0
[ 2492.699066][T32179]  sbitmap_queue_init_node+0x15e/0xf70
[ 2492.704491][T32179]  ? blk_mq_init_tags+0x74/0x290
[ 2492.709395][T32179]  blk_mq_init_tags+0xef/0x290
[ 2492.714215][T32179]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 2492.719210][T32179]  blk_mq_init_sched+0x1f2/0xaf0
[ 2492.724120][T32179]  elevator_init_mq+0x2cd/0x3f0
[ 2492.728939][T32179]  __device_add_disk+0xf1/0x1200
[ 2492.733843][T32179]  ? sprintf+0xd6/0x120
[ 2492.737969][T32179]  ? device_add_disk+0x30/0x30
[ 2492.742710][T32179]  ? vsprintf+0x30/0x30
[ 2492.746837][T32179]  ? device_initialize+0x1c7/0x3d0
[ 2492.751919][T32179]  ? __alloc_disk_node+0x326/0x380
[ 2492.756998][T32179]  loop_add+0x554/0x710
[ 2492.761124][T32179]  loop_control_ioctl+0x564/0x740
[ 2492.766117][T32179]  ? loop_remove+0xa0/0xa0
[ 2492.770502][T32179]  ? __lru_cache_add+0x1bf/0x210
[ 2492.775411][T32179]  ? memset+0x1f/0x40
[ 2492.779370][T32179]  ? fsnotify+0x1332/0x13f0
[ 2492.783840][T32179]  ? loop_remove+0xa0/0xa0
[ 2492.788224][T32179]  do_vfs_ioctl+0x744/0x1730
[ 2492.792783][T32179]  ? selinux_file_ioctl+0x723/0x970
[ 2492.797953][T32179]  ? ioctl_preallocate+0x250/0x250
14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x244002, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x244002, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:31 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 35)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2492.803034][T32179]  ? __fget+0x40c/0x4a0
[ 2492.807157][T32179]  ? fget_many+0x20/0x20
[ 2492.811376][T32179]  ? check_preemption_disabled+0x154/0x330
[ 2492.817151][T32179]  ? debug_smp_processor_id+0x20/0x20
[ 2492.822579][T32179]  ? security_file_ioctl+0x9d/0xb0
[ 2492.827658][T32179]  __x64_sys_ioctl+0xd4/0x110
[ 2492.832304][T32179]  do_syscall_64+0xcb/0x1c0
[ 2492.836779][T32179]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2492.845639][T32179] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x244002, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r4, 0x58, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xff10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r4, 0x58, &(0x7f00000002c0)}, 0xff10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000040))
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000001cc0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r4)

[ 2492.872440][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2492.882228][T32210] FAULT_INJECTION: forcing a failure.
[ 2492.882228][T32210] name failslab, interval 1, probability 0, space 0, times 0
[ 2492.898660][T32210] CPU: 0 PID: 32210 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2492.908902][T32210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2492.918940][T32210] Call Trace:
[ 2492.922205][T32210]  dump_stack+0x1d8/0x241
[ 2492.926506][T32210]  ? panic+0x73e/0x73e
[ 2492.930543][T32210]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2492.936326][T32210]  should_fail+0x709/0x870
[ 2492.940712][T32210]  ? setup_fault_attr+0x3d0/0x3d0
[ 2492.945704][T32210]  ? pcpu_alloc+0xb62/0x1060
[ 2492.950267][T32210]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2492.955871][T32210]  should_failslab+0x5/0x20
[ 2492.960346][T32210]  kmem_cache_alloc_trace+0x28/0x240
[ 2492.965609][T32210]  sbitmap_queue_init_node+0x69c/0xf70
[ 2492.971038][T32210]  blk_mq_init_tags+0xef/0x290
[ 2492.975778][T32210]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 2492.980774][T32210]  blk_mq_init_sched+0x1f2/0xaf0
[ 2492.985687][T32210]  elevator_init_mq+0x2cd/0x3f0
[ 2492.990512][T32210]  __device_add_disk+0xf1/0x1200
[ 2492.995419][T32210]  ? sprintf+0xd6/0x120
[ 2492.999716][T32210]  ? device_add_disk+0x30/0x30
[ 2493.004445][T32210]  ? vsprintf+0x30/0x30
[ 2493.008575][T32210]  ? device_initialize+0x1c7/0x3d0
[ 2493.013670][T32210]  ? __alloc_disk_node+0x326/0x380
[ 2493.018763][T32210]  loop_add+0x554/0x710
[ 2493.022895][T32210]  loop_control_ioctl+0x564/0x740
[ 2493.027898][T32210]  ? loop_remove+0xa0/0xa0
[ 2493.032294][T32210]  ? __lru_cache_add+0x1bf/0x210
[ 2493.037228][T32210]  ? memset+0x1f/0x40
[ 2493.041186][T32210]  ? fsnotify+0x1332/0x13f0
[ 2493.045664][T32210]  ? loop_remove+0xa0/0xa0
[ 2493.050048][T32210]  do_vfs_ioctl+0x744/0x1730
[ 2493.054609][T32210]  ? selinux_file_ioctl+0x723/0x970
[ 2493.059782][T32210]  ? ioctl_preallocate+0x250/0x250
[ 2493.064868][T32210]  ? __fget+0x40c/0x4a0
[ 2493.069088][T32210]  ? fget_many+0x20/0x20
14:09:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5cc, 0x0, 0x0, 0x0, 0xfffffffa}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x3}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x12c}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8cf, 0x0, 0x0, 0x0, 0x10001}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0xe34}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffefc, 0x0, 0x0, 0x40f00, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x10000a, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:31 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x0, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:31 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 36)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2493.073301][T32210]  ? check_preemption_disabled+0x154/0x330
[ 2493.079075][T32210]  ? debug_smp_processor_id+0x20/0x20
[ 2493.084424][T32210]  ? security_file_ioctl+0x9d/0xb0
[ 2493.089505][T32210]  __x64_sys_ioctl+0xd4/0x110
[ 2493.094154][T32210]  do_syscall_64+0xcb/0x1c0
[ 2493.098629][T32210]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2493.108290][T32210] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5cc, 0x0, 0x0, 0x0, 0xfffffffa}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x3}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x12c}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8cf, 0x0, 0x0, 0x0, 0x10001}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0xe34}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffefc, 0x0, 0x0, 0x40f00, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x10000a, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r2, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5cc, 0x0, 0x0, 0x0, 0xfffffffa}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x3}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x12c}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8cf, 0x0, 0x0, 0x0, 0x10001}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0xe34}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffefc, 0x0, 0x0, 0x40f00, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x10000a, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

[ 2493.131937][T32245] selinux_nlmsg_perm: 17 callbacks suppressed
[ 2493.131948][T32245] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32245 comm=syz-executor.1
[ 2493.155282][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2493.173808][T32247] FAULT_INJECTION: forcing a failure.
14:09:31 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:31 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x6c)

14:09:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000040))
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000001cc0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r4)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000040)) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000001cc0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0) (async)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r4) (async)

14:09:31 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x74)

[ 2493.173808][T32247] name failslab, interval 1, probability 0, space 0, times 0
[ 2493.189680][T32247] CPU: 0 PID: 32247 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2493.196160][T32255] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32255 comm=syz-executor.1
[ 2493.199910][T32247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2493.199914][T32247] Call Trace:
[ 2493.199931][T32247]  dump_stack+0x1d8/0x241
[ 2493.199948][T32247]  ? panic+0x73e/0x73e
[ 2493.234338][T32247]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2493.240125][T32247]  should_fail+0x709/0x870
[ 2493.244513][T32247]  ? setup_fault_attr+0x3d0/0x3d0
[ 2493.249508][T32247]  ? pcpu_alloc+0xb62/0x1060
[ 2493.254068][T32247]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2493.259668][T32247]  should_failslab+0x5/0x20
[ 2493.264150][T32247]  kmem_cache_alloc_trace+0x28/0x240
[ 2493.269404][T32247]  sbitmap_queue_init_node+0x69c/0xf70
[ 2493.274838][T32247]  blk_mq_init_tags+0x153/0x290
[ 2493.279672][T32247]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 2493.284673][T32247]  blk_mq_init_sched+0x1f2/0xaf0
[ 2493.289586][T32247]  elevator_init_mq+0x2cd/0x3f0
[ 2493.294405][T32247]  __device_add_disk+0xf1/0x1200
[ 2493.299311][T32247]  ? sprintf+0xd6/0x120
[ 2493.303438][T32247]  ? device_add_disk+0x30/0x30
[ 2493.308174][T32247]  ? vsprintf+0x30/0x30
[ 2493.312307][T32247]  ? device_initialize+0x1c7/0x3d0
[ 2493.317388][T32247]  ? __alloc_disk_node+0x326/0x380
[ 2493.322683][T32247]  loop_add+0x554/0x710
[ 2493.326844][T32247]  loop_control_ioctl+0x564/0x740
14:09:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000040))
fsmount(r2, 0x0, 0x6) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}]}, &(0x7f0000001cc0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async, rerun: 32)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0) (async, rerun: 32)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r4) (rerun: 32)

[ 2493.331859][T32247]  ? loop_remove+0xa0/0xa0
[ 2493.336254][T32247]  ? __lru_cache_add+0x1bf/0x210
[ 2493.341174][T32247]  ? memset+0x1f/0x40
[ 2493.345148][T32247]  ? fsnotify+0x1332/0x13f0
[ 2493.349643][T32247]  ? loop_remove+0xa0/0xa0
[ 2493.354059][T32247]  do_vfs_ioctl+0x744/0x1730
[ 2493.358641][T32247]  ? selinux_file_ioctl+0x723/0x970
[ 2493.363915][T32247]  ? ioctl_preallocate+0x250/0x250
[ 2493.369009][T32247]  ? __fget+0x40c/0x4a0
[ 2493.373140][T32247]  ? fget_many+0x20/0x20
[ 2493.377355][T32247]  ? check_preemption_disabled+0x154/0x330
14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5cc, 0x0, 0x0, 0x0, 0xfffffffa}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x3}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x12c}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8cf, 0x0, 0x0, 0x0, 0x10001}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0xe34}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffefc, 0x0, 0x0, 0x40f00, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0x10000a, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:32 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 37)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2493.383132][T32247]  ? debug_smp_processor_id+0x20/0x20
[ 2493.388478][T32247]  ? security_file_ioctl+0x9d/0xb0
[ 2493.393566][T32247]  __x64_sys_ioctl+0xd4/0x110
[ 2493.398212][T32247]  do_syscall_64+0xcb/0x1c0
[ 2493.402695][T32247]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2493.411564][T32247] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="0000000000000000001005860000fdffffff0000b70000000000852000000200000095000000000000009500000000000000001f00"/63], &(0x7f00000002c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xb, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:32 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x0, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f00000000c0)='memory.stat\x00', 0x0, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000140), r2)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={r2, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x1d8, r4, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x1bc, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x14}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x47}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x3, 0x1c, 0x2, 0x8}, {0xa1, 0xff, 0x1, 0x47}, {0x5, 0x9, 0x9, 0x9}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095010000000000009500000000000000acc363d82e2f5c482acd"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:32 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:32 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x7a)

[ 2493.446339][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2493.454230][T32313] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32313 comm=syz-executor.1
[ 2493.471020][T32311] FAULT_INJECTION: forcing a failure.
[ 2493.471020][T32311] name failslab, interval 1, probability 0, space 0, times 0
[ 2493.484158][T32311] CPU: 0 PID: 32311 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2493.494388][T32311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2493.504538][T32311] Call Trace:
[ 2493.507806][T32311]  dump_stack+0x1d8/0x241
[ 2493.512115][T32311]  ? panic+0x73e/0x73e
[ 2493.516153][T32311]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2493.521944][T32311]  should_fail+0x709/0x870
[ 2493.526351][T32311]  ? setup_fault_attr+0x3d0/0x3d0
[ 2493.531372][T32311]  ? pcpu_alloc+0xb62/0x1060
[ 2493.535940][T32311]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2493.541541][T32311]  should_failslab+0x5/0x20
[ 2493.546024][T32311]  kmem_cache_alloc_trace+0x28/0x240
[ 2493.551292][T32311]  sbitmap_queue_init_node+0x69c/0xf70
[ 2493.556721][T32311]  blk_mq_init_tags+0x153/0x290
[ 2493.561542][T32311]  blk_mq_alloc_rq_map+0x93/0x1a0
[ 2493.566534][T32311]  blk_mq_init_sched+0x1f2/0xaf0
[ 2493.571447][T32311]  elevator_init_mq+0x2cd/0x3f0
[ 2493.576280][T32311]  __device_add_disk+0xf1/0x1200
[ 2493.581197][T32311]  ? sprintf+0xd6/0x120
[ 2493.585337][T32311]  ? device_add_disk+0x30/0x30
[ 2493.590078][T32311]  ? vsprintf+0x30/0x30
[ 2493.594208][T32311]  ? device_initialize+0x1c7/0x3d0
[ 2493.599300][T32311]  ? __alloc_disk_node+0x326/0x380
[ 2493.605527][T32311]  loop_add+0x554/0x710
[ 2493.609652][T32311]  loop_control_ioctl+0x564/0x740
[ 2493.614642][T32311]  ? loop_remove+0xa0/0xa0
[ 2493.619026][T32311]  ? __lru_cache_add+0x1bf/0x210
[ 2493.623978][T32311]  ? memset+0x1f/0x40
[ 2493.627932][T32311]  ? fsnotify+0x1332/0x13f0
[ 2493.632429][T32311]  ? loop_remove+0xa0/0xa0
[ 2493.636844][T32311]  do_vfs_ioctl+0x744/0x1730
[ 2493.641413][T32311]  ? selinux_file_ioctl+0x723/0x970
[ 2493.646583][T32311]  ? ioctl_preallocate+0x250/0x250
[ 2493.651674][T32311]  ? __fget+0x40c/0x4a0
[ 2493.655801][T32311]  ? fget_many+0x20/0x20
[ 2493.660024][T32311]  ? check_preemption_disabled+0x154/0x330
[ 2493.665803][T32311]  ? debug_smp_processor_id+0x20/0x20
[ 2493.671147][T32311]  ? security_file_ioctl+0x9d/0xb0
[ 2493.676228][T32311]  __x64_sys_ioctl+0xd4/0x110
[ 2493.680874][T32311]  do_syscall_64+0xcb/0x1c0
[ 2493.685348][T32311]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:32 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 38)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2493.692349][T32311] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f00000000c0)='memory.stat\x00', 0x0, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000140), r2)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={r2, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x1d8, r4, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x1bc, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x14}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x47}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x3, 0x1c, 0x2, 0x8}, {0xa1, 0xff, 0x1, 0x47}, {0x5, 0x9, 0x9, 0x9}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095010000000000009500000000000000acc363d82e2f5c482acd"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
openat$cgroup_ro(r0, &(0x7f00000000c0)='memory.stat\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000140), r2) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={r2, 0x58, &(0x7f0000000240)}, 0x10) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x1d8, r4, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x1bc, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x14}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x47}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x3, 0x1c, 0x2, 0x8}, {0xa1, 0xff, 0x1, 0x47}, {0x5, 0x9, 0x9, 0x9}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20000011}, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095010000000000009500000000000000acc363d82e2f5c482acd"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:32 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="0000000000000000001005860000fdffffff0000b70000000000852000000200000095000000000000009500000000000000001f00"/63], &(0x7f00000002c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xb, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2493.738403][T32332] FAULT_INJECTION: forcing a failure.
[ 2493.738403][T32332] name failslab, interval 1, probability 0, space 0, times 0
[ 2493.752466][T32332] CPU: 1 PID: 32332 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2493.762131][T32334] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32334 comm=syz-executor.1
[ 2493.762700][T32332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2493.762704][T32332] Call Trace:
14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (rerun: 32)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="0000000000000000001005860000fdffffff0000b70000000000852000000200000095000000000000009500000000000000001f00"/63], &(0x7f00000002c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xb, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2493.762721][T32332]  dump_stack+0x1d8/0x241
[ 2493.762736][T32332]  ? panic+0x73e/0x73e
[ 2493.797116][T32332]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2493.802893][T32332]  should_fail+0x709/0x870
[ 2493.807284][T32332]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2493.812896][T32332]  ? setup_fault_attr+0x3d0/0x3d0
[ 2493.817901][T32332]  ? sbitmap_queue_init_node+0xb3d/0xf70
[ 2493.823502][T32332]  ? blk_mq_alloc_rq_map+0xb3/0x1a0
[ 2493.828679][T32332]  should_failslab+0x5/0x20
[ 2493.833171][T32332]  __kmalloc+0x51/0x2b0
14:09:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f00000000c0)='memory.stat\x00', 0x0, 0x0) (async)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000140), r2) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={r2, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)={0x1d8, r4, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [{{0x8}, {0x1bc, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x14}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x47}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x3, 0x1c, 0x2, 0x8}, {0xa1, 0xff, 0x1, 0x47}, {0x5, 0x9, 0x9, 0x9}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20000011}, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095010000000000009500000000000000acc363d82e2f5c482acd"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2493.837316][T32332]  blk_mq_alloc_rq_map+0xb3/0x1a0
[ 2493.842318][T32332]  blk_mq_init_sched+0x1f2/0xaf0
[ 2493.847225][T32332]  elevator_init_mq+0x2cd/0x3f0
[ 2493.852072][T32332]  __device_add_disk+0xf1/0x1200
[ 2493.856978][T32332]  ? sprintf+0xd6/0x120
[ 2493.861115][T32332]  ? device_add_disk+0x30/0x30
[ 2493.865948][T32332]  ? vsprintf+0x30/0x30
[ 2493.870085][T32332]  ? device_initialize+0x1c7/0x3d0
[ 2493.875183][T32332]  ? __alloc_disk_node+0x326/0x380
[ 2493.880283][T32332]  loop_add+0x554/0x710
[ 2493.884422][T32332]  loop_control_ioctl+0x564/0x740
[ 2493.889433][T32332]  ? loop_remove+0xa0/0xa0
[ 2493.893820][T32332]  ? __lru_cache_add+0x1bf/0x210
[ 2493.898749][T32332]  ? memset+0x1f/0x40
[ 2493.902700][T32332]  ? fsnotify+0x1332/0x13f0
[ 2493.907173][T32332]  ? loop_remove+0xa0/0xa0
[ 2493.911561][T32332]  do_vfs_ioctl+0x744/0x1730
[ 2493.916124][T32332]  ? selinux_file_ioctl+0x723/0x970
[ 2493.921290][T32332]  ? ioctl_preallocate+0x250/0x250
[ 2493.926372][T32332]  ? __fget+0x40c/0x4a0
[ 2493.930497][T32332]  ? fget_many+0x20/0x20
14:09:32 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x300)

14:09:32 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 39)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2493.934720][T32332]  ? check_preemption_disabled+0x154/0x330
[ 2493.940499][T32332]  ? debug_smp_processor_id+0x20/0x20
[ 2493.945842][T32332]  ? security_file_ioctl+0x9d/0xb0
[ 2493.950927][T32332]  __x64_sys_ioctl+0xd4/0x110
[ 2493.955595][T32332]  do_syscall_64+0xcb/0x1c0
[ 2493.960068][T32332]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2493.968780][T32332] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:32 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
sendmsg$FOU_CMD_GET(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x48, 0x0, 0xb38, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4008080}, 0x91)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
pipe2$watch_queue(&(0x7f0000000400), 0x80)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000500000000090000000000007e45000000000085200000020000543f0003000000000095000000000000000000000000000000000000000000e59945ca212bbe455ca865d119c60e2bf8a8b0cf555e1c2b09139a9505516bc0f18591bedab7824e28294d10af80bb0867dc03d15613a449676eda943637b5fcab447b9afdee31fdc403601dd502a425256407fe14112952d240f224ed77e078fc650518bb9065b0691818bafbb1b0071a482570482841522d0fd99edbd4ecd2f33e"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:32 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:32 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x500)

14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async, rerun: 64)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
sendmsg$FOU_CMD_GET(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x48, 0x0, 0xb38, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4008080}, 0x91) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
pipe2$watch_queue(&(0x7f0000000400), 0x80) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.010536][T32386] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32386 comm=syz-executor.1
[ 2494.032358][T32384] FAULT_INJECTION: forcing a failure.
[ 2494.032358][T32384] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2494.047207][T32384] CPU: 0 PID: 32384 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2494.057435][T32384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2494.067465][T32384] Call Trace:
[ 2494.070733][T32384]  dump_stack+0x1d8/0x241
[ 2494.075041][T32384]  ? panic+0x73e/0x73e
[ 2494.079078][T32384]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2494.084865][T32384]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2494.090474][T32384]  should_fail+0x709/0x870
[ 2494.094871][T32384]  ? elevator_init_mq+0x2cd/0x3f0
[ 2494.099867][T32384]  ? setup_fault_attr+0x3d0/0x3d0
[ 2494.104870][T32384]  ? elevator_init_mq+0x2cd/0x3f0
14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
sendmsg$FOU_CMD_GET(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x48, 0x0, 0xb38, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4008080}, 0x91) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
pipe2$watch_queue(&(0x7f0000000400), 0x80) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.109880][T32384]  ? __device_add_disk+0xf1/0x1200
[ 2494.114980][T32384]  ? loop_add+0x554/0x710
[ 2494.119295][T32384]  ? loop_control_ioctl+0x564/0x740
[ 2494.124486][T32384]  ? do_vfs_ioctl+0x744/0x1730
[ 2494.129232][T32384]  ? do_syscall_64+0xcb/0x1c0
[ 2494.133880][T32384]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2494.139939][T32384]  __alloc_pages_nodemask+0x1b6/0x860
[ 2494.145283][T32384]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2494.150796][T32384]  ? find_next_bit+0xe5/0x110
[ 2494.155440][T32384]  ? blk_mq_hw_queue_to_node+0xeb/0x100
[ 2494.160954][T32384]  blk_mq_alloc_rqs+0x252/0x6d0
[ 2494.165775][T32384]  blk_mq_init_sched+0x256/0xaf0
[ 2494.170705][T32384]  elevator_init_mq+0x2cd/0x3f0
[ 2494.175577][T32384]  __device_add_disk+0xf1/0x1200
[ 2494.180493][T32384]  ? sprintf+0xd6/0x120
[ 2494.184621][T32384]  ? device_add_disk+0x30/0x30
[ 2494.189370][T32384]  ? vsprintf+0x30/0x30
[ 2494.193522][T32384]  ? device_initialize+0x1c7/0x3d0
[ 2494.198631][T32384]  ? __alloc_disk_node+0x326/0x380
[ 2494.203738][T32384]  loop_add+0x554/0x710
14:09:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="d3", 0x1, 0xfffffffffffffffe)
add_key(&(0x7f0000000180)='rxrpc\x00', 0x0, 0x0, 0x0, r4)
add_key(&(0x7f00000003c0)='cifs.spnego\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000440)="74c43628ea6348f0a6349983063e8d6500061a4227aa27d99730c5b4300bf5727db1619dda0a518192f2fd8cab702e6186a267c6b5931003bc1108c888ae974503c2ba5004ee87aebf0abefc7f213dc610b58243eda555700fd069d7643abd15b998cb3c92ba5cc935dd7cb076ec4afbb8281340881e69391f8a2d820e87661a3e091713bfa8ea3f821e967617110986be5847caa11c3298e74a186a478760575b1abddeb2366496cf9762c1ad31baed8b327b17f1", 0xb5, r4)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r6 = openat$cgroup_ro(r1, &(0x7f0000000340)='cpu.stat\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f00000002c0)}, 0x10)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x7, 0x7658, @vifc_lcl_addr=@private=0xa010101, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
r7 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0)
ioctl$VHOST_VDPA_GET_VRING_GROUP(r7, 0xc008af7b, &(0x7f0000000380)={0x2})
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.207885][T32384]  loop_control_ioctl+0x564/0x740
[ 2494.212901][T32384]  ? loop_remove+0xa0/0xa0
[ 2494.217308][T32384]  ? __lru_cache_add+0x1bf/0x210
[ 2494.222237][T32384]  ? memset+0x1f/0x40
[ 2494.226206][T32384]  ? fsnotify+0x1332/0x13f0
[ 2494.230698][T32384]  ? loop_remove+0xa0/0xa0
[ 2494.235100][T32384]  do_vfs_ioctl+0x744/0x1730
[ 2494.239679][T32384]  ? selinux_file_ioctl+0x723/0x970
[ 2494.244865][T32384]  ? ioctl_preallocate+0x250/0x250
[ 2494.249956][T32384]  ? __fget+0x40c/0x4a0
[ 2494.254205][T32384]  ? fget_many+0x20/0x20
14:09:32 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 40)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2494.258430][T32384]  ? check_preemption_disabled+0x154/0x330
[ 2494.264215][T32384]  ? debug_smp_processor_id+0x20/0x20
[ 2494.269557][T32384]  ? security_file_ioctl+0x9d/0xb0
[ 2494.274666][T32384]  __x64_sys_ioctl+0xd4/0x110
[ 2494.279316][T32384]  do_syscall_64+0xcb/0x1c0
[ 2494.283789][T32384]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2494.298837][T18473] udevd[18473]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
14:09:33 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2494.311692][T18473] udevd[18473]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
14:09:33 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:33 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000500000000090000000000007e45000000000085200000020000543f0003000000000095000000000000000000000000000000000000000000e59945ca212bbe455ca865d119c60e2bf8a8b0cf555e1c2b09139a9505516bc0f18591bedab7824e28294d10af80bb0867dc03d15613a449676eda943637b5fcab447b9afdee31fdc403601dd502a425256407fe14112952d240f224ed77e078fc650518bb9065b0691818bafbb1b0071a482570482841522d0fd99edbd4ecd2f33e"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 32)

14:09:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x600)

14:09:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async, rerun: 32)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (rerun: 32)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="d3", 0x1, 0xfffffffffffffffe)
add_key(&(0x7f0000000180)='rxrpc\x00', 0x0, 0x0, 0x0, r4)
add_key(&(0x7f00000003c0)='cifs.spnego\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000440)="74c43628ea6348f0a6349983063e8d6500061a4227aa27d99730c5b4300bf5727db1619dda0a518192f2fd8cab702e6186a267c6b5931003bc1108c888ae974503c2ba5004ee87aebf0abefc7f213dc610b58243eda555700fd069d7643abd15b998cb3c92ba5cc935dd7cb076ec4afbb8281340881e69391f8a2d820e87661a3e091713bfa8ea3f821e967617110986be5847caa11c3298e74a186a478760575b1abddeb2366496cf9762c1ad31baed8b327b17f1", 0xb5, r4)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r6 = openat$cgroup_ro(r1, &(0x7f0000000340)='cpu.stat\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f00000002c0)}, 0x10)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x7, 0x7658, @vifc_lcl_addr=@private=0xa010101, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async, rerun: 32)
r7 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (rerun: 32)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0)
ioctl$VHOST_VDPA_GET_VRING_GROUP(r7, 0xc008af7b, &(0x7f0000000380)={0x2}) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.351031][T32424] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32424 comm=syz-executor.1
[ 2494.364119][T32422] FAULT_INJECTION: forcing a failure.
[ 2494.364119][T32422] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2494.381107][T32422] CPU: 0 PID: 32422 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2494.391345][T32422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2494.401392][T32422] Call Trace:
[ 2494.404676][T32422]  dump_stack+0x1d8/0x241
14:09:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="d3", 0x1, 0xfffffffffffffffe)
add_key(&(0x7f0000000180)='rxrpc\x00', 0x0, 0x0, 0x0, r4)
add_key(&(0x7f00000003c0)='cifs.spnego\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000440)="74c43628ea6348f0a6349983063e8d6500061a4227aa27d99730c5b4300bf5727db1619dda0a518192f2fd8cab702e6186a267c6b5931003bc1108c888ae974503c2ba5004ee87aebf0abefc7f213dc610b58243eda555700fd069d7643abd15b998cb3c92ba5cc935dd7cb076ec4afbb8281340881e69391f8a2d820e87661a3e091713bfa8ea3f821e967617110986be5847caa11c3298e74a186a478760575b1abddeb2366496cf9762c1ad31baed8b327b17f1", 0xb5, r4) (async)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r6 = openat$cgroup_ro(r1, &(0x7f0000000340)='cpu.stat\x00', 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r6, 0x58, &(0x7f00000002c0)}, 0x10)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x7, 0x7658, @vifc_lcl_addr=@private=0xa010101, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
r7 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0) (async)
ioctl$VHOST_VDPA_GET_VRING_GROUP(r7, 0xc008af7b, &(0x7f0000000380)={0x2})
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.408996][T32422]  ? panic+0x73e/0x73e
[ 2494.413058][T32422]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2494.418852][T32422]  ? sbitmap_queue_init_node+0x69c/0xf70
[ 2494.424464][T32422]  should_fail+0x709/0x870
[ 2494.428863][T32422]  ? elevator_init_mq+0x2cd/0x3f0
[ 2494.433860][T32422]  ? setup_fault_attr+0x3d0/0x3d0
[ 2494.438855][T32422]  ? elevator_init_mq+0x2cd/0x3f0
[ 2494.443856][T32422]  ? __device_add_disk+0xf1/0x1200
[ 2494.449023][T32422]  ? loop_add+0x554/0x710
[ 2494.453325][T32422]  ? loop_control_ioctl+0x564/0x740
[ 2494.458493][T32422]  ? do_vfs_ioctl+0x744/0x1730
[ 2494.463230][T32422]  ? do_syscall_64+0xcb/0x1c0
[ 2494.467874][T32422]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2494.474037][T32422]  __alloc_pages_nodemask+0x1b6/0x860
[ 2494.479394][T32422]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2494.484912][T32422]  ? find_next_bit+0xe5/0x110
[ 2494.489562][T32422]  ? blk_mq_hw_queue_to_node+0xeb/0x100
[ 2494.495615][T32422]  blk_mq_alloc_rqs+0x252/0x6d0
[ 2494.500455][T32422]  blk_mq_init_sched+0x256/0xaf0
[ 2494.505381][T32422]  elevator_init_mq+0x2cd/0x3f0
[ 2494.510205][T32422]  __device_add_disk+0xf1/0x1200
[ 2494.515119][T32422]  ? sprintf+0xd6/0x120
[ 2494.519249][T32422]  ? device_add_disk+0x30/0x30
[ 2494.523982][T32422]  ? vsprintf+0x30/0x30
[ 2494.528116][T32422]  ? device_initialize+0x1c7/0x3d0
[ 2494.533204][T32422]  ? __alloc_disk_node+0x326/0x380
[ 2494.538296][T32422]  loop_add+0x554/0x710
[ 2494.542421][T32422]  loop_control_ioctl+0x564/0x740
[ 2494.547415][T32422]  ? loop_remove+0xa0/0xa0
[ 2494.551801][T32422]  ? __lru_cache_add+0x1bf/0x210
[ 2494.556706][T32422]  ? memset+0x1f/0x40
[ 2494.560661][T32422]  ? fsnotify+0x1332/0x13f0
[ 2494.565133][T32422]  ? loop_remove+0xa0/0xa0
[ 2494.569517][T32422]  do_vfs_ioctl+0x744/0x1730
[ 2494.574077][T32422]  ? selinux_file_ioctl+0x723/0x970
[ 2494.579247][T32422]  ? ioctl_preallocate+0x250/0x250
[ 2494.584354][T32422]  ? __fget+0x40c/0x4a0
[ 2494.588503][T32422]  ? fget_many+0x20/0x20
[ 2494.592718][T32422]  ? check_preemption_disabled+0x154/0x330
[ 2494.598494][T32422]  ? debug_smp_processor_id+0x20/0x20
[ 2494.603851][T32422]  ? security_file_ioctl+0x9d/0xb0
14:09:33 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 41)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2494.608939][T32422]  __x64_sys_ioctl+0xd4/0x110
[ 2494.613589][T32422]  do_syscall_64+0xcb/0x1c0
[ 2494.618070][T32422]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2494.637587][T32451] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32451 comm=syz-executor.1
14:09:33 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000500000000090000000000007e45000000000085200000020000543f0003000000000095000000000000000000000000000000000000000000e59945ca212bbe455ca865d119c60e2bf8a8b0cf555e1c2b09139a9505516bc0f18591bedab7824e28294d10af80bb0867dc03d15613a449676eda943637b5fcab447b9afdee31fdc403601dd502a425256407fe14112952d240f224ed77e078fc650518bb9065b0691818bafbb1b0071a482570482841522d0fd99edbd4ecd2f33e"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x700)

14:09:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x0)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000005640bfda0000000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}]}, 0x4c}}, 0x1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2494.657760][T18473] udevd[18473]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2494.671554][T32453] FAULT_INJECTION: forcing a failure.
[ 2494.671554][T32453] name failslab, interval 1, probability 0, space 0, times 0
[ 2494.682671][T32457] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32457 comm=syz-executor.1
[ 2494.687314][T32453] CPU: 0 PID: 32453 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2494.707085][T32453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2494.717114][T32453] Call Trace:
[ 2494.720380][T32453]  dump_stack+0x1d8/0x241
[ 2494.724694][T32453]  ? panic+0x73e/0x73e
[ 2494.728754][T32453]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2494.734544][T32453]  ? __alloc_pages_nodemask+0x372/0x860
[ 2494.740059][T32453]  should_fail+0x709/0x870
[ 2494.744446][T32453]  ? setup_fault_attr+0x3d0/0x3d0
[ 2494.749441][T32453]  ? find_next_bit+0xe5/0x110
[ 2494.754092][T32453]  ? memset+0x1f/0x40
[ 2494.758055][T32453]  ? lo_complete_rq+0x2a0/0x2a0
[ 2494.762888][T32453]  ? loop_init_request+0x31/0xa0
[ 2494.767796][T32453]  ? elevator_alloc+0x4b/0xc0
[ 2494.772442][T32453]  should_failslab+0x5/0x20
[ 2494.776922][T32453]  kmem_cache_alloc_trace+0x28/0x240
[ 2494.782182][T32453]  elevator_alloc+0x4b/0xc0
[ 2494.786656][T32453]  dd_init_queue+0x1f/0x330
[ 2494.791129][T32453]  blk_mq_init_sched+0x45c/0xaf0
[ 2494.796039][T32453]  elevator_init_mq+0x2cd/0x3f0
[ 2494.800868][T32453]  __device_add_disk+0xf1/0x1200
[ 2494.805785][T32453]  ? sprintf+0xd6/0x120
[ 2494.809918][T32453]  ? device_add_disk+0x30/0x30
[ 2494.814659][T32453]  ? vsprintf+0x30/0x30
[ 2494.818784][T32453]  ? device_initialize+0x1c7/0x3d0
[ 2494.823867][T32453]  ? __alloc_disk_node+0x326/0x380
[ 2494.828955][T32453]  loop_add+0x554/0x710
[ 2494.833081][T32453]  loop_control_ioctl+0x564/0x740
[ 2494.838077][T32453]  ? loop_remove+0xa0/0xa0
[ 2494.842464][T32453]  ? __lru_cache_add+0x1bf/0x210
[ 2494.847393][T32453]  ? memset+0x1f/0x40
[ 2494.851352][T32453]  ? fsnotify+0x1332/0x13f0
[ 2494.855847][T32453]  ? loop_remove+0xa0/0xa0
[ 2494.860238][T32453]  do_vfs_ioctl+0x744/0x1730
[ 2494.864799][T32453]  ? selinux_file_ioctl+0x723/0x970
[ 2494.869969][T32453]  ? ioctl_preallocate+0x250/0x250
[ 2494.875049][T32453]  ? __fget+0x40c/0x4a0
[ 2494.879174][T32453]  ? fget_many+0x20/0x20
[ 2494.883407][T32453]  ? check_preemption_disabled+0x154/0x330
[ 2494.889181][T32453]  ? debug_smp_processor_id+0x20/0x20
[ 2494.894520][T32453]  ? security_file_ioctl+0x9d/0xb0
[ 2494.899600][T32453]  __x64_sys_ioctl+0xd4/0x110
[ 2494.904255][T32453]  do_syscall_64+0xcb/0x1c0
[ 2494.908729][T32453]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x900)

14:09:33 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 42)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:33 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:33 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x0)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000005640bfda0000000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}]}, 0x4c}}, 0x1)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x0) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000005640bfda0000000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}]}, 0x4c}}, 0x1) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:33 executing program 4:
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x1c502, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000000c0)='%\x00', &(0x7f0000000100)='./file0\x00', r1)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000310aec15000018420000050000000036204e470000000000000018450000fbffffff00000000000000000285ca320085200000020000009500e70625322c511e460000fdff000095040000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = fsopen(&(0x7f0000000140)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000240)='\\-\\-\x00', &(0x7f0000000280)="fa86c20c27b3b8e5dfe8d1f2ee1046ec43cbd85728ca6f935eee38a9629349ba224317b4a3e278ff930e0a5d8929329e409215dcdc9587fd8a570d170166d4a903bd9a6526a5b19b4493d3e0ac9038c19cd5427738bb2e94c5bd67b2c027d3d2dbc1b473e2ec04985b3630455a39e53311a0103e03d9ac69cfbd89ff161c0289ea5a71e0dc3722937b92274276a5e3ee60a076c8f0d9cdc60d84a64d9a0bdafbbac8531ae5efbde7d7a7e943eb2ffcebed5382895dbdcdf8f052028063df302ef15bb0013a211197e028039b3d728db0ab2e9cef327b", 0xd6)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2494.916965][T32453] "mq-deadline" elevator initialization failed, falling back to "none"
[ 2494.951165][T32473] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32473 comm=syz-executor.1
14:09:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0xa00)

[ 2494.973696][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2494.983947][T32471] FAULT_INJECTION: forcing a failure.
[ 2494.983947][T32471] name failslab, interval 1, probability 0, space 0, times 0
[ 2494.997653][T32471] CPU: 1 PID: 32471 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2495.007976][T32471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2495.018002][T32471] Call Trace:
[ 2495.021269][T32471]  dump_stack+0x1d8/0x241
[ 2495.025576][T32471]  ? panic+0x73e/0x73e
[ 2495.029616][T32471]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2495.035393][T32471]  ? __alloc_pages_nodemask+0x372/0x860
[ 2495.040916][T32471]  should_fail+0x709/0x870
[ 2495.045568][T32471]  ? setup_fault_attr+0x3d0/0x3d0
[ 2495.050563][T32471]  ? find_next_bit+0xe5/0x110
[ 2495.055212][T32471]  ? memset+0x1f/0x40
[ 2495.059175][T32471]  ? lo_complete_rq+0x2a0/0x2a0
[ 2495.063999][T32471]  ? loop_init_request+0x31/0xa0
[ 2495.068917][T32471]  ? elevator_alloc+0x4b/0xc0
[ 2495.073576][T32471]  should_failslab+0x5/0x20
[ 2495.078052][T32471]  kmem_cache_alloc_trace+0x28/0x240
[ 2495.083307][T32471]  elevator_alloc+0x4b/0xc0
[ 2495.087791][T32471]  dd_init_queue+0x1f/0x330
[ 2495.092272][T32471]  blk_mq_init_sched+0x45c/0xaf0
[ 2495.097189][T32471]  elevator_init_mq+0x2cd/0x3f0
[ 2495.102024][T32471]  __device_add_disk+0xf1/0x1200
[ 2495.106935][T32471]  ? sprintf+0xd6/0x120
[ 2495.111064][T32471]  ? device_add_disk+0x30/0x30
[ 2495.115799][T32471]  ? vsprintf+0x30/0x30
[ 2495.119932][T32471]  ? device_initialize+0x1c7/0x3d0
[ 2495.125017][T32471]  ? __alloc_disk_node+0x326/0x380
[ 2495.130100][T32471]  loop_add+0x554/0x710
[ 2495.134226][T32471]  loop_control_ioctl+0x564/0x740
[ 2495.139225][T32471]  ? loop_remove+0xa0/0xa0
[ 2495.143628][T32471]  ? __lru_cache_add+0x1bf/0x210
[ 2495.148554][T32471]  ? memset+0x1f/0x40
[ 2495.152516][T32471]  ? fsnotify+0x1332/0x13f0
[ 2495.157006][T32471]  ? loop_remove+0xa0/0xa0
[ 2495.161403][T32471]  do_vfs_ioctl+0x744/0x1730
[ 2495.165967][T32471]  ? selinux_file_ioctl+0x723/0x970
[ 2495.171139][T32471]  ? ioctl_preallocate+0x250/0x250
[ 2495.176222][T32471]  ? __fget+0x40c/0x4a0
[ 2495.180345][T32471]  ? fget_many+0x20/0x20
[ 2495.184563][T32471]  ? check_preemption_disabled+0x154/0x330
[ 2495.190343][T32471]  ? debug_smp_processor_id+0x20/0x20
[ 2495.195688][T32471]  ? security_file_ioctl+0x9d/0xb0
[ 2495.200777][T32471]  __x64_sys_ioctl+0xd4/0x110
[ 2495.205432][T32471]  do_syscall_64+0xcb/0x1c0
[ 2495.209908][T32471]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2495.216359][T32471] "mq-deadline" elevator initialization failed, falling back to "none"
14:09:33 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 43)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0xb00)

[ 2495.237894][T32489] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32489 comm=syz-executor.1
14:09:33 executing program 4:
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x1c502, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000000c0)='%\x00', &(0x7f0000000100)='./file0\x00', r1)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000310aec15000018420000050000000036204e470000000000000018450000fbffffff00000000000000000285ca320085200000020000009500e70625322c511e460000fdff000095040000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = fsopen(&(0x7f0000000140)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000240)='\\-\\-\x00', &(0x7f0000000280)="fa86c20c27b3b8e5dfe8d1f2ee1046ec43cbd85728ca6f935eee38a9629349ba224317b4a3e278ff930e0a5d8929329e409215dcdc9587fd8a570d170166d4a903bd9a6526a5b19b4493d3e0ac9038c19cd5427738bb2e94c5bd67b2c027d3d2dbc1b473e2ec04985b3630455a39e53311a0103e03d9ac69cfbd89ff161c0289ea5a71e0dc3722937b92274276a5e3ee60a076c8f0d9cdc60d84a64d9a0bdafbbac8531ae5efbde7d7a7e943eb2ffcebed5382895dbdcdf8f052028063df302ef15bb0013a211197e028039b3d728db0ab2e9cef327b", 0xd6)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x1c502, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
pipe2$watch_queue(&(0x7f0000000080), 0x80) (async)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000000c0)='%\x00', &(0x7f0000000100)='./file0\x00', r1) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000310aec15000018420000050000000036204e470000000000000018450000fbffffff00000000000000000285ca320085200000020000009500e70625322c511e460000fdff000095040000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
fsopen(&(0x7f0000000140)='debugfs\x00', 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000240)='\\-\\-\x00', &(0x7f0000000280)="fa86c20c27b3b8e5dfe8d1f2ee1046ec43cbd85728ca6f935eee38a9629349ba224317b4a3e278ff930e0a5d8929329e409215dcdc9587fd8a570d170166d4a903bd9a6526a5b19b4493d3e0ac9038c19cd5427738bb2e94c5bd67b2c027d3d2dbc1b473e2ec04985b3630455a39e53311a0103e03d9ac69cfbd89ff161c0289ea5a71e0dc3722937b92274276a5e3ee60a076c8f0d9cdc60d84a64d9a0bdafbbac8531ae5efbde7d7a7e943eb2ffcebed5382895dbdcdf8f052028063df302ef15bb0013a211197e028039b3d728db0ab2e9cef327b", 0xd6) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2495.292625][T32491] FAULT_INJECTION: forcing a failure.
[ 2495.292625][T32491] name failslab, interval 1, probability 0, space 0, times 0
[ 2495.305421][T32491] CPU: 0 PID: 32491 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2495.315650][T32491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2495.325680][T32491] Call Trace:
[ 2495.328946][T32491]  dump_stack+0x1d8/0x241
[ 2495.333248][T32491]  ? panic+0x73e/0x73e
[ 2495.337286][T32491]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2495.343069][T32491]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2495.349110][T32491]  should_fail+0x709/0x870
[ 2495.353504][T32491]  ? setup_fault_attr+0x3d0/0x3d0
[ 2495.358504][T32491]  ? device_create_vargs+0x7d/0x210
[ 2495.363764][T32491]  should_failslab+0x5/0x20
[ 2495.368253][T32491]  kmem_cache_alloc_trace+0x28/0x240
[ 2495.373521][T32491]  device_create_vargs+0x7d/0x210
[ 2495.378516][T32491]  device_create+0xea/0x130
[ 2495.383108][T32491]  ? device_create_vargs+0x210/0x210
[ 2495.388367][T32491]  bdi_register_va+0x89/0x5e0
14:09:34 executing program 4:
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x1c502, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000000c0)='%\x00', &(0x7f0000000100)='./file0\x00', r1)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000310aec15000018420000050000000036204e470000000000000018450000fbffffff00000000000000000285ca320085200000020000009500e70625322c511e460000fdff000095040000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = fsopen(&(0x7f0000000140)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000240)='\\-\\-\x00', &(0x7f0000000280)="fa86c20c27b3b8e5dfe8d1f2ee1046ec43cbd85728ca6f935eee38a9629349ba224317b4a3e278ff930e0a5d8929329e409215dcdc9587fd8a570d170166d4a903bd9a6526a5b19b4493d3e0ac9038c19cd5427738bb2e94c5bd67b2c027d3d2dbc1b473e2ec04985b3630455a39e53311a0103e03d9ac69cfbd89ff161c0289ea5a71e0dc3722937b92274276a5e3ee60a076c8f0d9cdc60d84a64d9a0bdafbbac8531ae5efbde7d7a7e943eb2ffcebed5382895dbdcdf8f052028063df302ef15bb0013a211197e028039b3d728db0ab2e9cef327b", 0xd6)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x1c502, 0x0) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
pipe2$watch_queue(&(0x7f0000000080), 0x80) (async)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000000c0)='%\x00', &(0x7f0000000100)='./file0\x00', r1) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000310aec15000018420000050000000036204e470000000000000018450000fbffffff00000000000000000285ca320085200000020000009500e70625322c511e460000fdff000095040000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
fsopen(&(0x7f0000000140)='debugfs\x00', 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000240)='\\-\\-\x00', &(0x7f0000000280)="fa86c20c27b3b8e5dfe8d1f2ee1046ec43cbd85728ca6f935eee38a9629349ba224317b4a3e278ff930e0a5d8929329e409215dcdc9587fd8a570d170166d4a903bd9a6526a5b19b4493d3e0ac9038c19cd5427738bb2e94c5bd67b2c027d3d2dbc1b473e2ec04985b3630455a39e53311a0103e03d9ac69cfbd89ff161c0289ea5a71e0dc3722937b92274276a5e3ee60a076c8f0d9cdc60d84a64d9a0bdafbbac8531ae5efbde7d7a7e943eb2ffcebed5382895dbdcdf8f052028063df302ef15bb0013a211197e028039b3d728db0ab2e9cef327b", 0xd6) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2495.393027][T32491]  bdi_register+0xd1/0x120
[ 2495.397423][T32491]  ? __device_add_disk+0x539/0x1200
[ 2495.402591][T32491]  ? bdi_register_va+0x5e0/0x5e0
[ 2495.407500][T32491]  ? percpu_ref_resurrect+0x113/0x190
[ 2495.412853][T32491]  bdi_register_owner+0x56/0xf0
[ 2495.417689][T32491]  __device_add_disk+0x5b8/0x1200
[ 2495.422688][T32491]  ? device_add_disk+0x30/0x30
[ 2495.427421][T32491]  ? vsprintf+0x30/0x30
[ 2495.431547][T32491]  ? device_initialize+0x1c7/0x3d0
[ 2495.436641][T32491]  ? __alloc_disk_node+0x326/0x380
[ 2495.441744][T32491]  loop_add+0x554/0x710
[ 2495.445882][T32491]  loop_control_ioctl+0x564/0x740
[ 2495.450876][T32491]  ? loop_remove+0xa0/0xa0
[ 2495.455262][T32491]  ? __lru_cache_add+0x1bf/0x210
[ 2495.460170][T32491]  ? memset+0x1f/0x40
[ 2495.464120][T32491]  ? fsnotify+0x1332/0x13f0
[ 2495.468592][T32491]  ? loop_remove+0xa0/0xa0
[ 2495.472984][T32491]  do_vfs_ioctl+0x744/0x1730
[ 2495.477547][T32491]  ? selinux_file_ioctl+0x723/0x970
[ 2495.482718][T32491]  ? ioctl_preallocate+0x250/0x250
[ 2495.487803][T32491]  ? __fget+0x40c/0x4a0
14:09:34 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x0) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000005640bfda0000000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x40}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}]}, 0x4c}}, 0x1) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2495.491927][T32491]  ? fget_many+0x20/0x20
[ 2495.496140][T32491]  ? check_preemption_disabled+0x154/0x330
[ 2495.501917][T32491]  ? debug_smp_processor_id+0x20/0x20
[ 2495.507264][T32491]  ? security_file_ioctl+0x9d/0xb0
[ 2495.512346][T32491]  __x64_sys_ioctl+0xd4/0x110
[ 2495.517022][T32491]  do_syscall_64+0xcb/0x1c0
[ 2495.521499][T32491]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2495.529525][T32491] ------------[ cut here ]------------
[ 2495.534992][T32491] WARNING: CPU: 0 PID: 32491 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
14:09:34 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000a00000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000000000000b1574885284f3eac2"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)='.@)*\xd3^..\x00', &(0x7f0000000280)='\x00', 0x0)
r5 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000580)={0xffffffffffffffff}, 0x4)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
r7 = fsmount(r1, 0x1, 0x4)
r8 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r1}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_ext={0x1c, 0xb, &(0x7f00000002c0)=@raw=[@generic={0x2f, 0x4, 0x9, 0x9, 0x6}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, @generic={0x0, 0x5, 0x9, 0x2, 0x81}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffe}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4}], &(0x7f0000000340)='GPL\x00', 0x7, 0xa1, &(0x7f0000000380)=""/161, 0x41000, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0xf, 0x3, 0x1800}, 0x10, 0x5a72, r5, 0x0, &(0x7f0000000600)=[r3, r1, r6, r3, r1, r7, r8]}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000700)={'team0\x00', <r10=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000740)={'team0\x00', <r11=>0x0})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r12=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r12, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000a40)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000780)={0x248, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r9}, {0x1e0, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r11}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7fffffff}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r12}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r4}}}]}}]}, 0x248}, 0x1, 0x0, 0x0, 0x80}, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))

[ 2495.544072][T32491] Modules linked in:
[ 2495.547951][T32491] CPU: 0 PID: 32491 Comm: syz-executor.0 Not tainted 5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2495.558156][T32491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2495.568208][T32491] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2495.574006][T32491] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2495.593590][T32491] RSP: 0018:ffff8881d722fa00 EFLAGS: 00010246
[ 2495.599626][T32491] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2495.607568][T32491] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2495.615510][T32491] RBP: ffff8881d722fb40 R08: ffffffff821f8e93 R09: fffffbfff0bac467
[ 2495.623449][T32491] R10: fffffbfff0bac467 R11: 1ffffffff0bac466 R12: ffff8881e8a34000
[ 2495.631396][T32491] R13: dffffc0000000000 R14: ffff8881e8a34070 R15: 1ffff1103d14689d
[ 2495.639348][T32491] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2495.648246][T32491] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2495.654801][T32491] CR2: 00007fe14a010dc0 CR3: 00000001e09ca000 CR4: 00000000003406f0
[ 2495.662747][T32491] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2495.670692][T32491] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2495.678639][T32491] Call Trace:
[ 2495.681989][T32491]  ? device_add_disk+0x30/0x30
[ 2495.686733][T32491]  ? vsprintf+0x30/0x30
[ 2495.690864][T32491]  ? device_initialize+0x1c7/0x3d0
[ 2495.695949][T32491]  ? __alloc_disk_node+0x326/0x380
[ 2495.701034][T32491]  loop_add+0x554/0x710
[ 2495.705162][T32491]  loop_control_ioctl+0x564/0x740
[ 2495.710156][T32491]  ? loop_remove+0xa0/0xa0
[ 2495.714541][T32491]  ? __lru_cache_add+0x1bf/0x210
[ 2495.719446][T32491]  ? memset+0x1f/0x40
[ 2495.723397][T32491]  ? fsnotify+0x1332/0x13f0
[ 2495.727875][T32491]  ? loop_remove+0xa0/0xa0
[ 2495.732274][T32491]  do_vfs_ioctl+0x744/0x1730
[ 2495.736845][T32491]  ? selinux_file_ioctl+0x723/0x970
14:09:34 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:34 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:34 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 44)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2495.742014][T32491]  ? ioctl_preallocate+0x250/0x250
[ 2495.747093][T32491]  ? __fget+0x40c/0x4a0
[ 2495.751217][T32491]  ? fget_many+0x20/0x20
[ 2495.755428][T32491]  ? check_preemption_disabled+0x154/0x330
[ 2495.761204][T32491]  ? debug_smp_processor_id+0x20/0x20
[ 2495.766542][T32491]  ? security_file_ioctl+0x9d/0xb0
[ 2495.771622][T32491]  __x64_sys_ioctl+0xd4/0x110
[ 2495.776278][T32491]  do_syscall_64+0xcb/0x1c0
[ 2495.780767][T32491]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2495.786627][T32491] ---[ end trace 7583e5513725d270 ]---
14:09:34 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 64)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000a00000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000000000000b1574885284f3eac2"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)='.@)*\xd3^..\x00', &(0x7f0000000280)='\x00', 0x0) (async, rerun: 32)
r5 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000580)={0xffffffffffffffff}, 0x4) (async, rerun: 32)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
r7 = fsmount(r1, 0x1, 0x4) (async)
r8 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r1}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_ext={0x1c, 0xb, &(0x7f00000002c0)=@raw=[@generic={0x2f, 0x4, 0x9, 0x9, 0x6}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, @generic={0x0, 0x5, 0x9, 0x2, 0x81}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffe}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4}], &(0x7f0000000340)='GPL\x00', 0x7, 0xa1, &(0x7f0000000380)=""/161, 0x41000, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0xf, 0x3, 0x1800}, 0x10, 0x5a72, r5, 0x0, &(0x7f0000000600)=[r3, r1, r6, r3, r1, r7, r8]}, 0x80) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10) (rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000700)={'team0\x00', <r10=>0x0}) (async, rerun: 32)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000740)={'team0\x00', <r11=>0x0}) (rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r12=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r12, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000a40)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000780)={0x248, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r9}, {0x1e0, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r11}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7fffffff}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r12}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r4}}}]}}]}, 0x248}, 0x1, 0x0, 0x0, 0x80}, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))

14:09:34 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r8 = syz_open_dev$mouse(&(0x7f0000000540), 0xffffffffffffffff, 0x210200)
r9 = openat$cgroup_ro(r6, &(0x7f0000000880)='blkio.bfq.time_recursive\x00', 0x0, 0x0)
r10 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r10, 0x0, 0x0)
r11 = syz_open_dev$mouse(&(0x7f00000008c0), 0x7, 0x4200)
r12 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r12, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0xa, &(0x7f00000006c0)=@raw=[@ldst={0x2, 0x0, 0x2, 0x4, 0xa, 0xffffffffffffffe0, 0xffffffffffffffff}, @alu={0x4, 0x1, 0x0, 0x3, 0x9, 0x18}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xc2}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x4}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @alu={0x7, 0x1, 0x3, 0x0, 0x7, 0xfffffffffffffff8, 0x1}], &(0x7f0000000740)='syzkaller\x00', 0x6, 0x7a, &(0x7f0000000780)=""/122, 0x40f00, 0x10, '\x00', r7, 0x18, r8, 0x8, &(0x7f0000000800)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x1, 0xc, 0x4, 0x6}, 0x10, 0x1031e, r8, 0x0, &(0x7f0000000900)=[r9, r10, r6, r1, r4, r11, r6, r1, r12]}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:34 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0xc00)

[ 2495.843204][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2495.862039][T32554] FAULT_INJECTION: forcing a failure.
[ 2495.862039][T32554] name failslab, interval 1, probability 0, space 0, times 0
[ 2495.875191][T32554] CPU: 0 PID: 32554 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
14:09:34 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) (rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r2 = fsopen(0x0, 0x0) (rerun: 32)
r3 = fsmount(r2, 0x0, 0x6) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000a00000000000018450000fdffffff00000000000000008520000002000000950000000000000095000000000000000b1574885284f3eac2"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)='.@)*\xd3^..\x00', &(0x7f0000000280)='\x00', 0x0) (async)
r5 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000580)={0xffffffffffffffff}, 0x4) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
r7 = fsmount(r1, 0x1, 0x4)
r8 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r1}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_ext={0x1c, 0xb, &(0x7f00000002c0)=@raw=[@generic={0x2f, 0x4, 0x9, 0x9, 0x6}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9}, @generic={0x0, 0x5, 0x9, 0x2, 0x81}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffe}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4}], &(0x7f0000000340)='GPL\x00', 0x7, 0xa1, &(0x7f0000000380)=""/161, 0x41000, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0xf, 0x3, 0x1800}, 0x10, 0x5a72, r5, 0x0, &(0x7f0000000600)=[r3, r1, r6, r3, r1, r7, r8]}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000700)={'team0\x00', <r10=>0x0}) (rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000740)={'team0\x00', <r11=>0x0}) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r12=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r12, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000a40)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000780)={0x248, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r9}, {0x1e0, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r11}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7fffffff}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r12}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r4}}}]}}]}, 0x248}, 0x1, 0x0, 0x0, 0x80}, 0x0) (rerun: 64)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))

[ 2495.886805][T32554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2495.896840][T32554] Call Trace:
[ 2495.900115][T32554]  dump_stack+0x1d8/0x241
[ 2495.904422][T32554]  ? panic+0x73e/0x73e
[ 2495.908470][T32554]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2495.914301][T32554]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2495.920350][T32554]  should_fail+0x709/0x870
[ 2495.924872][T32554]  ? setup_fault_attr+0x3d0/0x3d0
[ 2495.929896][T32554]  ? device_create_vargs+0x7d/0x210
[ 2495.935192][T32554]  should_failslab+0x5/0x20
14:09:34 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2)
r3 = fsopen(0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x6)
setsockopt$MRT_DEL_VIF(r1, 0x0, 0xcb, &(0x7f0000000080)={0x1, 0x0, 0x3f, 0x1, @vifc_lcl_addr=@multicast1, @private=0xa010100}, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
socketpair(0x25, 0x2, 0x6, &(0x7f0000000040))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x2, &(0x7f0000001c40)=@raw=[@generic={0x8, 0x6, 0x4, 0xf000, 0xfff}, @alu={0x4, 0x1, 0x6, 0x1, 0x6, 0x1, 0xffffffffffffffff}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, r4, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x805, 0xc, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2495.939669][T32554]  kmem_cache_alloc_trace+0x28/0x240
[ 2495.944929][T32554]  device_create_vargs+0x7d/0x210
[ 2495.949933][T32554]  device_create+0xea/0x130
[ 2495.954417][T32554]  ? device_create_vargs+0x210/0x210
[ 2495.959681][T32554]  bdi_register_va+0x89/0x5e0
[ 2495.964336][T32554]  bdi_register+0xd1/0x120
[ 2495.968730][T32554]  ? __device_add_disk+0x539/0x1200
[ 2495.973911][T32554]  ? bdi_register_va+0x5e0/0x5e0
[ 2495.978853][T32554]  ? percpu_ref_resurrect+0x113/0x190
[ 2495.984210][T32554]  bdi_register_owner+0x56/0xf0
[ 2495.989036][T32554]  __device_add_disk+0x5b8/0x1200
[ 2495.994033][T32554]  ? device_add_disk+0x30/0x30
[ 2495.998773][T32554]  ? vsprintf+0x30/0x30
[ 2496.002918][T32554]  ? device_initialize+0x1c7/0x3d0
[ 2496.008006][T32554]  ? __alloc_disk_node+0x326/0x380
[ 2496.013093][T32554]  loop_add+0x554/0x710
[ 2496.017227][T32554]  loop_control_ioctl+0x564/0x740
[ 2496.022231][T32554]  ? loop_remove+0xa0/0xa0
[ 2496.026640][T32554]  ? __lru_cache_add+0x1bf/0x210
[ 2496.031570][T32554]  ? memset+0x1f/0x40
[ 2496.035547][T32554]  ? fsnotify+0x1332/0x13f0
[ 2496.040034][T32554]  ? loop_remove+0xa0/0xa0
[ 2496.044424][T32554]  do_vfs_ioctl+0x744/0x1730
[ 2496.048988][T32554]  ? selinux_file_ioctl+0x723/0x970
[ 2496.054167][T32554]  ? ioctl_preallocate+0x250/0x250
[ 2496.059259][T32554]  ? __fget+0x40c/0x4a0
[ 2496.063386][T32554]  ? fget_many+0x20/0x20
[ 2496.067601][T32554]  ? check_preemption_disabled+0x154/0x330
[ 2496.073380][T32554]  ? debug_smp_processor_id+0x20/0x20
[ 2496.078719][T32554]  ? security_file_ioctl+0x9d/0xb0
[ 2496.083805][T32554]  __x64_sys_ioctl+0xd4/0x110
[ 2496.088464][T32554]  do_syscall_64+0xcb/0x1c0
[ 2496.092942][T32554]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2496.101039][T32554] ------------[ cut here ]------------
[ 2496.106522][T32554] WARNING: CPU: 1 PID: 32554 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2496.115620][T32554] Modules linked in:
[ 2496.119492][T32554] CPU: 1 PID: 32554 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2496.131075][T32554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2496.141106][T32554] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2496.146879][T32554] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2496.166623][T32554] RSP: 0018:ffff8881ced1fa00 EFLAGS: 00010246
[ 2496.172653][T32554] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2496.180591][T32554] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2496.188545][T32554] RBP: ffff8881ced1fb40 R08: ffffffff821f8e93 R09: fffffbfff0bac467
[ 2496.196484][T32554] R10: fffffbfff0bac467 R11: 1ffffffff0bac466 R12: ffff8881cfe49000
[ 2496.204421][T32554] R13: dffffc0000000000 R14: ffff8881cfe49070 R15: 1ffff11039fc929d
[ 2496.212367][T32554] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2496.221267][T32554] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2496.227821][T32554] CR2: 00007ff7d84faff8 CR3: 00000001e09ca000 CR4: 00000000003406e0
[ 2496.235768][T32554] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2496.243711][T32554] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2496.251691][T32554] Call Trace:
[ 2496.254955][T32554]  ? device_add_disk+0x30/0x30
[ 2496.259686][T32554]  ? vsprintf+0x30/0x30
[ 2496.263808][T32554]  ? device_initialize+0x1c7/0x3d0
[ 2496.268895][T32554]  ? __alloc_disk_node+0x326/0x380
[ 2496.273978][T32554]  loop_add+0x554/0x710
[ 2496.278105][T32554]  loop_control_ioctl+0x564/0x740
[ 2496.283096][T32554]  ? loop_remove+0xa0/0xa0
[ 2496.287481][T32554]  ? __lru_cache_add+0x1bf/0x210
[ 2496.292386][T32554]  ? memset+0x1f/0x40
[ 2496.296334][T32554]  ? fsnotify+0x1332/0x13f0
[ 2496.300804][T32554]  ? loop_remove+0xa0/0xa0
[ 2496.305185][T32554]  do_vfs_ioctl+0x744/0x1730
[ 2496.309742][T32554]  ? selinux_file_ioctl+0x723/0x970
[ 2496.314905][T32554]  ? ioctl_preallocate+0x250/0x250
[ 2496.319981][T32554]  ? __fget+0x40c/0x4a0
[ 2496.324108][T32554]  ? fget_many+0x20/0x20
[ 2496.328319][T32554]  ? check_preemption_disabled+0x154/0x330
[ 2496.334102][T32554]  ? debug_smp_processor_id+0x20/0x20
[ 2496.339451][T32554]  ? security_file_ioctl+0x9d/0xb0
14:09:35 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 45)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:35 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0xd00)

[ 2496.344546][T32554]  __x64_sys_ioctl+0xd4/0x110
[ 2496.349196][T32554]  do_syscall_64+0xcb/0x1c0
[ 2496.353672][T32554]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2496.359535][T32554] ---[ end trace 7583e5513725d271 ]---
14:09:35 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2)
r3 = fsopen(0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x6)
setsockopt$MRT_DEL_VIF(r1, 0x0, 0xcb, &(0x7f0000000080)={0x1, 0x0, 0x3f, 0x1, @vifc_lcl_addr=@multicast1, @private=0xa010100}, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
socketpair(0x25, 0x2, 0x6, &(0x7f0000000040)) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x2, &(0x7f0000001c40)=@raw=[@generic={0x8, 0x6, 0x4, 0xf000, 0xfff}, @alu={0x4, 0x1, 0x6, 0x1, 0x6, 0x1, 0xffffffffffffffff}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, r4, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x805, 0xc, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:35 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:35 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r8 = syz_open_dev$mouse(&(0x7f0000000540), 0xffffffffffffffff, 0x210200)
r9 = openat$cgroup_ro(r6, &(0x7f0000000880)='blkio.bfq.time_recursive\x00', 0x0, 0x0) (async)
r10 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r10, 0x0, 0x0)
r11 = syz_open_dev$mouse(&(0x7f00000008c0), 0x7, 0x4200) (async)
r12 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r12, 0x0, 0x0) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0xa, &(0x7f00000006c0)=@raw=[@ldst={0x2, 0x0, 0x2, 0x4, 0xa, 0xffffffffffffffe0, 0xffffffffffffffff}, @alu={0x4, 0x1, 0x0, 0x3, 0x9, 0x18}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xc2}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x4}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @alu={0x7, 0x1, 0x3, 0x0, 0x7, 0xfffffffffffffff8, 0x1}], &(0x7f0000000740)='syzkaller\x00', 0x6, 0x7a, &(0x7f0000000780)=""/122, 0x40f00, 0x10, '\x00', r7, 0x18, r8, 0x8, &(0x7f0000000800)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x1, 0xc, 0x4, 0x6}, 0x10, 0x1031e, r8, 0x0, &(0x7f0000000900)=[r9, r10, r6, r1, r4, r11, r6, r1, r12]}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:35 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:35 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0xe00)

[ 2496.422304][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2496.438335][T32592] FAULT_INJECTION: forcing a failure.
[ 2496.438335][T32592] name failslab, interval 1, probability 0, space 0, times 0
[ 2496.451159][T32592] CPU: 0 PID: 32592 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2496.462900][T32592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2496.472937][T32592] Call Trace:
[ 2496.476206][T32592]  dump_stack+0x1d8/0x241
[ 2496.480510][T32592]  ? panic+0x73e/0x73e
[ 2496.484664][T32592]  ? bdi_register_va+0x89/0x5e0
[ 2496.489492][T32592]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2496.495269][T32592]  ? loop_add+0x554/0x710
[ 2496.499569][T32592]  ? do_vfs_ioctl+0x744/0x1730
[ 2496.504301][T32592]  ? __x64_sys_ioctl+0xd4/0x110
[ 2496.509122][T32592]  ? do_syscall_64+0xcb/0x1c0
[ 2496.513775][T32592]  should_fail+0x709/0x870
[ 2496.518168][T32592]  ? setup_fault_attr+0x3d0/0x3d0
[ 2496.523161][T32592]  ? _raw_spin_lock+0x1b0/0x1b0
[ 2496.527992][T32592]  ? memset+0x1f/0x40
[ 2496.531953][T32592]  ? kobject_set_name_vargs+0x5d/0x110
[ 2496.537391][T32592]  should_failslab+0x5/0x20
[ 2496.541872][T32592]  __kmalloc_track_caller+0x4f/0x280
[ 2496.547131][T32592]  kstrdup_const+0x51/0x90
[ 2496.551517][T32592]  kobject_set_name_vargs+0x5d/0x110
[ 2496.556771][T32592]  device_create_vargs+0x182/0x210
[ 2496.561854][T32592]  device_create+0xea/0x130
[ 2496.566333][T32592]  ? device_create_vargs+0x210/0x210
[ 2496.571591][T32592]  bdi_register_va+0x89/0x5e0
[ 2496.576242][T32592]  bdi_register+0xd1/0x120
[ 2496.580633][T32592]  ? __device_add_disk+0x539/0x1200
[ 2496.585799][T32592]  ? bdi_register_va+0x5e0/0x5e0
[ 2496.590712][T32592]  ? percpu_ref_resurrect+0x113/0x190
[ 2496.596062][T32592]  bdi_register_owner+0x56/0xf0
[ 2496.600884][T32592]  __device_add_disk+0x5b8/0x1200
[ 2496.605877][T32592]  ? device_add_disk+0x30/0x30
[ 2496.610640][T32592]  ? vsprintf+0x30/0x30
[ 2496.614774][T32592]  ? device_initialize+0x1c7/0x3d0
[ 2496.619867][T32592]  ? __alloc_disk_node+0x326/0x380
[ 2496.624952][T32592]  loop_add+0x554/0x710
[ 2496.629084][T32592]  loop_control_ioctl+0x564/0x740
[ 2496.634089][T32592]  ? loop_remove+0xa0/0xa0
[ 2496.638487][T32592]  ? __lru_cache_add+0x1bf/0x210
[ 2496.643392][T32592]  ? memset+0x1f/0x40
[ 2496.647345][T32592]  ? fsnotify+0x1332/0x13f0
[ 2496.651815][T32592]  ? loop_remove+0xa0/0xa0
[ 2496.656199][T32592]  do_vfs_ioctl+0x744/0x1730
[ 2496.660760][T32592]  ? selinux_file_ioctl+0x723/0x970
[ 2496.665931][T32592]  ? ioctl_preallocate+0x250/0x250
[ 2496.671039][T32592]  ? __fget+0x40c/0x4a0
[ 2496.675174][T32592]  ? fget_many+0x20/0x20
[ 2496.679387][T32592]  ? check_preemption_disabled+0x154/0x330
[ 2496.685165][T32592]  ? debug_smp_processor_id+0x20/0x20
[ 2496.690510][T32592]  ? security_file_ioctl+0x9d/0xb0
[ 2496.695608][T32592]  __x64_sys_ioctl+0xd4/0x110
[ 2496.700263][T32592]  do_syscall_64+0xcb/0x1c0
[ 2496.704737][T32592]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2496.711434][T32592] ------------[ cut here ]------------
[ 2496.717063][T32592] WARNING: CPU: 0 PID: 32592 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2496.726130][T32592] Modules linked in:
[ 2496.729999][T32592] CPU: 0 PID: 32592 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2496.741592][T32592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2496.751626][T32592] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2496.757402][T32592] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2496.776973][T32592] RSP: 0018:ffff8881df897a00 EFLAGS: 00010246
[ 2496.783016][T32592] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2496.790972][T32592] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2496.798926][T32592] RBP: ffff8881df897b40 R08: ffffffff821f8e93 R09: 0000000000000003
[ 2496.806865][T32592] R10: ffffed103bf12e51 R11: 1ffff1103bf12e50 R12: ffff8881cc347000
[ 2496.814809][T32592] R13: dffffc0000000000 R14: ffff8881cc347070 R15: 1ffff11039868e9d
[ 2496.822751][T32592] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2496.831646][T32592] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2496.838206][T32592] CR2: 00007fc99aab7d38 CR3: 00000001ec18a000 CR4: 00000000003406f0
[ 2496.846154][T32592] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2496.854095][T32592] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2496.862034][T32592] Call Trace:
[ 2496.865303][T32592]  ? device_add_disk+0x30/0x30
[ 2496.870035][T32592]  ? vsprintf+0x30/0x30
[ 2496.874161][T32592]  ? device_initialize+0x1c7/0x3d0
[ 2496.879243][T32592]  ? __alloc_disk_node+0x326/0x380
[ 2496.884358][T32592]  loop_add+0x554/0x710
[ 2496.888485][T32592]  loop_control_ioctl+0x564/0x740
[ 2496.893486][T32592]  ? loop_remove+0xa0/0xa0
[ 2496.897894][T32592]  ? __lru_cache_add+0x1bf/0x210
[ 2496.902807][T32592]  ? memset+0x1f/0x40
[ 2496.906785][T32592]  ? fsnotify+0x1332/0x13f0
[ 2496.911261][T32592]  ? loop_remove+0xa0/0xa0
[ 2496.915651][T32592]  do_vfs_ioctl+0x744/0x1730
[ 2496.920210][T32592]  ? selinux_file_ioctl+0x723/0x970
[ 2496.925376][T32592]  ? ioctl_preallocate+0x250/0x250
[ 2496.930457][T32592]  ? __fget+0x40c/0x4a0
[ 2496.934587][T32592]  ? fget_many+0x20/0x20
[ 2496.938798][T32592]  ? check_preemption_disabled+0x154/0x330
[ 2496.944579][T32592]  ? debug_smp_processor_id+0x20/0x20
[ 2496.949918][T32592]  ? security_file_ioctl+0x9d/0xb0
[ 2496.955086][T32592]  __x64_sys_ioctl+0xd4/0x110
[ 2496.959736][T32592]  do_syscall_64+0xcb/0x1c0
[ 2496.964208][T32592]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:35 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 46)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2496.970075][T32592] ---[ end trace 7583e5513725d272 ]---
14:09:35 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1100)

14:09:35 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x2) (async)
r3 = fsopen(0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x6) (async)
setsockopt$MRT_DEL_VIF(r1, 0x0, 0xcb, &(0x7f0000000080)={0x1, 0x0, 0x3f, 0x1, @vifc_lcl_addr=@multicast1, @private=0xa010100}, 0x10) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 64)
socketpair(0x25, 0x2, 0x6, &(0x7f0000000040))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x2, &(0x7f0000001c40)=@raw=[@generic={0x8, 0x6, 0x4, 0xf000, 0xfff}, @alu={0x4, 0x1, 0x6, 0x1, 0x6, 0x1, 0xffffffffffffffff}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, r4, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x805, 0xc, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:35 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:35 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
r8 = syz_open_dev$mouse(&(0x7f0000000540), 0xffffffffffffffff, 0x210200)
r9 = openat$cgroup_ro(r6, &(0x7f0000000880)='blkio.bfq.time_recursive\x00', 0x0, 0x0)
r10 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r10, 0x0, 0x0)
r11 = syz_open_dev$mouse(&(0x7f00000008c0), 0x7, 0x4200) (async)
r12 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r12, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_tracing={0x1a, 0xa, &(0x7f00000006c0)=@raw=[@ldst={0x2, 0x0, 0x2, 0x4, 0xa, 0xffffffffffffffe0, 0xffffffffffffffff}, @alu={0x4, 0x1, 0x0, 0x3, 0x9, 0x18}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xc2}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x4}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @alu={0x7, 0x1, 0x3, 0x0, 0x7, 0xfffffffffffffff8, 0x1}], &(0x7f0000000740)='syzkaller\x00', 0x6, 0x7a, &(0x7f0000000780)=""/122, 0x40f00, 0x10, '\x00', r7, 0x18, r8, 0x8, &(0x7f0000000800)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x1, 0xc, 0x4, 0x6}, 0x10, 0x1031e, r8, 0x0, &(0x7f0000000900)=[r9, r10, r6, r1, r4, r11, r6, r1, r12]}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2497.023109][T32619] FAULT_INJECTION: forcing a failure.
[ 2497.023109][T32619] name failslab, interval 1, probability 0, space 0, times 0
[ 2497.042527][T32619] CPU: 1 PID: 32619 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2497.054168][T32619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2497.064203][T32619] Call Trace:
[ 2497.067489][T32619]  dump_stack+0x1d8/0x241
[ 2497.071797][T32619]  ? panic+0x73e/0x73e
[ 2497.075838][T32619]  ? unwind_next_frame+0x149e/0x1ed0
[ 2497.081089][T32619]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2497.086862][T32619]  ? check_preemption_disabled+0x9e/0x330
[ 2497.092555][T32619]  should_fail+0x709/0x870
[ 2497.096946][T32619]  ? setup_fault_attr+0x3d0/0x3d0
[ 2497.101946][T32619]  ? deref_stack_reg+0x1f0/0x1f0
[ 2497.106854][T32619]  ? __unwind_start+0x72f/0x8e0
[ 2497.111725][T32619]  ? __kernfs_new_node+0x99/0x6d0
[ 2497.116730][T32619]  should_failslab+0x5/0x20
[ 2497.121201][T32619]  __kmalloc_track_caller+0x4f/0x280
[ 2497.126554][T32619]  ? stack_trace_save+0x200/0x200
[ 2497.131574][T32619]  kstrdup_const+0x51/0x90
[ 2497.135965][T32619]  __kernfs_new_node+0x99/0x6d0
[ 2497.140786][T32619]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.146829][T32619]  ? kernfs_new_node+0x160/0x160
[ 2497.151743][T32619]  ? stack_trace_save+0x132/0x200
[ 2497.156747][T32619]  ? stack_trace_snprint+0x170/0x170
[ 2497.162007][T32619]  ? stack_trace_save+0x132/0x200
[ 2497.167006][T32619]  kernfs_create_dir_ns+0x90/0x220
[ 2497.172091][T32619]  sysfs_create_dir_ns+0x181/0x390
[ 2497.177172][T32619]  ? sysfs_warn_dup+0xa0/0xa0
[ 2497.181820][T32619]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.187864][T32619]  kobject_add_internal+0x6ba/0xcb0
[ 2497.193045][T32619]  kobject_add+0x14c/0x210
[ 2497.197430][T32619]  ? _raw_spin_lock+0xa3/0x1b0
[ 2497.202270][T32619]  ? kobject_init+0x1d0/0x1d0
[ 2497.206922][T32619]  ? mutex_unlock+0x19/0x40
[ 2497.211394][T32619]  ? get_device_parent+0x2bd/0x420
[ 2497.216481][T32619]  device_add+0x3fc/0xbc0
[ 2497.220791][T32619]  device_create_vargs+0x1b8/0x210
[ 2497.225878][T32619]  device_create+0xea/0x130
[ 2497.230353][T32619]  ? device_create_vargs+0x210/0x210
[ 2497.235608][T32619]  bdi_register_va+0x89/0x5e0
[ 2497.240256][T32619]  bdi_register+0xd1/0x120
[ 2497.244645][T32619]  ? __device_add_disk+0x539/0x1200
[ 2497.249812][T32619]  ? bdi_register_va+0x5e0/0x5e0
[ 2497.254721][T32619]  ? percpu_ref_resurrect+0x113/0x190
[ 2497.260073][T32619]  bdi_register_owner+0x56/0xf0
[ 2497.264902][T32619]  __device_add_disk+0x5b8/0x1200
[ 2497.269907][T32619]  ? device_add_disk+0x30/0x30
[ 2497.274646][T32619]  ? vsprintf+0x30/0x30
[ 2497.278771][T32619]  ? device_initialize+0x1c7/0x3d0
[ 2497.283849][T32619]  ? __alloc_disk_node+0x326/0x380
[ 2497.288929][T32619]  loop_add+0x554/0x710
[ 2497.293059][T32619]  loop_control_ioctl+0x564/0x740
[ 2497.298051][T32619]  ? loop_remove+0xa0/0xa0
[ 2497.302452][T32619]  ? __lru_cache_add+0x1bf/0x210
[ 2497.307376][T32619]  ? memset+0x1f/0x40
[ 2497.311339][T32619]  ? fsnotify+0x1332/0x13f0
[ 2497.315820][T32619]  ? loop_remove+0xa0/0xa0
[ 2497.320205][T32619]  do_vfs_ioctl+0x744/0x1730
[ 2497.324773][T32619]  ? selinux_file_ioctl+0x723/0x970
[ 2497.329940][T32619]  ? ioctl_preallocate+0x250/0x250
[ 2497.335020][T32619]  ? __fget+0x40c/0x4a0
[ 2497.339143][T32619]  ? fget_many+0x20/0x20
[ 2497.343386][T32619]  ? check_preemption_disabled+0x154/0x330
[ 2497.349160][T32619]  ? debug_smp_processor_id+0x20/0x20
[ 2497.354500][T32619]  ? security_file_ioctl+0x9d/0xb0
[ 2497.359604][T32619]  __x64_sys_ioctl+0xd4/0x110
[ 2497.364268][T32619]  do_syscall_64+0xcb/0x1c0
[ 2497.368752][T32619]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.375125][T32619] kobject_add_internal failed for 7:0 (error: -12 parent: bdi)
[ 2497.382797][T32619] ------------[ cut here ]------------
[ 2497.388262][T32619] WARNING: CPU: 1 PID: 32619 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2497.397334][T32619] Modules linked in:
[ 2497.401203][T32619] CPU: 1 PID: 32619 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2497.412790][T32619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2497.422824][T32619] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2497.428612][T32619] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2497.448195][T32619] RSP: 0018:ffff8881ced1fa00 EFLAGS: 00010246
[ 2497.454232][T32619] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2497.462180][T32619] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2497.470123][T32619] RBP: ffff8881ced1fb40 R08: ffffffff821f8e93 R09: 0000000000000003
[ 2497.478065][T32619] R10: ffffed1039da3e55 R11: 1ffff11039da3e54 R12: ffff8881cb375000
[ 2497.486012][T32619] R13: dffffc0000000000 R14: ffff8881cb375070 R15: 1ffff1103966ea9d
[ 2497.494058][T32619] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2497.502969][T32619] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2497.509541][T32619] CR2: 00007ff7be771718 CR3: 00000001ee803000 CR4: 00000000003406e0
[ 2497.517496][T32619] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2497.525449][T32619] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2497.533389][T32619] Call Trace:
[ 2497.536663][T32619]  ? device_add_disk+0x30/0x30
[ 2497.541395][T32619]  ? vsprintf+0x30/0x30
[ 2497.545525][T32619]  ? device_initialize+0x1c7/0x3d0
[ 2497.550602][T32619]  ? __alloc_disk_node+0x326/0x380
[ 2497.555681][T32619]  loop_add+0x554/0x710
[ 2497.559817][T32619]  loop_control_ioctl+0x564/0x740
[ 2497.564820][T32619]  ? loop_remove+0xa0/0xa0
[ 2497.569207][T32619]  ? __lru_cache_add+0x1bf/0x210
[ 2497.574111][T32619]  ? memset+0x1f/0x40
[ 2497.578064][T32619]  ? fsnotify+0x1332/0x13f0
[ 2497.582536][T32619]  ? loop_remove+0xa0/0xa0
[ 2497.586921][T32619]  do_vfs_ioctl+0x744/0x1730
[ 2497.591488][T32619]  ? selinux_file_ioctl+0x723/0x970
[ 2497.596662][T32619]  ? ioctl_preallocate+0x250/0x250
[ 2497.601740][T32619]  ? __fget+0x40c/0x4a0
[ 2497.605863][T32619]  ? fget_many+0x20/0x20
[ 2497.610074][T32619]  ? check_preemption_disabled+0x154/0x330
[ 2497.615848][T32619]  ? debug_smp_processor_id+0x20/0x20
[ 2497.621189][T32619]  ? security_file_ioctl+0x9d/0xb0
14:09:36 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 47)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2497.626268][T32619]  __x64_sys_ioctl+0xd4/0x110
[ 2497.630913][T32619]  do_syscall_64+0xcb/0x1c0
[ 2497.635385][T32619]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.641246][T32619] ---[ end trace 7583e5513725d273 ]---
14:09:36 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:36 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:36 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:36 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f00000002c0)='omfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="181000000000000000e9f8a8930000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:36 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1200)

[ 2497.697607][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2497.713205][T32644] FAULT_INJECTION: forcing a failure.
[ 2497.713205][T32644] name failslab, interval 1, probability 0, space 0, times 0
[ 2497.726963][T32644] CPU: 1 PID: 32644 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2497.738577][T32644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2497.748609][T32644] Call Trace:
[ 2497.751875][T32644]  dump_stack+0x1d8/0x241
[ 2497.756210][T32644]  ? panic+0x73e/0x73e
[ 2497.760249][T32644]  ? unwind_next_frame+0x149e/0x1ed0
[ 2497.765503][T32644]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2497.771279][T32644]  should_fail+0x709/0x870
[ 2497.775663][T32644]  ? setup_fault_attr+0x3d0/0x3d0
[ 2497.780661][T32644]  ? deref_stack_reg+0x1f0/0x1f0
[ 2497.785699][T32644]  ? __unwind_start+0x72f/0x8e0
[ 2497.790528][T32644]  ? __kernfs_new_node+0x99/0x6d0
[ 2497.795528][T32644]  should_failslab+0x5/0x20
[ 2497.800005][T32644]  __kmalloc_track_caller+0x4f/0x280
[ 2497.805260][T32644]  ? stack_trace_save+0x200/0x200
[ 2497.810261][T32644]  kstrdup_const+0x51/0x90
[ 2497.814647][T32644]  __kernfs_new_node+0x99/0x6d0
[ 2497.819470][T32644]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.825516][T32644]  ? kernfs_new_node+0x160/0x160
[ 2497.830426][T32644]  ? stack_trace_save+0x132/0x200
[ 2497.835437][T32644]  ? stack_trace_snprint+0x170/0x170
[ 2497.840707][T32644]  ? stack_trace_save+0x132/0x200
[ 2497.845706][T32644]  kernfs_create_dir_ns+0x90/0x220
[ 2497.850784][T32644]  sysfs_create_dir_ns+0x181/0x390
[ 2497.855861][T32644]  ? sysfs_warn_dup+0xa0/0xa0
[ 2497.860510][T32644]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2497.866636][T32644]  kobject_add_internal+0x6ba/0xcb0
[ 2497.871804][T32644]  kobject_add+0x14c/0x210
[ 2497.876188][T32644]  ? _raw_spin_lock+0xa3/0x1b0
[ 2497.880916][T32644]  ? kobject_init+0x1d0/0x1d0
[ 2497.885569][T32644]  ? mutex_unlock+0x19/0x40
[ 2497.890053][T32644]  ? get_device_parent+0x2bd/0x420
[ 2497.895165][T32644]  device_add+0x3fc/0xbc0
[ 2497.899463][T32644]  device_create_vargs+0x1b8/0x210
[ 2497.904547][T32644]  device_create+0xea/0x130
[ 2497.909020][T32644]  ? device_create_vargs+0x210/0x210
[ 2497.914277][T32644]  bdi_register_va+0x89/0x5e0
[ 2497.918923][T32644]  bdi_register+0xd1/0x120
[ 2497.923314][T32644]  ? __device_add_disk+0x539/0x1200
[ 2497.928489][T32644]  ? bdi_register_va+0x5e0/0x5e0
[ 2497.933392][T32644]  ? percpu_ref_resurrect+0x113/0x190
[ 2497.938763][T32644]  bdi_register_owner+0x56/0xf0
[ 2497.943588][T32644]  __device_add_disk+0x5b8/0x1200
[ 2497.948589][T32644]  ? device_add_disk+0x30/0x30
[ 2497.953330][T32644]  ? vsprintf+0x30/0x30
[ 2497.957454][T32644]  ? device_initialize+0x1c7/0x3d0
[ 2497.962535][T32644]  ? __alloc_disk_node+0x326/0x380
[ 2497.967620][T32644]  loop_add+0x554/0x710
[ 2497.971749][T32644]  loop_control_ioctl+0x564/0x740
[ 2497.976748][T32644]  ? loop_remove+0xa0/0xa0
[ 2497.981133][T32644]  ? __lru_cache_add+0x1bf/0x210
[ 2497.986040][T32644]  ? memset+0x1f/0x40
[ 2497.990002][T32644]  ? fsnotify+0x1332/0x13f0
[ 2497.994490][T32644]  ? loop_remove+0xa0/0xa0
[ 2497.998877][T32644]  do_vfs_ioctl+0x744/0x1730
[ 2498.003443][T32644]  ? selinux_file_ioctl+0x723/0x970
[ 2498.008615][T32644]  ? ioctl_preallocate+0x250/0x250
[ 2498.013703][T32644]  ? __fget+0x40c/0x4a0
[ 2498.017826][T32644]  ? fget_many+0x20/0x20
[ 2498.022040][T32644]  ? check_preemption_disabled+0x154/0x330
[ 2498.027815][T32644]  ? debug_smp_processor_id+0x20/0x20
[ 2498.033164][T32644]  ? security_file_ioctl+0x9d/0xb0
[ 2498.038251][T32644]  __x64_sys_ioctl+0xd4/0x110
[ 2498.042902][T32644]  do_syscall_64+0xcb/0x1c0
[ 2498.047376][T32644]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.054007][T32644] kobject_add_internal failed for 7:0 (error: -12 parent: bdi)
[ 2498.061852][T32644] ------------[ cut here ]------------
[ 2498.067294][T32644] WARNING: CPU: 1 PID: 32644 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2498.076366][T32644] Modules linked in:
[ 2498.080250][T32644] CPU: 1 PID: 32644 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2498.091837][T32644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2498.101877][T32644] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2498.107659][T32644] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2498.127253][T32644] RSP: 0018:ffff8881e3b5fa00 EFLAGS: 00010246
[ 2498.133295][T32644] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2498.141234][T32644] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2498.149313][T32644] RBP: ffff8881e3b5fb40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2498.157268][T32644] R10: ffffffff84800000 R11: 1ffff1103c76be00 R12: ffff8881e5845000
[ 2498.165212][T32644] R13: dffffc0000000000 R14: ffff8881e5845070 R15: 1ffff1103cb08a9d
[ 2498.173157][T32644] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2498.182061][T32644] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2498.188628][T32644] CR2: 00007ff7d851d718 CR3: 00000001df9c3000 CR4: 00000000003406e0
[ 2498.196622][T32644] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2498.204571][T32644] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2498.212543][T32644] Call Trace:
[ 2498.215817][T32644]  ? device_add_disk+0x30/0x30
[ 2498.220558][T32644]  ? vsprintf+0x30/0x30
[ 2498.224683][T32644]  ? device_initialize+0x1c7/0x3d0
[ 2498.229762][T32644]  ? __alloc_disk_node+0x326/0x380
[ 2498.234840][T32644]  loop_add+0x554/0x710
[ 2498.238996][T32644]  loop_control_ioctl+0x564/0x740
[ 2498.243989][T32644]  ? loop_remove+0xa0/0xa0
[ 2498.248376][T32644]  ? __lru_cache_add+0x1bf/0x210
[ 2498.253284][T32644]  ? memset+0x1f/0x40
[ 2498.257237][T32644]  ? fsnotify+0x1332/0x13f0
[ 2498.261710][T32644]  ? loop_remove+0xa0/0xa0
[ 2498.266094][T32644]  do_vfs_ioctl+0x744/0x1730
[ 2498.270654][T32644]  ? selinux_file_ioctl+0x723/0x970
[ 2498.275820][T32644]  ? ioctl_preallocate+0x250/0x250
[ 2498.280900][T32644]  ? __fget+0x40c/0x4a0
[ 2498.285026][T32644]  ? fget_many+0x20/0x20
[ 2498.289241][T32644]  ? check_preemption_disabled+0x154/0x330
[ 2498.295036][T32644]  ? debug_smp_processor_id+0x20/0x20
14:09:37 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 48)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2498.300379][T32644]  ? security_file_ioctl+0x9d/0xb0
[ 2498.305458][T32644]  __x64_sys_ioctl+0xd4/0x110
[ 2498.310103][T32644]  do_syscall_64+0xcb/0x1c0
[ 2498.314578][T32644]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.320439][T32644] ---[ end trace 7583e5513725d274 ]---
[ 2498.340342][T32666] selinux_nlmsg_perm: 5 callbacks suppressed
14:09:37 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f00000002c0)='omfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="181000000000000000e9f8a8930000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f00000002c0)='omfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="181000000000000000e9f8a8930000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (rerun: 32)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r1 = fsopen(0x0, 0x0) (rerun: 32)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (rerun: 32)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:37 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1300)

[ 2498.340349][T32666] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32666 comm=syz-executor.1
14:09:37 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1400)

[ 2498.404221][T32673] FAULT_INJECTION: forcing a failure.
[ 2498.404221][T32673] name failslab, interval 1, probability 0, space 0, times 0
[ 2498.408155][T32681] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32681 comm=syz-executor.1
[ 2498.416942][T32673] CPU: 0 PID: 32673 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2498.441243][T32673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2498.451391][T32673] Call Trace:
[ 2498.454666][T32673]  dump_stack+0x1d8/0x241
[ 2498.458989][T32673]  ? panic+0x73e/0x73e
[ 2498.463032][T32673]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2498.468812][T32673]  should_fail+0x709/0x870
[ 2498.473201][T32673]  ? setup_fault_attr+0x3d0/0x3d0
[ 2498.478206][T32673]  ? __kernfs_new_node+0xdb/0x6d0
[ 2498.483205][T32673]  should_failslab+0x5/0x20
[ 2498.487682][T32673]  kmem_cache_alloc+0x24/0x210
[ 2498.492419][T32673]  __kernfs_new_node+0xdb/0x6d0
[ 2498.497244][T32673]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.503280][T32673]  ? kernfs_new_node+0x160/0x160
[ 2498.508189][T32673]  ? stack_trace_save+0x132/0x200
[ 2498.513185][T32673]  ? stack_trace_snprint+0x170/0x170
[ 2498.518441][T32673]  ? stack_trace_save+0x132/0x200
[ 2498.523439][T32673]  kernfs_create_dir_ns+0x90/0x220
[ 2498.528521][T32673]  sysfs_create_dir_ns+0x181/0x390
[ 2498.533600][T32673]  ? sysfs_warn_dup+0xa0/0xa0
[ 2498.538246][T32673]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.544290][T32673]  kobject_add_internal+0x6ba/0xcb0
[ 2498.549466][T32673]  kobject_add+0x14c/0x210
[ 2498.553850][T32673]  ? _raw_spin_lock+0xa3/0x1b0
[ 2498.558589][T32673]  ? kobject_init+0x1d0/0x1d0
[ 2498.563246][T32673]  ? mutex_unlock+0x19/0x40
[ 2498.567719][T32673]  ? get_device_parent+0x2bd/0x420
[ 2498.572798][T32673]  device_add+0x3fc/0xbc0
[ 2498.577098][T32673]  device_create_vargs+0x1b8/0x210
[ 2498.582177][T32673]  device_create+0xea/0x130
[ 2498.586648][T32673]  ? device_create_vargs+0x210/0x210
[ 2498.591909][T32673]  bdi_register_va+0x89/0x5e0
[ 2498.596553][T32673]  bdi_register+0xd1/0x120
[ 2498.600939][T32673]  ? __device_add_disk+0x539/0x1200
[ 2498.606103][T32673]  ? bdi_register_va+0x5e0/0x5e0
[ 2498.611022][T32673]  ? percpu_ref_resurrect+0x113/0x190
[ 2498.616375][T32673]  bdi_register_owner+0x56/0xf0
[ 2498.621196][T32673]  __device_add_disk+0x5b8/0x1200
[ 2498.626196][T32673]  ? device_add_disk+0x30/0x30
[ 2498.630926][T32673]  ? vsprintf+0x30/0x30
[ 2498.635049][T32673]  ? device_initialize+0x1c7/0x3d0
[ 2498.640126][T32673]  ? __alloc_disk_node+0x326/0x380
[ 2498.645213][T32673]  loop_add+0x554/0x710
[ 2498.649355][T32673]  loop_control_ioctl+0x564/0x740
[ 2498.654350][T32673]  ? loop_remove+0xa0/0xa0
[ 2498.658736][T32673]  ? __lru_cache_add+0x1bf/0x210
[ 2498.663644][T32673]  ? memset+0x1f/0x40
[ 2498.667594][T32673]  ? fsnotify+0x1332/0x13f0
[ 2498.672065][T32673]  ? loop_remove+0xa0/0xa0
[ 2498.676450][T32673]  do_vfs_ioctl+0x744/0x1730
[ 2498.681011][T32673]  ? selinux_file_ioctl+0x723/0x970
[ 2498.686613][T32673]  ? ioctl_preallocate+0x250/0x250
[ 2498.691690][T32673]  ? __fget+0x40c/0x4a0
[ 2498.695812][T32673]  ? fget_many+0x20/0x20
[ 2498.700021][T32673]  ? check_preemption_disabled+0x154/0x330
[ 2498.705796][T32673]  ? debug_smp_processor_id+0x20/0x20
[ 2498.711141][T32673]  ? security_file_ioctl+0x9d/0xb0
[ 2498.716231][T32673]  __x64_sys_ioctl+0xd4/0x110
[ 2498.720884][T32673]  do_syscall_64+0xcb/0x1c0
[ 2498.725365][T32673]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.733215][T32673] kobject_add_internal failed for 7:0 (error: -12 parent: bdi)
[ 2498.740951][T32673] ------------[ cut here ]------------
[ 2498.746403][T32673] WARNING: CPU: 0 PID: 32673 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2498.755475][T32673] Modules linked in:
[ 2498.759349][T32673] CPU: 0 PID: 32673 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2498.770941][T32673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2498.780988][T32673] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2498.786759][T32673] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2498.806340][T32673] RSP: 0018:ffff8881e4fe7a00 EFLAGS: 00010246
[ 2498.812383][T32673] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2498.820326][T32673] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2498.828293][T32673] RBP: ffff8881e4fe7b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2498.836241][T32673] R10: ffffffff84800000 R11: 1ffff1103c9fce00 R12: ffff8881e1ebc000
[ 2498.844190][T32673] R13: dffffc0000000000 R14: ffff8881e1ebc070 R15: 1ffff1103c3d789d
14:09:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r1 = fsopen(&(0x7f00000002c0)='omfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async, rerun: 64)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="181000000000000000e9f8a8930000001842000005000000000000000000000018450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2498.852157][T32673] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2498.861165][T32673] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2498.867740][T32673] CR2: 0000001b2f022000 CR3: 00000001df9c7000 CR4: 00000000003406f0
[ 2498.875709][T32673] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2498.883680][T32673] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2498.891637][T32673] Call Trace:
[ 2498.895014][T32673]  ? device_add_disk+0x30/0x30
[ 2498.899773][T32673]  ? vsprintf+0x30/0x30
14:09:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb)
r2 = ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
ioctl$SIOCGETMIFCNT_IN6(0xffffffffffffffff, 0x89e0, &(0x7f0000000340))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6)
ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
fsopen(&(0x7f00000002c0)='ceph\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r6, 0x4c80, r2)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000118450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000000300)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x8000, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0xffffffffffffffff, 0x1, 0xb, 0x765c, @vifc_lcl_ifindex=r7, @local}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2498.903921][T32673]  ? device_initialize+0x1c7/0x3d0
[ 2498.909023][T32673]  ? __alloc_disk_node+0x326/0x380
[ 2498.914125][T32673]  loop_add+0x554/0x710
[ 2498.918273][T32673]  loop_control_ioctl+0x564/0x740
[ 2498.923287][T32673]  ? loop_remove+0xa0/0xa0
[ 2498.927689][T32673]  ? __lru_cache_add+0x1bf/0x210
[ 2498.932635][T32673]  ? memset+0x1f/0x40
[ 2498.936602][T32673]  ? fsnotify+0x1332/0x13f0
[ 2498.941081][T32673]  ? loop_remove+0xa0/0xa0
[ 2498.945467][T32673]  do_vfs_ioctl+0x744/0x1730
[ 2498.950036][T32673]  ? selinux_file_ioctl+0x723/0x970
[ 2498.955210][T32673]  ? ioctl_preallocate+0x250/0x250
[ 2498.960291][T32673]  ? __fget+0x40c/0x4a0
[ 2498.964415][T32673]  ? fget_many+0x20/0x20
[ 2498.968626][T32673]  ? check_preemption_disabled+0x154/0x330
[ 2498.974402][T32673]  ? debug_smp_processor_id+0x20/0x20
[ 2498.979742][T32673]  ? security_file_ioctl+0x9d/0xb0
[ 2498.984825][T32673]  __x64_sys_ioctl+0xd4/0x110
[ 2498.989481][T32673]  do_syscall_64+0xcb/0x1c0
[ 2498.993958][T32673]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2498.999817][T32673] ---[ end trace 7583e5513725d275 ]---
14:09:37 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:37 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 49)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:37 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:37 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:37 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1500)

[ 2499.057666][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2499.064527][T32718] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32718 comm=syz-executor.1
14:09:37 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1600)

[ 2499.112670][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2499.123264][T32723] FAULT_INJECTION: forcing a failure.
[ 2499.123264][T32723] name failslab, interval 1, probability 0, space 0, times 0
[ 2499.128345][T32731] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32731 comm=syz-executor.1
[ 2499.135956][T32723] CPU: 1 PID: 32723 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2499.160214][T32723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2499.170277][T32723] Call Trace:
[ 2499.173544][T32723]  dump_stack+0x1d8/0x241
[ 2499.177851][T32723]  ? panic+0x73e/0x73e
[ 2499.181890][T32723]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2499.187674][T32723]  ? idr_alloc+0x2f0/0x2f0
[ 2499.192059][T32723]  should_fail+0x709/0x870
[ 2499.196445][T32723]  ? setup_fault_attr+0x3d0/0x3d0
[ 2499.201437][T32723]  ? mutex_lock+0xa6/0x110
[ 2499.205819][T32723]  ? mutex_trylock+0xa0/0xa0
[ 2499.210383][T32723]  ? __kernfs_new_node+0xdb/0x6d0
[ 2499.215384][T32723]  should_failslab+0x5/0x20
[ 2499.219858][T32723]  kmem_cache_alloc+0x24/0x210
[ 2499.224598][T32723]  __kernfs_new_node+0xdb/0x6d0
[ 2499.229427][T32723]  ? kernfs_activate+0x3fc/0x420
[ 2499.234345][T32723]  ? mutex_unlock+0x19/0x40
[ 2499.238845][T32723]  ? kernfs_new_node+0x160/0x160
[ 2499.243765][T32723]  ? kernfs_create_dir_ns+0x1df/0x220
[ 2499.249107][T32723]  ? sysfs_create_dir_ns+0x181/0x390
[ 2499.254362][T32723]  ? sysfs_create_dir_ns+0x1c7/0x390
[ 2499.259617][T32723]  kernfs_new_node+0x95/0x160
[ 2499.264264][T32723]  __kernfs_create_file+0x45/0x260
[ 2499.269352][T32723]  sysfs_add_file_mode_ns+0x292/0x340
[ 2499.274706][T32723]  sysfs_create_file_ns+0x191/0x2a0
[ 2499.279888][T32723]  ? sysfs_add_file_mode_ns+0x340/0x340
[ 2499.285471][T32723]  ? dev_fwnode+0x4c/0x80
[ 2499.289791][T32723]  ? device_create_file+0xe8/0x1b0
[ 2499.294870][T32723]  device_add+0x4c3/0xbc0
[ 2499.299171][T32723]  device_create_vargs+0x1b8/0x210
[ 2499.304251][T32723]  device_create+0xea/0x130
[ 2499.308722][T32723]  ? device_create_vargs+0x210/0x210
[ 2499.313979][T32723]  bdi_register_va+0x89/0x5e0
[ 2499.318626][T32723]  bdi_register+0xd1/0x120
[ 2499.323011][T32723]  ? __device_add_disk+0x539/0x1200
[ 2499.328188][T32723]  ? bdi_register_va+0x5e0/0x5e0
[ 2499.333096][T32723]  ? percpu_ref_resurrect+0x113/0x190
[ 2499.338445][T32723]  bdi_register_owner+0x56/0xf0
[ 2499.343477][T32723]  __device_add_disk+0x5b8/0x1200
[ 2499.348480][T32723]  ? device_add_disk+0x30/0x30
[ 2499.353219][T32723]  ? vsprintf+0x30/0x30
[ 2499.357371][T32723]  ? device_initialize+0x1c7/0x3d0
[ 2499.362456][T32723]  ? __alloc_disk_node+0x326/0x380
[ 2499.367540][T32723]  loop_add+0x554/0x710
[ 2499.371665][T32723]  loop_control_ioctl+0x564/0x740
[ 2499.376668][T32723]  ? loop_remove+0xa0/0xa0
[ 2499.381067][T32723]  ? __lru_cache_add+0x1bf/0x210
[ 2499.385975][T32723]  ? memset+0x1f/0x40
[ 2499.389926][T32723]  ? fsnotify+0x1332/0x13f0
[ 2499.394396][T32723]  ? loop_remove+0xa0/0xa0
[ 2499.398779][T32723]  do_vfs_ioctl+0x744/0x1730
[ 2499.403339][T32723]  ? selinux_file_ioctl+0x723/0x970
[ 2499.408515][T32723]  ? ioctl_preallocate+0x250/0x250
[ 2499.413602][T32723]  ? __fget+0x40c/0x4a0
[ 2499.417734][T32723]  ? fget_many+0x20/0x20
[ 2499.421944][T32723]  ? check_preemption_disabled+0x154/0x330
[ 2499.427723][T32723]  ? debug_smp_processor_id+0x20/0x20
[ 2499.433072][T32723]  ? security_file_ioctl+0x9d/0xb0
[ 2499.438154][T32723]  __x64_sys_ioctl+0xd4/0x110
[ 2499.442800][T32723]  do_syscall_64+0xcb/0x1c0
[ 2499.447274][T32723]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2499.454099][T32723] ------------[ cut here ]------------
[ 2499.459557][T32723] WARNING: CPU: 1 PID: 32723 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2499.468631][T32723] Modules linked in:
[ 2499.472502][T32723] CPU: 1 PID: 32723 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2499.484093][T32723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2499.494134][T32723] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2499.499911][T32723] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2499.519486][T32723] RSP: 0018:ffff8881e79e7a00 EFLAGS: 00010246
[ 2499.525521][T32723] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2499.533461][T32723] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2499.541402][T32723] RBP: ffff8881e79e7b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2499.549342][T32723] R10: ffffffff84800000 R11: 1ffff1103cf3ce00 R12: ffff8881ea590000
[ 2499.557282][T32723] R13: dffffc0000000000 R14: ffff8881ea590070 R15: 1ffff1103d4b209d
[ 2499.565225][T32723] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2499.574123][T32723] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2499.580675][T32723] CR2: 00007fc99aab8718 CR3: 00000001ec161000 CR4: 00000000003406e0
[ 2499.588621][T32723] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2499.596575][T32723] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2499.604534][T32723] Call Trace:
[ 2499.607798][T32723]  ? device_add_disk+0x30/0x30
[ 2499.612541][T32723]  ? vsprintf+0x30/0x30
[ 2499.616671][T32723]  ? device_initialize+0x1c7/0x3d0
[ 2499.621758][T32723]  ? __alloc_disk_node+0x326/0x380
[ 2499.626838][T32723]  loop_add+0x554/0x710
[ 2499.630964][T32723]  loop_control_ioctl+0x564/0x740
[ 2499.635965][T32723]  ? loop_remove+0xa0/0xa0
[ 2499.640359][T32723]  ? __lru_cache_add+0x1bf/0x210
[ 2499.645268][T32723]  ? memset+0x1f/0x40
[ 2499.649225][T32723]  ? fsnotify+0x1332/0x13f0
[ 2499.653705][T32723]  ? loop_remove+0xa0/0xa0
[ 2499.658090][T32723]  do_vfs_ioctl+0x744/0x1730
[ 2499.662650][T32723]  ? selinux_file_ioctl+0x723/0x970
[ 2499.667817][T32723]  ? ioctl_preallocate+0x250/0x250
[ 2499.672901][T32723]  ? __fget+0x40c/0x4a0
[ 2499.677042][T32723]  ? fget_many+0x20/0x20
[ 2499.681257][T32723]  ? check_preemption_disabled+0x154/0x330
[ 2499.687034][T32723]  ? debug_smp_processor_id+0x20/0x20
[ 2499.692374][T32723]  ? security_file_ioctl+0x9d/0xb0
[ 2499.697455][T32723]  __x64_sys_ioctl+0xd4/0x110
[ 2499.702116][T32723]  do_syscall_64+0xcb/0x1c0
[ 2499.706589][T32723]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:38 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 50)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2499.712448][T32723] ---[ end trace 7583e5513725d276 ]---
14:09:38 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='}]\x00', &(0x7f0000000080)='\x00', 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb)
r2 = ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
ioctl$SIOCGETMIFCNT_IN6(0xffffffffffffffff, 0x89e0, &(0x7f0000000340)) (async, rerun: 32)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6)
ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0) (async)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
fsopen(&(0x7f00000002c0)='ceph\x00', 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r6, 0x4c80, r2) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000118450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000000300)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x8000, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0xffffffffffffffff, 0x1, 0xb, 0x765c, @vifc_lcl_ifindex=r7, @local}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:38 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:38 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2499.765030][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2499.793914][T32740] FAULT_INJECTION: forcing a failure.
[ 2499.793914][T32740] name failslab, interval 1, probability 0, space 0, times 0
14:09:38 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1800)

[ 2499.799640][T32745] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32745 comm=syz-executor.1
[ 2499.806717][T32740] CPU: 0 PID: 32740 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2499.830875][T32740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2499.840899][T32740] Call Trace:
[ 2499.844175][T32740]  dump_stack+0x1d8/0x241
[ 2499.848487][T32740]  ? panic+0x73e/0x73e
[ 2499.852542][T32740]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2499.858327][T32740]  ? _raw_spin_lock+0xa3/0x1b0
[ 2499.863060][T32740]  should_fail+0x709/0x870
[ 2499.867449][T32740]  ? security_kernfs_init_security+0x9a/0xb0
[ 2499.873401][T32740]  ? setup_fault_attr+0x3d0/0x3d0
[ 2499.878395][T32740]  ? mutex_lock+0xa6/0x110
[ 2499.882779][T32740]  ? mutex_trylock+0xa0/0xa0
[ 2499.887337][T32740]  ? __kernfs_new_node+0xdb/0x6d0
[ 2499.892326][T32740]  should_failslab+0x5/0x20
[ 2499.896796][T32740]  kmem_cache_alloc+0x24/0x210
[ 2499.901531][T32740]  __kernfs_new_node+0xdb/0x6d0
[ 2499.906351][T32740]  ? kernfs_activate+0x3fc/0x420
[ 2499.911269][T32740]  ? mutex_unlock+0x19/0x40
14:09:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb) (async)
r2 = ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
ioctl$SIOCGETMIFCNT_IN6(0xffffffffffffffff, 0x89e0, &(0x7f0000000340)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6)
ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
fsopen(&(0x7f00000002c0)='ceph\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r6 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, 0x0, 0x0) (async)
ioctl$LOOP_CTL_ADD(r6, 0x4c80, r2) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000118450000fdffffff0000000000000000852000000200000095000000000000009500000000000000"], &(0x7f0000000300)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x8000, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0xffffffffffffffff, 0x1, 0xb, 0x765c, @vifc_lcl_ifindex=r7, @local}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2499.915760][T32740]  ? kernfs_new_node+0x160/0x160
[ 2499.920690][T32740]  ? __kernfs_create_file+0x1f1/0x260
[ 2499.926040][T32740]  ? sysfs_add_file_mode_ns+0x292/0x340
[ 2499.931557][T32740]  kernfs_new_node+0x95/0x160
[ 2499.936206][T32740]  kernfs_create_link+0x9c/0x1f0
[ 2499.941111][T32740]  sysfs_do_create_link_sd+0x85/0x100
[ 2499.946451][T32740]  device_add_class_symlinks+0xd6/0x2a0
[ 2499.951971][T32740]  device_add+0x4e4/0xbc0
[ 2499.956273][T32740]  device_create_vargs+0x1b8/0x210
[ 2499.961359][T32740]  device_create+0xea/0x130
14:09:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000001c0)={0x0, r1}, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f00000002c0), &(0x7f0000000180), &(0x7f0000000140))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x107200, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x1)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2499.965830][T32740]  ? device_create_vargs+0x210/0x210
[ 2499.971088][T32740]  bdi_register_va+0x89/0x5e0
[ 2499.975756][T32740]  bdi_register+0xd1/0x120
[ 2499.980145][T32740]  ? __device_add_disk+0x539/0x1200
[ 2499.985321][T32740]  ? bdi_register_va+0x5e0/0x5e0
[ 2499.990248][T32740]  ? percpu_ref_resurrect+0x113/0x190
[ 2499.995610][T32740]  bdi_register_owner+0x56/0xf0
[ 2500.000444][T32740]  __device_add_disk+0x5b8/0x1200
[ 2500.005449][T32740]  ? device_add_disk+0x30/0x30
[ 2500.010186][T32740]  ? vsprintf+0x30/0x30
[ 2500.014315][T32740]  ? device_initialize+0x1c7/0x3d0
[ 2500.019407][T32740]  ? __alloc_disk_node+0x326/0x380
[ 2500.024502][T32740]  loop_add+0x554/0x710
[ 2500.028642][T32740]  loop_control_ioctl+0x564/0x740
[ 2500.033647][T32740]  ? loop_remove+0xa0/0xa0
[ 2500.038043][T32740]  ? __lru_cache_add+0x1bf/0x210
[ 2500.042956][T32740]  ? memset+0x1f/0x40
[ 2500.046929][T32740]  ? fsnotify+0x1332/0x13f0
[ 2500.051426][T32740]  ? loop_remove+0xa0/0xa0
[ 2500.055827][T32740]  do_vfs_ioctl+0x744/0x1730
[ 2500.060392][T32740]  ? selinux_file_ioctl+0x723/0x970
[ 2500.065577][T32740]  ? ioctl_preallocate+0x250/0x250
[ 2500.070669][T32740]  ? __fget+0x40c/0x4a0
[ 2500.074798][T32740]  ? fget_many+0x20/0x20
[ 2500.079008][T32740]  ? check_preemption_disabled+0x154/0x330
[ 2500.084789][T32740]  ? debug_smp_processor_id+0x20/0x20
[ 2500.090131][T32740]  ? security_file_ioctl+0x9d/0xb0
[ 2500.095210][T32740]  __x64_sys_ioctl+0xd4/0x110
[ 2500.099857][T32740]  do_syscall_64+0xcb/0x1c0
[ 2500.104332][T32740]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2500.111177][T32740] ------------[ cut here ]------------
[ 2500.116635][T32740] WARNING: CPU: 0 PID: 32740 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2500.125707][T32740] Modules linked in:
[ 2500.129575][T32740] CPU: 0 PID: 32740 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2500.141161][T32740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2500.151197][T32740] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2500.156979][T32740] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2500.176562][T32740] RSP: 0018:ffff8881e79e7a00 EFLAGS: 00010246
[ 2500.182610][T32740] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2500.190553][T32740] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2500.198496][T32740] RBP: ffff8881e79e7b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2500.206438][T32740] R10: ffffffff84800000 R11: 1ffff1103cf3ce00 R12: ffff8881ce6bd000
[ 2500.214377][T32740] R13: dffffc0000000000 R14: ffff8881ce6bd070 R15: 1ffff11039cd7a9d
[ 2500.222322][T32740] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2500.231226][T32740] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2500.237781][T32740] CR2: 00007fe14b485988 CR3: 00000001e0b62000 CR4: 00000000003406f0
[ 2500.245720][T32740] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2500.253663][T32740] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2500.261602][T32740] Call Trace:
[ 2500.264869][T32740]  ? device_add_disk+0x30/0x30
[ 2500.269605][T32740]  ? vsprintf+0x30/0x30
[ 2500.273729][T32740]  ? device_initialize+0x1c7/0x3d0
[ 2500.278810][T32740]  ? __alloc_disk_node+0x326/0x380
[ 2500.283898][T32740]  loop_add+0x554/0x710
[ 2500.288036][T32740]  loop_control_ioctl+0x564/0x740
[ 2500.293035][T32740]  ? loop_remove+0xa0/0xa0
[ 2500.297427][T32740]  ? __lru_cache_add+0x1bf/0x210
[ 2500.302337][T32740]  ? memset+0x1f/0x40
[ 2500.306288][T32740]  ? fsnotify+0x1332/0x13f0
[ 2500.310758][T32740]  ? loop_remove+0xa0/0xa0
[ 2500.315141][T32740]  do_vfs_ioctl+0x744/0x1730
[ 2500.319702][T32740]  ? selinux_file_ioctl+0x723/0x970
[ 2500.324868][T32740]  ? ioctl_preallocate+0x250/0x250
[ 2500.329947][T32740]  ? __fget+0x40c/0x4a0
[ 2500.334070][T32740]  ? fget_many+0x20/0x20
[ 2500.338306][T32740]  ? check_preemption_disabled+0x154/0x330
[ 2500.344086][T32740]  ? debug_smp_processor_id+0x20/0x20
[ 2500.349427][T32740]  ? security_file_ioctl+0x9d/0xb0
[ 2500.354514][T32740]  __x64_sys_ioctl+0xd4/0x110
[ 2500.359164][T32740]  do_syscall_64+0xcb/0x1c0
14:09:39 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 51)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='}]\x00', &(0x7f0000000080)='\x00', 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='}]\x00', &(0x7f0000000080)='\x00', 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:39 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000001c0)={0x0, r1}, 0x10)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f00000002c0), &(0x7f0000000180), &(0x7f0000000140))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x107200, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x1)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000001c0)={0x0, r1}, 0x10) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f00000002c0), &(0x7f0000000180), &(0x7f0000000140)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r2, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x107200, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x1) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:39 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2500.363638][T32740]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2500.369507][T32740] ---[ end trace 7583e5513725d277 ]---
[ 2500.394464][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2500.417477][  T352] FAULT_INJECTION: forcing a failure.
[ 2500.417477][  T352] name failslab, interval 1, probability 0, space 0, times 0
[ 2500.427592][  T360] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=360 comm=syz-executor.1
[ 2500.433297][  T352] CPU: 1 PID: 352 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2500.454087][  T352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2500.464128][  T352] Call Trace:
[ 2500.467400][  T352]  dump_stack+0x1d8/0x241
[ 2500.471789][  T352]  ? panic+0x73e/0x73e
[ 2500.475833][  T352]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2500.481628][  T352]  ? idr_alloc+0x2f0/0x2f0
[ 2500.486031][  T352]  should_fail+0x709/0x870
[ 2500.490436][  T352]  ? setup_fault_attr+0x3d0/0x3d0
[ 2500.495437][  T352]  ? mutex_lock+0xa6/0x110
[ 2500.499826][  T352]  ? mutex_trylock+0xa0/0xa0
[ 2500.504392][  T352]  ? __kernfs_new_node+0xdb/0x6d0
[ 2500.509385][  T352]  should_failslab+0x5/0x20
[ 2500.513861][  T352]  kmem_cache_alloc+0x24/0x210
14:09:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async, rerun: 32)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='}]\x00', &(0x7f0000000080)='\x00', 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2500.518592][  T352]  __kernfs_new_node+0xdb/0x6d0
[ 2500.523410][  T352]  ? kernfs_activate+0x3fc/0x420
[ 2500.528328][  T352]  ? mutex_unlock+0x19/0x40
[ 2500.532815][  T352]  ? kernfs_new_node+0x160/0x160
[ 2500.537728][  T352]  ? kernfs_create_dir_ns+0x1df/0x220
[ 2500.543093][  T352]  ? sysfs_create_dir_ns+0x181/0x390
[ 2500.548357][  T352]  ? sysfs_create_dir_ns+0x1c7/0x390
[ 2500.553618][  T352]  kernfs_new_node+0x95/0x160
[ 2500.558266][  T352]  __kernfs_create_file+0x45/0x260
[ 2500.563348][  T352]  sysfs_add_file_mode_ns+0x292/0x340
14:09:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000001c0)={0x0, r1}, 0x10) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f00000002c0), &(0x7f0000000180), &(0x7f0000000140)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x107200, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x1)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000300)=0x6, 0x4)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000340), 0x5, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000780)={0x4, 0x0, [{0xf000, 0xfa, &(0x7f0000000380)=""/250}, {0x4, 0x9a, &(0x7f0000000540)=""/154}, {0x6000, 0x9e, &(0x7f0000000600)=""/158}, {0x5000, 0x92, &(0x7f00000006c0)=""/146}]})
r4 = fsmount(r2, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x150682, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2500.568686][  T352]  sysfs_create_file_ns+0x191/0x2a0
[ 2500.573861][  T352]  ? sysfs_add_file_mode_ns+0x340/0x340
[ 2500.579374][  T352]  ? dev_fwnode+0x4c/0x80
[ 2500.583776][  T352]  ? device_create_file+0xe8/0x1b0
[ 2500.588879][  T352]  device_add+0x4c3/0xbc0
[ 2500.593203][  T352]  device_create_vargs+0x1b8/0x210
[ 2500.598307][  T352]  device_create+0xea/0x130
[ 2500.602818][  T352]  ? device_create_vargs+0x210/0x210
[ 2500.608100][  T352]  bdi_register_va+0x89/0x5e0
[ 2500.612765][  T352]  bdi_register+0xd1/0x120
[ 2500.617159][  T352]  ? __device_add_disk+0x539/0x1200
[ 2500.622330][  T352]  ? bdi_register_va+0x5e0/0x5e0
[ 2500.627236][  T352]  ? percpu_ref_resurrect+0x113/0x190
[ 2500.632580][  T352]  bdi_register_owner+0x56/0xf0
[ 2500.637400][  T352]  __device_add_disk+0x5b8/0x1200
[ 2500.642391][  T352]  ? device_add_disk+0x30/0x30
[ 2500.647122][  T352]  ? vsprintf+0x30/0x30
[ 2500.651248][  T352]  ? device_initialize+0x1c7/0x3d0
[ 2500.656338][  T352]  ? __alloc_disk_node+0x326/0x380
[ 2500.661434][  T352]  loop_add+0x554/0x710
[ 2500.665584][  T352]  loop_control_ioctl+0x564/0x740
[ 2500.670676][  T352]  ? loop_remove+0xa0/0xa0
[ 2500.675072][  T352]  ? __lru_cache_add+0x1bf/0x210
[ 2500.679979][  T352]  ? memset+0x1f/0x40
[ 2500.683932][  T352]  ? fsnotify+0x1332/0x13f0
[ 2500.688413][  T352]  ? loop_remove+0xa0/0xa0
[ 2500.692809][  T352]  do_vfs_ioctl+0x744/0x1730
[ 2500.697376][  T352]  ? selinux_file_ioctl+0x723/0x970
[ 2500.702553][  T352]  ? ioctl_preallocate+0x250/0x250
[ 2500.707645][  T352]  ? __fget+0x40c/0x4a0
[ 2500.711770][  T352]  ? fget_many+0x20/0x20
14:09:39 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1900)

[ 2500.715987][  T352]  ? check_preemption_disabled+0x154/0x330
[ 2500.721770][  T352]  ? debug_smp_processor_id+0x20/0x20
[ 2500.727115][  T352]  ? security_file_ioctl+0x9d/0xb0
[ 2500.732200][  T352]  __x64_sys_ioctl+0xd4/0x110
[ 2500.736846][  T352]  do_syscall_64+0xcb/0x1c0
[ 2500.741321][  T352]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2500.749922][  T352] ------------[ cut here ]------------
[ 2500.755383][  T352] WARNING: CPU: 1 PID: 352 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2500.764282][  T352] Modules linked in:
[ 2500.768151][  T352] CPU: 1 PID: 352 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2500.779567][  T352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2500.789610][  T352] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2500.795385][  T352] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2500.814964][  T352] RSP: 0018:ffff8881e72b7a00 EFLAGS: 00010246
[ 2500.821000][  T352] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2500.828947][  T352] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2500.836887][  T352] RBP: ffff8881e72b7b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2500.844832][  T352] R10: ffffffff84800000 R11: 1ffff1103ce56e00 R12: ffff8881e8e05000
[ 2500.852781][  T352] R13: dffffc0000000000 R14: ffff8881e8e05070 R15: 1ffff1103d1c0a9d
[ 2500.860730][  T352] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2500.869635][  T352] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2500.876187][  T352] CR2: 00007ff7be771718 CR3: 00000001cec4a000 CR4: 00000000003406e0
[ 2500.884135][  T352] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2500.892081][  T352] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2500.900029][  T352] Call Trace:
[ 2500.903296][  T352]  ? device_add_disk+0x30/0x30
[ 2500.908031][  T352]  ? vsprintf+0x30/0x30
[ 2500.912158][  T352]  ? device_initialize+0x1c7/0x3d0
[ 2500.917242][  T352]  ? __alloc_disk_node+0x326/0x380
[ 2500.922331][  T352]  loop_add+0x554/0x710
[ 2500.926467][  T352]  loop_control_ioctl+0x564/0x740
[ 2500.931461][  T352]  ? loop_remove+0xa0/0xa0
[ 2500.935847][  T352]  ? __lru_cache_add+0x1bf/0x210
[ 2500.940752][  T352]  ? memset+0x1f/0x40
[ 2500.944710][  T352]  ? fsnotify+0x1332/0x13f0
[ 2500.949183][  T352]  ? loop_remove+0xa0/0xa0
[ 2500.953574][  T352]  do_vfs_ioctl+0x744/0x1730
[ 2500.958147][  T352]  ? selinux_file_ioctl+0x723/0x970
[ 2500.963318][  T352]  ? ioctl_preallocate+0x250/0x250
14:09:39 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 52)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2500.968407][  T352]  ? __fget+0x40c/0x4a0
[ 2500.972545][  T352]  ? fget_many+0x20/0x20
[ 2500.976756][  T352]  ? check_preemption_disabled+0x154/0x330
[ 2500.982531][  T352]  ? debug_smp_processor_id+0x20/0x20
[ 2500.987872][  T352]  ? security_file_ioctl+0x9d/0xb0
[ 2500.992952][  T352]  __x64_sys_ioctl+0xd4/0x110
[ 2500.997604][  T352]  do_syscall_64+0xcb/0x1c0
[ 2501.002087][  T352]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2501.007955][  T352] ---[ end trace 7583e5513725d278 ]---
14:09:39 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:39 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:39 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="1800000000000000001b8197ff98bb3892de7c0609445db4d8000000020000001842000005000000000000000000000018450000fdffffff00000000000000008520000002000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 64)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (rerun: 64)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000300)=0x6, 0x4)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
r3 = syz_open_dev$mouse(&(0x7f0000000340), 0x5, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000780)={0x4, 0x0, [{0xf000, 0xfa, &(0x7f0000000380)=""/250}, {0x4, 0x9a, &(0x7f0000000540)=""/154}, {0x6000, 0x9e, &(0x7f0000000600)=""/158}, {0x5000, 0x92, &(0x7f00000006c0)=""/146}]})
r4 = fsmount(r2, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x150682, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2501.072209][  T426] FAULT_INJECTION: forcing a failure.
[ 2501.072209][  T426] name failslab, interval 1, probability 0, space 0, times 0
[ 2501.081133][  T429] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=429 comm=syz-executor.1
[ 2501.094365][  T426] CPU: 1 PID: 426 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2501.108810][  T426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2501.118850][  T426] Call Trace:
[ 2501.122130][  T426]  dump_stack+0x1d8/0x241
[ 2501.126433][  T426]  ? panic+0x73e/0x73e
[ 2501.130481][  T426]  ? idr_get_free+0x6a3/0x840
[ 2501.135239][  T426]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2501.141041][  T426]  ? mutex_unlock+0x19/0x40
[ 2501.145531][  T426]  ? kernfs_xattr_get+0x81/0x90
[ 2501.150360][  T426]  should_fail+0x709/0x870
[ 2501.154758][  T426]  ? setup_fault_attr+0x3d0/0x3d0
[ 2501.159762][  T426]  ? idr_alloc+0x2f0/0x2f0
[ 2501.164172][  T426]  ? __kernfs_new_node+0x99/0x6d0
[ 2501.169284][  T426]  should_failslab+0x5/0x20
[ 2501.173871][  T426]  __kmalloc_track_caller+0x4f/0x280
[ 2501.179134][  T426]  kstrdup_const+0x51/0x90
[ 2501.183535][  T426]  __kernfs_new_node+0x99/0x6d0
[ 2501.188357][  T426]  ? mutex_lock+0xa6/0x110
[ 2501.192756][  T426]  ? kernfs_new_node+0x160/0x160
[ 2501.197666][  T426]  kernfs_new_node+0x95/0x160
[ 2501.202311][  T426]  kernfs_create_link+0x9c/0x1f0
[ 2501.207224][  T426]  sysfs_do_create_link_sd+0x85/0x100
[ 2501.212572][  T426]  device_add_class_symlinks+0x211/0x2a0
[ 2501.218185][  T426]  device_add+0x4e4/0xbc0
[ 2501.222500][  T426]  device_create_vargs+0x1b8/0x210
[ 2501.227582][  T426]  device_create+0xea/0x130
[ 2501.232070][  T426]  ? device_create_vargs+0x210/0x210
[ 2501.237335][  T426]  bdi_register_va+0x89/0x5e0
[ 2501.241988][  T426]  bdi_register+0xd1/0x120
[ 2501.246381][  T426]  ? __device_add_disk+0x539/0x1200
[ 2501.251636][  T426]  ? bdi_register_va+0x5e0/0x5e0
[ 2501.256547][  T426]  ? percpu_ref_resurrect+0x113/0x190
[ 2501.261897][  T426]  bdi_register_owner+0x56/0xf0
[ 2501.266727][  T426]  __device_add_disk+0x5b8/0x1200
[ 2501.271726][  T426]  ? device_add_disk+0x30/0x30
[ 2501.276462][  T426]  ? vsprintf+0x30/0x30
[ 2501.280605][  T426]  ? device_initialize+0x1c7/0x3d0
[ 2501.285720][  T426]  ? __alloc_disk_node+0x326/0x380
[ 2501.290821][  T426]  loop_add+0x554/0x710
[ 2501.294950][  T426]  loop_control_ioctl+0x564/0x740
[ 2501.299948][  T426]  ? loop_remove+0xa0/0xa0
[ 2501.304341][  T426]  ? __lru_cache_add+0x1bf/0x210
[ 2501.309254][  T426]  ? memset+0x1f/0x40
[ 2501.313223][  T426]  ? fsnotify+0x1332/0x13f0
[ 2501.317745][  T426]  ? loop_remove+0xa0/0xa0
[ 2501.322130][  T426]  do_vfs_ioctl+0x744/0x1730
[ 2501.326701][  T426]  ? selinux_file_ioctl+0x723/0x970
[ 2501.331874][  T426]  ? ioctl_preallocate+0x250/0x250
[ 2501.336963][  T426]  ? __fget+0x40c/0x4a0
[ 2501.341105][  T426]  ? fget_many+0x20/0x20
[ 2501.345329][  T426]  ? check_preemption_disabled+0x154/0x330
[ 2501.351106][  T426]  ? debug_smp_processor_id+0x20/0x20
[ 2501.356454][  T426]  ? security_file_ioctl+0x9d/0xb0
[ 2501.361536][  T426]  __x64_sys_ioctl+0xd4/0x110
[ 2501.366191][  T426]  do_syscall_64+0xcb/0x1c0
14:09:40 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1a00)

[ 2501.370668][  T426]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2501.378706][  T426] ------------[ cut here ]------------
[ 2501.384184][  T426] WARNING: CPU: 1 PID: 426 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2501.393087][  T426] Modules linked in:
[ 2501.396986][  T426] CPU: 1 PID: 426 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2501.408412][  T426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2501.418446][  T426] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2501.424228][  T426] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2501.443828][  T426] RSP: 0018:ffff8881e72b7a00 EFLAGS: 00010246
[ 2501.449873][  T426] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2501.457814][  T426] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2501.465759][  T426] RBP: ffff8881e72b7b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2501.473702][  T426] R10: ffffffff84800000 R11: 1ffff1103ce56e00 R12: ffff8881cfcbc000
[ 2501.481642][  T426] R13: dffffc0000000000 R14: ffff8881cfcbc070 R15: 1ffff11039f9789d
[ 2501.489583][  T426] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2501.498483][  T426] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2501.505035][  T426] CR2: 00007ffed791ad08 CR3: 00000001e93f9000 CR4: 00000000003406e0
[ 2501.512979][  T426] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2501.520922][  T426] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2501.528861][  T426] Call Trace:
[ 2501.532128][  T426]  ? device_add_disk+0x30/0x30
[ 2501.536860][  T426]  ? vsprintf+0x30/0x30
[ 2501.540991][  T426]  ? device_initialize+0x1c7/0x3d0
[ 2501.546072][  T426]  ? __alloc_disk_node+0x326/0x380
[ 2501.551157][  T426]  loop_add+0x554/0x710
[ 2501.555291][  T426]  loop_control_ioctl+0x564/0x740
[ 2501.560290][  T426]  ? loop_remove+0xa0/0xa0
[ 2501.564675][  T426]  ? __lru_cache_add+0x1bf/0x210
[ 2501.569587][  T426]  ? memset+0x1f/0x40
[ 2501.573547][  T426]  ? fsnotify+0x1332/0x13f0
[ 2501.578020][  T426]  ? loop_remove+0xa0/0xa0
[ 2501.582406][  T426]  do_vfs_ioctl+0x744/0x1730
[ 2501.586969][  T426]  ? selinux_file_ioctl+0x723/0x970
[ 2501.592137][  T426]  ? ioctl_preallocate+0x250/0x250
[ 2501.597224][  T426]  ? __fget+0x40c/0x4a0
[ 2501.601355][  T426]  ? fget_many+0x20/0x20
[ 2501.605595][  T426]  ? check_preemption_disabled+0x154/0x330
[ 2501.611374][  T426]  ? debug_smp_processor_id+0x20/0x20
[ 2501.616718][  T426]  ? security_file_ioctl+0x9d/0xb0
14:09:40 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 53)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2501.621803][  T426]  __x64_sys_ioctl+0xd4/0x110
[ 2501.626455][  T426]  do_syscall_64+0xcb/0x1c0
[ 2501.630935][  T426]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2501.636794][  T426] ---[ end trace 7583e5513725d279 ]---
[ 2501.648812][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
14:09:40 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:40 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000300)=0x6, 0x4)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000340), 0x5, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000780)={0x4, 0x0, [{0xf000, 0xfa, &(0x7f0000000380)=""/250}, {0x4, 0x9a, &(0x7f0000000540)=""/154}, {0x6000, 0x9e, &(0x7f0000000600)=""/158}, {0x5000, 0x92, &(0x7f00000006c0)=""/146}]})
r4 = fsmount(r2, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x150682, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000300)=0x6, 0x4) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000340), 0x5, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000780)={0x4, 0x0, [{0xf000, 0xfa, &(0x7f0000000380)=""/250}, {0x4, 0x9a, &(0x7f0000000540)=""/154}, {0x6000, 0x9e, &(0x7f0000000600)=""/158}, {0x5000, 0x92, &(0x7f00000006c0)=""/146}]}) (async)
fsmount(r2, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x150682, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:40 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="1800000000000000001b8197ff98bb3892de7c0609445db4d8000000020000001842000005000000000000000000000018450000fdffffff00000000000000008520000002000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 32)

[ 2501.675365][  T451] FAULT_INJECTION: forcing a failure.
[ 2501.675365][  T451] name failslab, interval 1, probability 0, space 0, times 0
[ 2501.692356][  T451] CPU: 0 PID: 451 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2501.703811][  T451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
14:09:40 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1c00)

[ 2501.707988][  T453] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=453 comm=syz-executor.1
[ 2501.713843][  T451] Call Trace:
[ 2501.713860][  T451]  dump_stack+0x1d8/0x241
[ 2501.713869][  T451]  ? panic+0x73e/0x73e
[ 2501.713877][  T451]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2501.713894][  T451]  should_fail+0x709/0x870
[ 2501.748236][  T451]  ? setup_fault_attr+0x3d0/0x3d0
[ 2501.753244][  T451]  ? __kernfs_new_node+0xdb/0x6d0
[ 2501.758281][  T451]  should_failslab+0x5/0x20
[ 2501.762756][  T451]  kmem_cache_alloc+0x24/0x210
[ 2501.767491][  T451]  __kernfs_new_node+0xdb/0x6d0
[ 2501.772316][  T451]  ? mutex_lock+0xa6/0x110
[ 2501.776701][  T451]  ? kernfs_new_node+0x160/0x160
[ 2501.781612][  T451]  kernfs_new_node+0x95/0x160
[ 2501.786266][  T451]  kernfs_create_link+0x9c/0x1f0
[ 2501.791196][  T451]  sysfs_do_create_link_sd+0x85/0x100
[ 2501.796538][  T451]  device_add_class_symlinks+0x211/0x2a0
[ 2501.802154][  T451]  device_add+0x4e4/0xbc0
[ 2501.806463][  T451]  device_create_vargs+0x1b8/0x210
[ 2501.811550][  T451]  device_create+0xea/0x130
[ 2501.816023][  T451]  ? device_create_vargs+0x210/0x210
[ 2501.821277][  T451]  bdi_register_va+0x89/0x5e0
14:09:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x200, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffc}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0x20, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2501.826106][  T451]  bdi_register+0xd1/0x120
[ 2501.830495][  T451]  ? __device_add_disk+0x539/0x1200
[ 2501.835667][  T451]  ? bdi_register_va+0x5e0/0x5e0
[ 2501.840578][  T451]  ? percpu_ref_resurrect+0x113/0x190
[ 2501.845921][  T451]  bdi_register_owner+0x56/0xf0
[ 2501.850742][  T451]  __device_add_disk+0x5b8/0x1200
[ 2501.855741][  T451]  ? device_add_disk+0x30/0x30
[ 2501.860479][  T451]  ? vsprintf+0x30/0x30
[ 2501.864619][  T451]  ? device_initialize+0x1c7/0x3d0
[ 2501.869716][  T451]  ? __alloc_disk_node+0x326/0x380
[ 2501.874820][  T451]  loop_add+0x554/0x710
[ 2501.878958][  T451]  loop_control_ioctl+0x564/0x740
[ 2501.883963][  T451]  ? loop_remove+0xa0/0xa0
[ 2501.888363][  T451]  ? __lru_cache_add+0x1bf/0x210
[ 2501.893270][  T451]  ? memset+0x1f/0x40
[ 2501.897223][  T451]  ? fsnotify+0x1332/0x13f0
[ 2501.901698][  T451]  ? loop_remove+0xa0/0xa0
[ 2501.906091][  T451]  do_vfs_ioctl+0x744/0x1730
[ 2501.910660][  T451]  ? selinux_file_ioctl+0x723/0x970
[ 2501.915830][  T451]  ? ioctl_preallocate+0x250/0x250
[ 2501.920909][  T451]  ? __fget+0x40c/0x4a0
[ 2501.925034][  T451]  ? fget_many+0x20/0x20
[ 2501.929255][  T451]  ? check_preemption_disabled+0x154/0x330
[ 2501.935048][  T451]  ? debug_smp_processor_id+0x20/0x20
[ 2501.940388][  T451]  ? security_file_ioctl+0x9d/0xb0
[ 2501.945470][  T451]  __x64_sys_ioctl+0xd4/0x110
[ 2501.950122][  T451]  do_syscall_64+0xcb/0x1c0
[ 2501.954596][  T451]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2501.961097][  T451] ------------[ cut here ]------------
[ 2501.966555][  T451] WARNING: CPU: 0 PID: 451 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2501.975451][  T451] Modules linked in:
[ 2501.979318][  T451] CPU: 0 PID: 451 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2501.990745][  T451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2502.000781][  T451] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2502.006578][  T451] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2502.026167][  T451] RSP: 0018:ffff8881ce55fa00 EFLAGS: 00010246
[ 2502.032212][  T451] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2502.040155][  T451] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2502.048098][  T451] RBP: ffff8881ce55fb40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2502.056038][  T451] R10: ffffffff84800000 R11: 1ffff11039cabe00 R12: ffff8881e3f36000
[ 2502.063980][  T451] R13: dffffc0000000000 R14: ffff8881e3f36070 R15: 1ffff1103c7e6c9d
[ 2502.071921][  T451] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2502.080817][  T451] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2502.087375][  T451] CR2: 00007f795b239988 CR3: 00000001eab07000 CR4: 00000000003406f0
[ 2502.095317][  T451] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2502.103281][  T451] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2502.111219][  T451] Call Trace:
[ 2502.114483][  T451]  ? device_add_disk+0x30/0x30
[ 2502.119222][  T451]  ? vsprintf+0x30/0x30
[ 2502.123350][  T451]  ? device_initialize+0x1c7/0x3d0
[ 2502.128428][  T451]  ? __alloc_disk_node+0x326/0x380
[ 2502.133510][  T451]  loop_add+0x554/0x710
[ 2502.137636][  T451]  loop_control_ioctl+0x564/0x740
[ 2502.142630][  T451]  ? loop_remove+0xa0/0xa0
[ 2502.147015][  T451]  ? __lru_cache_add+0x1bf/0x210
[ 2502.151925][  T451]  ? memset+0x1f/0x40
[ 2502.155878][  T451]  ? fsnotify+0x1332/0x13f0
[ 2502.160349][  T451]  ? loop_remove+0xa0/0xa0
[ 2502.164733][  T451]  do_vfs_ioctl+0x744/0x1730
[ 2502.169294][  T451]  ? selinux_file_ioctl+0x723/0x970
14:09:40 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 54)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2502.174460][  T451]  ? ioctl_preallocate+0x250/0x250
[ 2502.179568][  T451]  ? __fget+0x40c/0x4a0
[ 2502.183693][  T451]  ? fget_many+0x20/0x20
[ 2502.187905][  T451]  ? check_preemption_disabled+0x154/0x330
[ 2502.193679][  T451]  ? debug_smp_processor_id+0x20/0x20
[ 2502.199020][  T451]  ? security_file_ioctl+0x9d/0xb0
[ 2502.204099][  T451]  __x64_sys_ioctl+0xd4/0x110
[ 2502.208744][  T451]  do_syscall_64+0xcb/0x1c0
[ 2502.213217][  T451]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2502.219081][  T451] ---[ end trace 7583e5513725d27a ]---
14:09:40 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1d00)

14:09:40 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="1800000000000000001b8197ff98bb3892de7c0609445db4d8000000020000001842000005000000000000000000000018450000fdffffff00000000000000008520000002000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:40 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2502.243178][  T497] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=497 comm=syz-executor.1
[ 2502.272974][  T498] FAULT_INJECTION: forcing a failure.
[ 2502.272974][  T498] name failslab, interval 1, probability 0, space 0, times 0
14:09:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (rerun: 32)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async, rerun: 64)
r3 = syz_open_dev$mouse(0x0, 0x200, 0x0) (async, rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffc}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0x20, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2502.291643][  T498] CPU: 1 PID: 498 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2502.303102][  T498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2502.313136][  T498] Call Trace:
[ 2502.316400][  T498]  dump_stack+0x1d8/0x241
[ 2502.320707][  T498]  ? panic+0x73e/0x73e
[ 2502.324749][  T498]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2502.330522][  T498]  ? mutex_lock+0xa6/0x110
[ 2502.334907][  T498]  should_fail+0x709/0x870
[ 2502.339291][  T498]  ? kstrdup_const+0x51/0x90
[ 2502.343850][  T498]  ? setup_fault_attr+0x3d0/0x3d0
[ 2502.348871][  T498]  ? mutex_lock+0xa6/0x110
[ 2502.353271][  T498]  ? mutex_trylock+0xa0/0xa0
[ 2502.357874][  T498]  ? __kernfs_new_node+0xdb/0x6d0
[ 2502.362874][  T498]  should_failslab+0x5/0x20
[ 2502.367348][  T498]  kmem_cache_alloc+0x24/0x210
[ 2502.372095][  T498]  __kernfs_new_node+0xdb/0x6d0
[ 2502.377053][  T498]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2502.382054][  T498]  ? kernfs_new_node+0x160/0x160
[ 2502.386965][  T498]  ? selinux_path_notify+0x6c0/0x6c0
[ 2502.392225][  T498]  ? idr_alloc+0x2f0/0x2f0
[ 2502.396614][  T498]  ? _raw_spin_lock+0xa3/0x1b0
[ 2502.401348][  T498]  kernfs_new_node+0x95/0x160
[ 2502.406004][  T498]  __kernfs_create_file+0x45/0x260
[ 2502.411095][  T498]  sysfs_add_file_mode_ns+0x292/0x340
[ 2502.416437][  T498]  internal_create_group+0x55e/0xf50
[ 2502.421703][  T498]  ? mutex_unlock+0x19/0x40
[ 2502.426185][  T498]  ? sysfs_create_group+0x20/0x20
[ 2502.431177][  T498]  sysfs_create_groups+0x5d/0x130
[ 2502.436172][  T498]  device_add_attrs+0x87/0x370
[ 2502.441001][  T498]  device_add+0x505/0xbc0
[ 2502.445301][  T498]  device_create_vargs+0x1b8/0x210
[ 2502.450384][  T498]  device_create+0xea/0x130
[ 2502.454861][  T498]  ? device_create_vargs+0x210/0x210
[ 2502.460117][  T498]  bdi_register_va+0x89/0x5e0
[ 2502.464772][  T498]  bdi_register+0xd1/0x120
[ 2502.469160][  T498]  ? __device_add_disk+0x539/0x1200
[ 2502.474414][  T498]  ? bdi_register_va+0x5e0/0x5e0
[ 2502.479320][  T498]  ? percpu_ref_resurrect+0x113/0x190
[ 2502.484659][  T498]  bdi_register_owner+0x56/0xf0
[ 2502.489480][  T498]  __device_add_disk+0x5b8/0x1200
[ 2502.494473][  T498]  ? device_add_disk+0x30/0x30
[ 2502.499211][  T498]  ? vsprintf+0x30/0x30
[ 2502.503341][  T498]  ? device_initialize+0x1c7/0x3d0
[ 2502.508420][  T498]  ? __alloc_disk_node+0x326/0x380
[ 2502.513505][  T498]  loop_add+0x554/0x710
[ 2502.517631][  T498]  loop_control_ioctl+0x564/0x740
[ 2502.522627][  T498]  ? loop_remove+0xa0/0xa0
[ 2502.527013][  T498]  ? __lru_cache_add+0x1bf/0x210
[ 2502.531922][  T498]  ? memset+0x1f/0x40
[ 2502.535873][  T498]  ? fsnotify+0x1332/0x13f0
[ 2502.540519][  T498]  ? loop_remove+0xa0/0xa0
[ 2502.544906][  T498]  do_vfs_ioctl+0x744/0x1730
[ 2502.549469][  T498]  ? selinux_file_ioctl+0x723/0x970
[ 2502.554646][  T498]  ? ioctl_preallocate+0x250/0x250
[ 2502.559739][  T498]  ? __fget+0x40c/0x4a0
[ 2502.563874][  T498]  ? fget_many+0x20/0x20
[ 2502.568096][  T498]  ? check_preemption_disabled+0x154/0x330
[ 2502.573875][  T498]  ? debug_smp_processor_id+0x20/0x20
[ 2502.579228][  T498]  ? security_file_ioctl+0x9d/0xb0
[ 2502.584313][  T498]  __x64_sys_ioctl+0xd4/0x110
[ 2502.588965][  T498]  do_syscall_64+0xcb/0x1c0
[ 2502.593442][  T498]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2502.600387][  T498] ------------[ cut here ]------------
[ 2502.605848][  T498] WARNING: CPU: 1 PID: 498 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2502.614743][  T498] Modules linked in:
[ 2502.618621][  T498] CPU: 1 PID: 498 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2502.630036][  T498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2502.640071][  T498] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2502.645844][  T498] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2502.665427][  T498] RSP: 0018:ffff8881e3167a00 EFLAGS: 00010246
[ 2502.671474][  T498] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2502.679414][  T498] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2502.687358][  T498] RBP: ffff8881e3167b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2502.695297][  T498] R10: ffffffff84800000 R11: 1ffff1103c62ce00 R12: ffff8881ca328000
[ 2502.703261][  T498] R13: dffffc0000000000 R14: ffff8881ca328070 R15: 1ffff1103946509d
[ 2502.711205][  T498] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2502.720103][  T498] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2502.726672][  T498] CR2: 00007f5a1dca1718 CR3: 00000001e6b58000 CR4: 00000000003406e0
[ 2502.734626][  T498] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2502.742568][  T498] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2502.750509][  T498] Call Trace:
[ 2502.753775][  T498]  ? device_add_disk+0x30/0x30
[ 2502.758515][  T498]  ? vsprintf+0x30/0x30
[ 2502.762647][  T498]  ? device_initialize+0x1c7/0x3d0
[ 2502.767732][  T498]  ? __alloc_disk_node+0x326/0x380
[ 2502.772815][  T498]  loop_add+0x554/0x710
[ 2502.776942][  T498]  loop_control_ioctl+0x564/0x740
[ 2502.781935][  T498]  ? loop_remove+0xa0/0xa0
[ 2502.786321][  T498]  ? __lru_cache_add+0x1bf/0x210
[ 2502.791228][  T498]  ? memset+0x1f/0x40
[ 2502.795184][  T498]  ? fsnotify+0x1332/0x13f0
[ 2502.799657][  T498]  ? loop_remove+0xa0/0xa0
[ 2502.804042][  T498]  do_vfs_ioctl+0x744/0x1730
[ 2502.808604][  T498]  ? selinux_file_ioctl+0x723/0x970
[ 2502.813770][  T498]  ? ioctl_preallocate+0x250/0x250
[ 2502.818852][  T498]  ? __fget+0x40c/0x4a0
[ 2502.822977][  T498]  ? fget_many+0x20/0x20
[ 2502.827193][  T498]  ? check_preemption_disabled+0x154/0x330
[ 2502.832975][  T498]  ? debug_smp_processor_id+0x20/0x20
[ 2502.838325][  T498]  ? security_file_ioctl+0x9d/0xb0
14:09:41 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 55)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2502.843416][  T498]  __x64_sys_ioctl+0xd4/0x110
[ 2502.848074][  T498]  do_syscall_64+0xcb/0x1c0
[ 2502.852558][  T498]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2502.858424][  T498] ---[ end trace 7583e5513725d27b ]---
14:09:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x200, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffc}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0x20, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x200, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffc}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0x20, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:41 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)

14:09:41 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffffeffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

[ 2502.894792][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2502.902034][  T521] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=521 comm=syz-executor.1
14:09:41 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x1e00)

14:09:41 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2502.940332][  T519] FAULT_INJECTION: forcing a failure.
[ 2502.940332][  T519] name failslab, interval 1, probability 0, space 0, times 0
[ 2502.945093][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2502.957816][  T519] CPU: 1 PID: 519 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2502.974103][  T519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2502.984170][  T519] Call Trace:
[ 2502.987439][  T519]  dump_stack+0x1d8/0x241
[ 2502.991755][  T519]  ? panic+0x73e/0x73e
[ 2502.995800][  T519]  ? mutex_unlock+0x19/0x40
[ 2503.000278][  T519]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2503.006055][  T519]  ? selinux_kernfs_init_security+0x155/0x760
[ 2503.012090][  T519]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2503.017088][  T519]  should_fail+0x709/0x870
[ 2503.021484][  T519]  ? setup_fault_attr+0x3d0/0x3d0
[ 2503.026479][  T519]  ? _raw_spin_lock+0xa3/0x1b0
[ 2503.031214][  T519]  ? __kernfs_new_node+0xdb/0x6d0
[ 2503.036210][  T519]  should_failslab+0x5/0x20
[ 2503.040682][  T519]  kmem_cache_alloc+0x24/0x210
[ 2503.045434][  T519]  __kernfs_new_node+0xdb/0x6d0
[ 2503.050267][  T519]  ? mutex_lock+0xa6/0x110
[ 2503.054658][  T519]  ? kernfs_new_node+0x160/0x160
[ 2503.059567][  T519]  kernfs_new_node+0x95/0x160
[ 2503.064218][  T519]  __kernfs_create_file+0x45/0x260
[ 2503.069299][  T519]  sysfs_add_file_mode_ns+0x292/0x340
[ 2503.074663][  T519]  internal_create_group+0x55e/0xf50
[ 2503.079918][  T519]  ? mutex_unlock+0x19/0x40
[ 2503.084392][  T519]  ? sysfs_create_group+0x20/0x20
[ 2503.089390][  T519]  sysfs_create_groups+0x5d/0x130
[ 2503.094384][  T519]  device_add_attrs+0x87/0x370
[ 2503.099129][  T519]  device_add+0x505/0xbc0
[ 2503.103452][  T519]  device_create_vargs+0x1b8/0x210
[ 2503.108545][  T519]  device_create+0xea/0x130
[ 2503.113017][  T519]  ? device_create_vargs+0x210/0x210
[ 2503.118269][  T519]  bdi_register_va+0x89/0x5e0
[ 2503.122925][  T519]  bdi_register+0xd1/0x120
[ 2503.127317][  T519]  ? __device_add_disk+0x539/0x1200
[ 2503.132915][  T519]  ? bdi_register_va+0x5e0/0x5e0
[ 2503.137819][  T519]  ? percpu_ref_resurrect+0x113/0x190
[ 2503.143157][  T519]  bdi_register_owner+0x56/0xf0
[ 2503.147980][  T519]  __device_add_disk+0x5b8/0x1200
[ 2503.152977][  T519]  ? device_add_disk+0x30/0x30
[ 2503.157708][  T519]  ? vsprintf+0x30/0x30
[ 2503.161837][  T519]  ? device_initialize+0x1c7/0x3d0
[ 2503.166916][  T519]  ? __alloc_disk_node+0x326/0x380
[ 2503.171995][  T519]  loop_add+0x554/0x710
[ 2503.176152][  T519]  loop_control_ioctl+0x564/0x740
[ 2503.181156][  T519]  ? loop_remove+0xa0/0xa0
[ 2503.185597][  T519]  ? __lru_cache_add+0x1bf/0x210
[ 2503.190504][  T519]  ? memset+0x1f/0x40
[ 2503.194457][  T519]  ? fsnotify+0x1332/0x13f0
[ 2503.198930][  T519]  ? loop_remove+0xa0/0xa0
[ 2503.203315][  T519]  do_vfs_ioctl+0x744/0x1730
[ 2503.207876][  T519]  ? selinux_file_ioctl+0x723/0x970
[ 2503.213043][  T519]  ? ioctl_preallocate+0x250/0x250
[ 2503.218126][  T519]  ? __fget+0x40c/0x4a0
[ 2503.222263][  T519]  ? fget_many+0x20/0x20
[ 2503.226476][  T519]  ? check_preemption_disabled+0x154/0x330
[ 2503.232258][  T519]  ? debug_smp_processor_id+0x20/0x20
14:09:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)=""/214, &(0x7f0000000540)=""/217, &(0x7f00000003c0)=""/9})
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2503.237596][  T519]  ? security_file_ioctl+0x9d/0xb0
[ 2503.242680][  T519]  __x64_sys_ioctl+0xd4/0x110
[ 2503.247326][  T519]  do_syscall_64+0xcb/0x1c0
[ 2503.251799][  T519]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2503.261875][  T519] ------------[ cut here ]------------
[ 2503.267338][  T519] WARNING: CPU: 0 PID: 519 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2503.276233][  T519] Modules linked in:
[ 2503.280098][  T519] CPU: 0 PID: 519 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2503.291512][  T519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2503.301546][  T519] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2503.307321][  T519] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2503.326898][  T519] RSP: 0018:ffff8881e1787a00 EFLAGS: 00010246
[ 2503.332934][  T519] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2503.340889][  T519] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2503.348828][  T519] RBP: ffff8881e1787b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2503.356767][  T519] R10: ffffffff84800000 R11: 1ffff1103c2f0e00 R12: ffff8881df8d3000
[ 2503.364714][  T519] R13: dffffc0000000000 R14: ffff8881df8d3070 R15: 1ffff1103bf1a69d
[ 2503.372659][  T519] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2503.381563][  T519] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2503.388120][  T519] CR2: 00007f5a1ef9c210 CR3: 00000001e162b000 CR4: 00000000003406f0
[ 2503.396063][  T519] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2503.404007][  T519] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2503.411974][  T519] Call Trace:
[ 2503.415256][  T519]  ? device_add_disk+0x30/0x30
[ 2503.419988][  T519]  ? vsprintf+0x30/0x30
[ 2503.424114][  T519]  ? device_initialize+0x1c7/0x3d0
[ 2503.429192][  T519]  ? __alloc_disk_node+0x326/0x380
[ 2503.434383][  T519]  loop_add+0x554/0x710
[ 2503.438520][  T519]  loop_control_ioctl+0x564/0x740
[ 2503.443514][  T519]  ? loop_remove+0xa0/0xa0
[ 2503.447905][  T519]  ? __lru_cache_add+0x1bf/0x210
[ 2503.452813][  T519]  ? memset+0x1f/0x40
[ 2503.456765][  T519]  ? fsnotify+0x1332/0x13f0
[ 2503.461236][  T519]  ? loop_remove+0xa0/0xa0
[ 2503.465625][  T519]  do_vfs_ioctl+0x744/0x1730
[ 2503.470184][  T519]  ? selinux_file_ioctl+0x723/0x970
[ 2503.475351][  T519]  ? ioctl_preallocate+0x250/0x250
[ 2503.480433][  T519]  ? __fget+0x40c/0x4a0
[ 2503.484557][  T519]  ? fget_many+0x20/0x20
14:09:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 56)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2503.488767][  T519]  ? check_preemption_disabled+0x154/0x330
[ 2503.494538][  T519]  ? debug_smp_processor_id+0x20/0x20
[ 2503.499886][  T519]  ? security_file_ioctl+0x9d/0xb0
[ 2503.504970][  T519]  __x64_sys_ioctl+0xd4/0x110
[ 2503.509616][  T519]  do_syscall_64+0xcb/0x1c0
[ 2503.514089][  T519]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2503.519949][  T519] ---[ end trace 7583e5513725d27c ]---
14:09:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)=""/214, &(0x7f0000000540)=""/217, &(0x7f00000003c0)=""/9}) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:42 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)

14:09:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffffeffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffffeffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)

14:09:42 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2000)

[ 2503.596409][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2503.608125][  T564] FAULT_INJECTION: forcing a failure.
[ 2503.608125][  T564] name failslab, interval 1, probability 0, space 0, times 0
[ 2503.616449][  T570] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=570 comm=syz-executor.1
[ 2503.629288][  T564] CPU: 1 PID: 564 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2503.644716][  T564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2503.654739][  T564] Call Trace:
[ 2503.658000][  T564]  dump_stack+0x1d8/0x241
[ 2503.662303][  T564]  ? panic+0x73e/0x73e
[ 2503.666350][  T564]  ? mutex_unlock+0x19/0x40
[ 2503.670829][  T564]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2503.676601][  T564]  ? selinux_kernfs_init_security+0x155/0x760
[ 2503.682634][  T564]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2503.687627][  T564]  should_fail+0x709/0x870
[ 2503.692015][  T564]  ? setup_fault_attr+0x3d0/0x3d0
[ 2503.697015][  T564]  ? _raw_spin_lock+0xa3/0x1b0
[ 2503.701745][  T564]  ? __kernfs_new_node+0xdb/0x6d0
[ 2503.706730][  T564]  should_failslab+0x5/0x20
[ 2503.711200][  T564]  kmem_cache_alloc+0x24/0x210
[ 2503.715933][  T564]  __kernfs_new_node+0xdb/0x6d0
[ 2503.720752][  T564]  ? mutex_lock+0xa6/0x110
[ 2503.725137][  T564]  ? kernfs_new_node+0x160/0x160
[ 2503.730039][  T564]  kernfs_new_node+0x95/0x160
[ 2503.734680][  T564]  __kernfs_create_file+0x45/0x260
[ 2503.739765][  T564]  sysfs_add_file_mode_ns+0x292/0x340
[ 2503.745118][  T564]  internal_create_group+0x55e/0xf50
[ 2503.750369][  T564]  ? mutex_unlock+0x19/0x40
[ 2503.754839][  T564]  ? sysfs_create_group+0x20/0x20
[ 2503.759836][  T564]  sysfs_create_groups+0x5d/0x130
[ 2503.764838][  T564]  device_add_attrs+0x87/0x370
[ 2503.769569][  T564]  device_add+0x505/0xbc0
[ 2503.773871][  T564]  device_create_vargs+0x1b8/0x210
[ 2503.778949][  T564]  device_create+0xea/0x130
[ 2503.783430][  T564]  ? device_create_vargs+0x210/0x210
[ 2503.788682][  T564]  bdi_register_va+0x89/0x5e0
[ 2503.793325][  T564]  bdi_register+0xd1/0x120
[ 2503.797706][  T564]  ? __device_add_disk+0x539/0x1200
[ 2503.802875][  T564]  ? bdi_register_va+0x5e0/0x5e0
[ 2503.807776][  T564]  ? percpu_ref_resurrect+0x113/0x190
[ 2503.813112][  T564]  bdi_register_owner+0x56/0xf0
[ 2503.817933][  T564]  __device_add_disk+0x5b8/0x1200
[ 2503.823014][  T564]  ? device_add_disk+0x30/0x30
[ 2503.827742][  T564]  ? vsprintf+0x30/0x30
[ 2503.831867][  T564]  ? device_initialize+0x1c7/0x3d0
[ 2503.836945][  T564]  ? __alloc_disk_node+0x326/0x380
[ 2503.842022][  T564]  loop_add+0x554/0x710
[ 2503.846244][  T564]  loop_control_ioctl+0x564/0x740
[ 2503.851249][  T564]  ? loop_remove+0xa0/0xa0
[ 2503.855644][  T564]  ? __lru_cache_add+0x1bf/0x210
[ 2503.860549][  T564]  ? memset+0x1f/0x40
[ 2503.864497][  T564]  ? fsnotify+0x1332/0x13f0
[ 2503.868967][  T564]  ? loop_remove+0xa0/0xa0
[ 2503.873348][  T564]  do_vfs_ioctl+0x744/0x1730
[ 2503.877908][  T564]  ? selinux_file_ioctl+0x723/0x970
[ 2503.883096][  T564]  ? ioctl_preallocate+0x250/0x250
[ 2503.888173][  T564]  ? __fget+0x40c/0x4a0
[ 2503.892296][  T564]  ? fget_many+0x20/0x20
14:09:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffffeffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10)

[ 2503.896503][  T564]  ? check_preemption_disabled+0x154/0x330
[ 2503.902274][  T564]  ? debug_smp_processor_id+0x20/0x20
[ 2503.907612][  T564]  ? security_file_ioctl+0x9d/0xb0
[ 2503.912689][  T564]  __x64_sys_ioctl+0xd4/0x110
[ 2503.917333][  T564]  do_syscall_64+0xcb/0x1c0
[ 2503.921810][  T564]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2503.932849][  T564] ------------[ cut here ]------------
[ 2503.938313][  T564] WARNING: CPU: 0 PID: 564 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2503.947209][  T564] Modules linked in:
[ 2503.951087][  T564] CPU: 0 PID: 564 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2503.962505][  T564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2503.972554][  T564] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2503.978328][  T564] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2503.997910][  T564] RSP: 0018:ffff8881e3167a00 EFLAGS: 00010246
[ 2504.003947][  T564] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2504.011887][  T564] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2504.019830][  T564] RBP: ffff8881e3167b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2504.027773][  T564] R10: ffffffff84800000 R11: 1ffff1103c62ce00 R12: ffff8881e7d21000
[ 2504.035714][  T564] R13: dffffc0000000000 R14: ffff8881e7d21070 R15: 1ffff1103cfa429d
[ 2504.043661][  T564] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2504.052556][  T564] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2504.059106][  T564] CR2: 00007ff7d83b1dc0 CR3: 00000001e59eb000 CR4: 00000000003406f0
[ 2504.067047][  T564] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2504.074985][  T564] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2504.082921][  T564] Call Trace:
[ 2504.086189][  T564]  ? device_add_disk+0x30/0x30
[ 2504.090922][  T564]  ? vsprintf+0x30/0x30
[ 2504.095053][  T564]  ? device_initialize+0x1c7/0x3d0
[ 2504.100132][  T564]  ? __alloc_disk_node+0x326/0x380
[ 2504.105216][  T564]  loop_add+0x554/0x710
[ 2504.109339][  T564]  loop_control_ioctl+0x564/0x740
[ 2504.114331][  T564]  ? loop_remove+0xa0/0xa0
[ 2504.118715][  T564]  ? __lru_cache_add+0x1bf/0x210
[ 2504.123620][  T564]  ? memset+0x1f/0x40
[ 2504.127569][  T564]  ? fsnotify+0x1332/0x13f0
[ 2504.132041][  T564]  ? loop_remove+0xa0/0xa0
[ 2504.136436][  T564]  do_vfs_ioctl+0x744/0x1730
[ 2504.141007][  T564]  ? selinux_file_ioctl+0x723/0x970
14:09:42 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 57)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2504.146178][  T564]  ? ioctl_preallocate+0x250/0x250
[ 2504.151259][  T564]  ? __fget+0x40c/0x4a0
[ 2504.155388][  T564]  ? fget_many+0x20/0x20
[ 2504.159598][  T564]  ? check_preemption_disabled+0x154/0x330
[ 2504.165378][  T564]  ? debug_smp_processor_id+0x20/0x20
[ 2504.170727][  T564]  ? security_file_ioctl+0x9d/0xb0
[ 2504.175815][  T564]  __x64_sys_ioctl+0xd4/0x110
[ 2504.180463][  T564]  do_syscall_64+0xcb/0x1c0
[ 2504.184943][  T564]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2504.190800][  T564] ---[ end trace 7583e5513725d27d ]---
14:09:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)=""/214, &(0x7f0000000540)=""/217, &(0x7f00000003c0)=""/9})
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)=""/214, &(0x7f0000000540)=""/217, &(0x7f00000003c0)=""/9}) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:42 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
getresgid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="183b00000400000000000000000000001823cd00", @ANYRES32=r2, @ANYBLOB="00000000820000c1be53f7bf8636001b27feff010000001a4100000100"/39], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000003c0)='\x00', &(0x7f0000000400)='./file0\x00', r4)
r5 = fsmount(r2, 0x1, 0x6)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0)
getpeername$netlink(0xffffffffffffffff, &(0x7f0000000540), &(0x7f0000000580)=0xc)
r7 = syz_open_dev$mouse(&(0x7f0000000440), 0x5, 0x49c700)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x80)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f00000002c0)='team\x00', &(0x7f0000000300)=':C]!.\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r7}, 0x8)
r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r9, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000008000095000000000000002aa66ca64f14ee7db5ea79df66a31bb1b02147a17a4a4b8bc6293d1592d925230e549fcb3230fc3f72c5b42ae4548085034de41d1fbd4e360a869e23bc172289487c09bd6f944401a596ffbf515d76949f355072cccccc687992dfaaccfce7c0c278f68277a97581a547d010b609665148d4f6b33ebdafae3f01c10a790267e53cad8987a16585e6d21877e4e7b91438d203c4694bdcaddfdb40b9afb7da537d327e569e2c461900"/234], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r10, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
r11 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r11, 0x0, 0x0)
openat$cgroup_subtree(r11, &(0x7f00000005c0), 0x2, 0x0)

[ 2504.238769][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2504.252952][  T603] FAULT_INJECTION: forcing a failure.
[ 2504.252952][  T603] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.275114][  T603] CPU: 1 PID: 603 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
14:09:42 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2100)

[ 2504.279968][  T626] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=626 comm=syz-executor.1
[ 2504.286564][  T603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2504.286569][  T603] Call Trace:
[ 2504.286586][  T603]  dump_stack+0x1d8/0x241
[ 2504.286597][  T603]  ? panic+0x73e/0x73e
[ 2504.286612][  T603]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2504.326595][  T603]  ? idr_alloc+0x2f0/0x2f0
[ 2504.330978][  T603]  should_fail+0x709/0x870
[ 2504.335363][  T603]  ? setup_fault_attr+0x3d0/0x3d0
[ 2504.340353][  T603]  ? security_kernfs_init_security+0x9a/0xb0
[ 2504.346309][  T603]  ? __kernfs_new_node+0x465/0x6d0
[ 2504.351396][  T603]  ? __kernfs_new_node+0xdb/0x6d0
[ 2504.356395][  T603]  should_failslab+0x5/0x20
[ 2504.360876][  T603]  kmem_cache_alloc+0x24/0x210
[ 2504.365616][  T603]  __kernfs_new_node+0xdb/0x6d0
[ 2504.370435][  T603]  ? kernfs_new_node+0x160/0x160
[ 2504.375343][  T603]  ? kernfs_activate+0x3fc/0x420
[ 2504.380274][  T603]  ? mutex_unlock+0x19/0x40
[ 2504.384755][  T603]  ? kernfs_add_one+0x4a3/0x5c0
[ 2504.389579][  T603]  kernfs_new_node+0x95/0x160
[ 2504.394231][  T603]  __kernfs_create_file+0x45/0x260
[ 2504.399458][  T603]  sysfs_add_file_mode_ns+0x292/0x340
[ 2504.404809][  T603]  sysfs_create_file_ns+0x191/0x2a0
[ 2504.409976][  T603]  ? sysfs_create_group+0x20/0x20
[ 2504.414977][  T603]  ? sysfs_add_file_mode_ns+0x340/0x340
[ 2504.420492][  T603]  ? device_create_file+0xe8/0x1b0
[ 2504.425576][  T603]  device_add_attrs+0x2be/0x370
[ 2504.430417][  T603]  device_add+0x505/0xbc0
[ 2504.434726][  T603]  device_create_vargs+0x1b8/0x210
[ 2504.439806][  T603]  device_create+0xea/0x130
[ 2504.444278][  T603]  ? device_create_vargs+0x210/0x210
[ 2504.449539][  T603]  bdi_register_va+0x89/0x5e0
[ 2504.454185][  T603]  bdi_register+0xd1/0x120
[ 2504.458568][  T603]  ? __device_add_disk+0x539/0x1200
[ 2504.463731][  T603]  ? bdi_register_va+0x5e0/0x5e0
[ 2504.468651][  T603]  ? percpu_ref_resurrect+0x113/0x190
[ 2504.474024][  T603]  bdi_register_owner+0x56/0xf0
[ 2504.478868][  T603]  __device_add_disk+0x5b8/0x1200
[ 2504.483870][  T603]  ? device_add_disk+0x30/0x30
[ 2504.488605][  T603]  ? vsprintf+0x30/0x30
[ 2504.492728][  T603]  ? device_initialize+0x1c7/0x3d0
[ 2504.497809][  T603]  ? __alloc_disk_node+0x326/0x380
[ 2504.502974][  T603]  loop_add+0x554/0x710
[ 2504.507096][  T603]  loop_control_ioctl+0x564/0x740
[ 2504.512086][  T603]  ? loop_remove+0xa0/0xa0
[ 2504.516479][  T603]  ? __lru_cache_add+0x1bf/0x210
[ 2504.521395][  T603]  ? memset+0x1f/0x40
[ 2504.525348][  T603]  ? fsnotify+0x1332/0x13f0
[ 2504.529820][  T603]  ? loop_remove+0xa0/0xa0
[ 2504.534201][  T603]  do_vfs_ioctl+0x744/0x1730
[ 2504.538757][  T603]  ? selinux_file_ioctl+0x723/0x970
[ 2504.543923][  T603]  ? ioctl_preallocate+0x250/0x250
[ 2504.549003][  T603]  ? __fget+0x40c/0x4a0
[ 2504.553124][  T603]  ? fget_many+0x20/0x20
[ 2504.557332][  T603]  ? check_preemption_disabled+0x154/0x330
[ 2504.563103][  T603]  ? debug_smp_processor_id+0x20/0x20
[ 2504.568441][  T603]  ? security_file_ioctl+0x9d/0xb0
[ 2504.573526][  T603]  __x64_sys_ioctl+0xd4/0x110
[ 2504.578177][  T603]  do_syscall_64+0xcb/0x1c0
[ 2504.582650][  T603]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2504.589703][  T603] ------------[ cut here ]------------
[ 2504.595162][  T603] WARNING: CPU: 1 PID: 603 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2504.604060][  T603] Modules linked in:
[ 2504.607934][  T603] CPU: 1 PID: 603 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2504.619358][  T603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2504.629398][  T603] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2504.635170][  T603] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2504.654744][  T603] RSP: 0018:ffff8881cd67fa00 EFLAGS: 00010246
[ 2504.660784][  T603] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2504.668728][  T603] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2504.676668][  T603] RBP: ffff8881cd67fb40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2504.684615][  T603] R10: ffffffff84800000 R11: 1ffff11039acfe00 R12: ffff8881f30d8000
[ 2504.692557][  T603] R13: dffffc0000000000 R14: ffff8881f30d8070 R15: 1ffff1103e61b09d
[ 2504.700499][  T603] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2504.709398][  T603] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2504.715949][  T603] CR2: 00007ff7be771718 CR3: 00000001ceced000 CR4: 00000000003406e0
[ 2504.723897][  T603] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2504.731852][  T603] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2504.739793][  T603] Call Trace:
[ 2504.743064][  T603]  ? device_add_disk+0x30/0x30
[ 2504.747799][  T603]  ? vsprintf+0x30/0x30
[ 2504.751928][  T603]  ? device_initialize+0x1c7/0x3d0
[ 2504.757010][  T603]  ? __alloc_disk_node+0x326/0x380
[ 2504.762088][  T603]  loop_add+0x554/0x710
[ 2504.766224][  T603]  loop_control_ioctl+0x564/0x740
[ 2504.771220][  T603]  ? loop_remove+0xa0/0xa0
[ 2504.775613][  T603]  ? __lru_cache_add+0x1bf/0x210
[ 2504.780525][  T603]  ? memset+0x1f/0x40
[ 2504.784482][  T603]  ? fsnotify+0x1332/0x13f0
[ 2504.788951][  T603]  ? loop_remove+0xa0/0xa0
[ 2504.793336][  T603]  do_vfs_ioctl+0x744/0x1730
[ 2504.797898][  T603]  ? selinux_file_ioctl+0x723/0x970
[ 2504.803075][  T603]  ? ioctl_preallocate+0x250/0x250
[ 2504.808153][  T603]  ? __fget+0x40c/0x4a0
[ 2504.812280][  T603]  ? fget_many+0x20/0x20
[ 2504.816495][  T603]  ? check_preemption_disabled+0x154/0x330
[ 2504.822276][  T603]  ? debug_smp_processor_id+0x20/0x20
[ 2504.827703][  T603]  ? security_file_ioctl+0x9d/0xb0
[ 2504.832780][  T603]  __x64_sys_ioctl+0xd4/0x110
14:09:43 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 58)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2504.837425][  T603]  do_syscall_64+0xcb/0x1c0
[ 2504.841899][  T603]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2504.847757][  T603] ---[ end trace 7583e5513725d27e ]---
14:09:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
getresgid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="183b00000400000000000000000000001823cd00", @ANYRES32=r2, @ANYBLOB="00000000820000c1be53f7bf8636001b27feff010000001a4100000100"/39], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:43 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000003c0)='\x00', &(0x7f0000000400)='./file0\x00', r4) (async)
r5 = fsmount(r2, 0x1, 0x6) (async)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
getpeername$netlink(0xffffffffffffffff, &(0x7f0000000540), &(0x7f0000000580)=0xc) (async)
r7 = syz_open_dev$mouse(&(0x7f0000000440), 0x5, 0x49c700)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0) (async)
r8 = fsmount(r7, 0x0, 0x80)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f00000002c0)='team\x00', &(0x7f0000000300)=':C]!.\x00', 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r7}, 0x8) (async)
r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r9, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000008000095000000000000002aa66ca64f14ee7db5ea79df66a31bb1b02147a17a4a4b8bc6293d1592d925230e549fcb3230fc3f72c5b42ae4548085034de41d1fbd4e360a869e23bc172289487c09bd6f944401a596ffbf515d76949f355072cccccc687992dfaaccfce7c0c278f68277a97581a547d010b609665148d4f6b33ebdafae3f01c10a790267e53cad8987a16585e6d21877e4e7b91438d203c4694bdcaddfdb40b9afb7da537d327e569e2c461900"/234], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r10, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
r11 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r11, 0x0, 0x0) (async)
openat$cgroup_subtree(r11, &(0x7f00000005c0), 0x2, 0x0)

14:09:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="1800000000000000001b8197ff98bb3892de7c0609445db4d8000000020000001842000005000000000000000000000018450000fdffffff00000000000000008520000002000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:43 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2200)

[ 2504.902964][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2504.920060][  T647] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=647 comm=syz-executor.1
[ 2504.938907][  T644] FAULT_INJECTION: forcing a failure.
[ 2504.938907][  T644] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.951873][  T644] CPU: 0 PID: 644 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2504.963323][  T644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2504.973354][  T644] Call Trace:
[ 2504.976620][  T644]  dump_stack+0x1d8/0x241
[ 2504.980951][  T644]  ? panic+0x73e/0x73e
[ 2504.985074][  T644]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2504.990846][  T644]  ? idr_alloc+0x2f0/0x2f0
[ 2504.995235][  T644]  should_fail+0x709/0x870
[ 2504.999621][  T644]  ? setup_fault_attr+0x3d0/0x3d0
[ 2505.004616][  T644]  ? security_kernfs_init_security+0x9a/0xb0
[ 2505.010563][  T644]  ? __kernfs_new_node+0x465/0x6d0
[ 2505.015649][  T644]  ? __kernfs_new_node+0xdb/0x6d0
[ 2505.020639][  T644]  should_failslab+0x5/0x20
[ 2505.025107][  T644]  kmem_cache_alloc+0x24/0x210
[ 2505.029838][  T644]  __kernfs_new_node+0xdb/0x6d0
[ 2505.034656][  T644]  ? kernfs_new_node+0x160/0x160
[ 2505.039557][  T644]  ? kernfs_activate+0x3fc/0x420
[ 2505.044474][  T644]  ? mutex_unlock+0x19/0x40
[ 2505.048954][  T644]  ? kernfs_add_one+0x4a3/0x5c0
[ 2505.053785][  T644]  kernfs_new_node+0x95/0x160
[ 2505.058435][  T644]  __kernfs_create_file+0x45/0x260
[ 2505.063512][  T644]  sysfs_add_file_mode_ns+0x292/0x340
[ 2505.068857][  T644]  sysfs_create_file_ns+0x191/0x2a0
[ 2505.074115][  T644]  ? sysfs_create_group+0x20/0x20
[ 2505.079107][  T644]  ? sysfs_add_file_mode_ns+0x340/0x340
[ 2505.084638][  T644]  ? device_create_file+0xe8/0x1b0
[ 2505.089717][  T644]  device_add_attrs+0x2be/0x370
[ 2505.094536][  T644]  device_add+0x505/0xbc0
[ 2505.098833][  T644]  device_create_vargs+0x1b8/0x210
[ 2505.103922][  T644]  device_create+0xea/0x130
[ 2505.108398][  T644]  ? device_create_vargs+0x210/0x210
[ 2505.113663][  T644]  bdi_register_va+0x89/0x5e0
[ 2505.118317][  T644]  bdi_register+0xd1/0x120
[ 2505.122719][  T644]  ? __device_add_disk+0x539/0x1200
[ 2505.127897][  T644]  ? bdi_register_va+0x5e0/0x5e0
[ 2505.132808][  T644]  ? percpu_ref_resurrect+0x113/0x190
[ 2505.138158][  T644]  bdi_register_owner+0x56/0xf0
[ 2505.142981][  T644]  __device_add_disk+0x5b8/0x1200
[ 2505.147980][  T644]  ? device_add_disk+0x30/0x30
[ 2505.152714][  T644]  ? vsprintf+0x30/0x30
[ 2505.156844][  T644]  ? device_initialize+0x1c7/0x3d0
[ 2505.161923][  T644]  ? __alloc_disk_node+0x326/0x380
[ 2505.167003][  T644]  loop_add+0x554/0x710
[ 2505.171131][  T644]  loop_control_ioctl+0x564/0x740
[ 2505.176281][  T644]  ? loop_remove+0xa0/0xa0
[ 2505.180670][  T644]  ? __lru_cache_add+0x1bf/0x210
[ 2505.185583][  T644]  ? memset+0x1f/0x40
[ 2505.189534][  T644]  ? fsnotify+0x1332/0x13f0
[ 2505.194009][  T644]  ? loop_remove+0xa0/0xa0
[ 2505.198393][  T644]  do_vfs_ioctl+0x744/0x1730
14:09:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
r4 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, &(0x7f00000003c0)='\x00', &(0x7f0000000400)='./file0\x00', r4) (async)
r5 = fsmount(r2, 0x1, 0x6)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0)
getpeername$netlink(0xffffffffffffffff, &(0x7f0000000540), &(0x7f0000000580)=0xc) (async)
r7 = syz_open_dev$mouse(&(0x7f0000000440), 0x5, 0x49c700)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, 0x0, 0x0) (async, rerun: 32)
r8 = fsmount(r7, 0x0, 0x80) (rerun: 32)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f00000002c0)='team\x00', &(0x7f0000000300)=':C]!.\x00', 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r7}, 0x8) (rerun: 32)
r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r9, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000000008000095000000000000002aa66ca64f14ee7db5ea79df66a31bb1b02147a17a4a4b8bc6293d1592d925230e549fcb3230fc3f72c5b42ae4548085034de41d1fbd4e360a869e23bc172289487c09bd6f944401a596ffbf515d76949f355072cccccc687992dfaaccfce7c0c278f68277a97581a547d010b609665148d4f6b33ebdafae3f01c10a790267e53cad8987a16585e6d21877e4e7b91438d203c4694bdcaddfdb40b9afb7da537d327e569e2c461900"/234], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r10, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r10, @multicast2}, 0x10) (rerun: 32)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
r11 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r11, 0x0, 0x0) (async, rerun: 64)
openat$cgroup_subtree(r11, &(0x7f00000005c0), 0x2, 0x0) (rerun: 64)

[ 2505.202956][  T644]  ? selinux_file_ioctl+0x723/0x970
[ 2505.208736][  T644]  ? ioctl_preallocate+0x250/0x250
[ 2505.213825][  T644]  ? __fget+0x40c/0x4a0
[ 2505.217955][  T644]  ? fget_many+0x20/0x20
[ 2505.222167][  T644]  ? check_preemption_disabled+0x154/0x330
[ 2505.228036][  T644]  ? debug_smp_processor_id+0x20/0x20
[ 2505.233373][  T644]  ? security_file_ioctl+0x9d/0xb0
[ 2505.238449][  T644]  __x64_sys_ioctl+0xd4/0x110
[ 2505.243094][  T644]  do_syscall_64+0xcb/0x1c0
[ 2505.247564][  T644]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2505.258254][  T644] ------------[ cut here ]------------
[ 2505.263737][  T644] WARNING: CPU: 1 PID: 644 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2505.272646][  T644] Modules linked in:
[ 2505.276538][  T644] CPU: 1 PID: 644 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2505.287956][  T644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2505.297994][  T644] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2505.303770][  T644] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2505.323340][  T644] RSP: 0018:ffff8881e5f67a00 EFLAGS: 00010246
[ 2505.329372][  T644] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2505.337312][  T644] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2505.345252][  T644] RBP: ffff8881e5f67b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2505.353193][  T644] R10: ffffffff84800000 R11: 1ffff1103cbece00 R12: ffff8881d0ead000
[ 2505.361260][  T644] R13: dffffc0000000000 R14: ffff8881d0ead070 R15: 1ffff1103a1d5a9d
[ 2505.369216][  T644] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2505.378122][  T644] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2505.384677][  T644] CR2: 00007f5a1ef9c210 CR3: 00000001e40c8000 CR4: 00000000003406e0
[ 2505.392709][  T644] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2505.400650][  T644] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2505.408593][  T644] Call Trace:
[ 2505.411862][  T644]  ? device_add_disk+0x30/0x30
[ 2505.416597][  T644]  ? vsprintf+0x30/0x30
[ 2505.420725][  T644]  ? device_initialize+0x1c7/0x3d0
[ 2505.425806][  T644]  ? __alloc_disk_node+0x326/0x380
[ 2505.430888][  T644]  loop_add+0x554/0x710
[ 2505.435017][  T644]  loop_control_ioctl+0x564/0x740
[ 2505.440011][  T644]  ? loop_remove+0xa0/0xa0
[ 2505.444400][  T644]  ? __lru_cache_add+0x1bf/0x210
[ 2505.449305][  T644]  ? memset+0x1f/0x40
[ 2505.453258][  T644]  ? fsnotify+0x1332/0x13f0
[ 2505.457731][  T644]  ? loop_remove+0xa0/0xa0
[ 2505.462131][  T644]  do_vfs_ioctl+0x744/0x1730
[ 2505.466691][  T644]  ? selinux_file_ioctl+0x723/0x970
[ 2505.471859][  T644]  ? ioctl_preallocate+0x250/0x250
[ 2505.476943][  T644]  ? __fget+0x40c/0x4a0
[ 2505.481070][  T644]  ? fget_many+0x20/0x20
[ 2505.485305][  T644]  ? check_preemption_disabled+0x154/0x330
[ 2505.491089][  T644]  ? debug_smp_processor_id+0x20/0x20
[ 2505.496435][  T644]  ? security_file_ioctl+0x9d/0xb0
[ 2505.501523][  T644]  __x64_sys_ioctl+0xd4/0x110
14:09:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdfffff1fb61d60000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902)

14:09:44 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 59)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2505.506172][  T644]  do_syscall_64+0xcb/0x1c0
[ 2505.510645][  T644]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2505.516505][  T644] ---[ end trace 7583e5513725d27f ]---
14:09:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
getresgid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r1 = fsopen(0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="183b00000400000000000000000000001823cd00", @ANYRES32=r2, @ANYBLOB="00000000820000c1be53f7bf8636001b27feff010000001a4100000100"/39], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdfffff1fb61d60000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r2, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdfffff1fb61d60000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902) (async)

14:09:44 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c9077", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2505.558063][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2505.592530][  T691] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=691 comm=syz-executor.1
14:09:44 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2400)

[ 2505.605564][  T692] FAULT_INJECTION: forcing a failure.
[ 2505.605564][  T692] name failslab, interval 1, probability 0, space 0, times 0
[ 2505.618393][  T692] CPU: 0 PID: 692 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2505.629910][  T692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2505.639937][  T692] Call Trace:
[ 2505.643207][  T692]  dump_stack+0x1d8/0x241
[ 2505.647517][  T692]  ? panic+0x73e/0x73e
[ 2505.651555][  T692]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2505.657331][  T692]  ? idr_get_free+0x6a3/0x840
[ 2505.661973][  T692]  ? mutex_unlock+0x19/0x40
[ 2505.666441][  T692]  should_fail+0x709/0x870
[ 2505.670824][  T692]  ? setup_fault_attr+0x3d0/0x3d0
[ 2505.675813][  T692]  ? idr_alloc+0x2f0/0x2f0
[ 2505.680195][  T692]  ? __kernfs_new_node+0xdb/0x6d0
[ 2505.685185][  T692]  should_failslab+0x5/0x20
[ 2505.689655][  T692]  kmem_cache_alloc+0x24/0x210
[ 2505.694384][  T692]  __kernfs_new_node+0xdb/0x6d0
[ 2505.699207][  T692]  ? kernfs_new_node+0x160/0x160
[ 2505.704196][  T692]  ? mutex_lock+0xa6/0x110
[ 2505.708578][  T692]  ? mutex_trylock+0xa0/0xa0
[ 2505.713136][  T692]  ? kernfs_activate+0x3fc/0x420
[ 2505.718475][  T692]  kernfs_new_node+0x95/0x160
[ 2505.723125][  T692]  __kernfs_create_file+0x45/0x260
[ 2505.728202][  T692]  sysfs_add_file_mode_ns+0x292/0x340
[ 2505.733540][  T692]  sysfs_merge_group+0x207/0x460
[ 2505.738446][  T692]  ? sysfs_remove_groups+0xb0/0xb0
[ 2505.743527][  T692]  ? device_create_file+0xe8/0x1b0
[ 2505.748605][  T692]  ? bus_add_device+0x92/0x3f0
[ 2505.753336][  T692]  dpm_sysfs_add+0xc0/0x260
[ 2505.757806][  T692]  device_add+0x547/0xbc0
[ 2505.762107][  T692]  device_create_vargs+0x1b8/0x210
[ 2505.767192][  T692]  device_create+0xea/0x130
[ 2505.771678][  T692]  ? device_create_vargs+0x210/0x210
[ 2505.776944][  T692]  bdi_register_va+0x89/0x5e0
[ 2505.781604][  T692]  bdi_register+0xd1/0x120
[ 2505.785991][  T692]  ? __device_add_disk+0x539/0x1200
[ 2505.791158][  T692]  ? bdi_register_va+0x5e0/0x5e0
[ 2505.796061][  T692]  ? percpu_ref_resurrect+0x113/0x190
[ 2505.801401][  T692]  bdi_register_owner+0x56/0xf0
[ 2505.806223][  T692]  __device_add_disk+0x5b8/0x1200
[ 2505.811214][  T692]  ? device_add_disk+0x30/0x30
[ 2505.815945][  T692]  ? vsprintf+0x30/0x30
[ 2505.820068][  T692]  ? device_initialize+0x1c7/0x3d0
[ 2505.825146][  T692]  ? __alloc_disk_node+0x326/0x380
[ 2505.830224][  T692]  loop_add+0x554/0x710
[ 2505.834346][  T692]  loop_control_ioctl+0x564/0x740
[ 2505.839339][  T692]  ? loop_remove+0xa0/0xa0
[ 2505.843724][  T692]  ? __lru_cache_add+0x1bf/0x210
[ 2505.848629][  T692]  ? memset+0x1f/0x40
[ 2505.852590][  T692]  ? fsnotify+0x1332/0x13f0
[ 2505.857061][  T692]  ? loop_remove+0xa0/0xa0
[ 2505.861444][  T692]  do_vfs_ioctl+0x744/0x1730
[ 2505.866006][  T692]  ? selinux_file_ioctl+0x723/0x970
[ 2505.871171][  T692]  ? ioctl_preallocate+0x250/0x250
[ 2505.876253][  T692]  ? __fget+0x40c/0x4a0
[ 2505.880376][  T692]  ? fget_many+0x20/0x20
[ 2505.884584][  T692]  ? check_preemption_disabled+0x154/0x330
[ 2505.890363][  T692]  ? debug_smp_processor_id+0x20/0x20
[ 2505.895753][  T692]  ? security_file_ioctl+0x9d/0xb0
[ 2505.900839][  T692]  __x64_sys_ioctl+0xd4/0x110
[ 2505.905489][  T692]  do_syscall_64+0xcb/0x1c0
[ 2505.909963][  T692]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2505.917608][  T692] ------------[ cut here ]------------
[ 2505.923067][  T692] WARNING: CPU: 0 PID: 692 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2505.931959][  T692] Modules linked in:
[ 2505.935828][  T692] CPU: 0 PID: 692 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2505.947412][  T692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2505.957443][  T692] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2505.963217][  T692] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2505.982796][  T692] RSP: 0018:ffff8881de007a00 EFLAGS: 00010246
[ 2505.988832][  T692] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2505.996780][  T692] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2506.004728][  T692] RBP: ffff8881de007b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2506.012669][  T692] R10: ffffffff84800000 R11: 1ffff1103bc00e00 R12: ffff8881cf133000
[ 2506.020608][  T692] R13: dffffc0000000000 R14: ffff8881cf133070 R15: 1ffff11039e2669d
[ 2506.028548][  T692] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2506.037463][  T692] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2506.044014][  T692] CR2: 00007fe14a0b6718 CR3: 00000001e8194000 CR4: 00000000003406f0
[ 2506.051957][  T692] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2506.059897][  T692] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2506.067833][  T692] Call Trace:
[ 2506.071099][  T692]  ? device_add_disk+0x30/0x30
[ 2506.075829][  T692]  ? vsprintf+0x30/0x30
[ 2506.079960][  T692]  ? device_initialize+0x1c7/0x3d0
[ 2506.085131][  T692]  ? __alloc_disk_node+0x326/0x380
[ 2506.090211][  T692]  loop_add+0x554/0x710
[ 2506.094334][  T692]  loop_control_ioctl+0x564/0x740
[ 2506.099327][  T692]  ? loop_remove+0xa0/0xa0
[ 2506.103742][  T692]  ? __lru_cache_add+0x1bf/0x210
[ 2506.108647][  T692]  ? memset+0x1f/0x40
[ 2506.112595][  T692]  ? fsnotify+0x1332/0x13f0
[ 2506.117068][  T692]  ? loop_remove+0xa0/0xa0
[ 2506.121539][  T692]  do_vfs_ioctl+0x744/0x1730
[ 2506.126099][  T692]  ? selinux_file_ioctl+0x723/0x970
[ 2506.131262][  T692]  ? ioctl_preallocate+0x250/0x250
[ 2506.136340][  T692]  ? __fget+0x40c/0x4a0
[ 2506.140464][  T692]  ? fget_many+0x20/0x20
[ 2506.144678][  T692]  ? check_preemption_disabled+0x154/0x330
[ 2506.150467][  T692]  ? debug_smp_processor_id+0x20/0x20
[ 2506.155808][  T692]  ? security_file_ioctl+0x9d/0xb0
14:09:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdfffff1fb61d60000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r2, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdfffff1fb61d60000000000852000000200000095000000000000009500000000000000"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r5, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r1, 0x8902) (async)

14:09:44 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 60)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2506.160893][  T692]  __x64_sys_ioctl+0xd4/0x110
[ 2506.165547][  T692]  do_syscall_64+0xcb/0x1c0
[ 2506.170021][  T692]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2506.175882][  T692] ---[ end trace 7583e5513725d280 ]---
14:09:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r1)
sendmsg$DEVLINK_CMD_PORT_SET(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r6, @ANYBLOB="000429db7000ffdbdf25060000000e0001006e657464657673696d0000000f0002006e657673696d30000008000300030000000600040002000000080001007063690011000200303030303a30303a31302e3000000000080003000300000006000400000000000e00010002006e657464657673696d30000008000300000000000600040003000000000000"], 0xa0}, 0x1, 0x0, 0x0, 0x44000}, 0x4048000)

14:09:44 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c9077", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:44 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2500)

[ 2506.223172][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2506.242219][  T724] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=724 comm=syz-executor.1
[ 2506.247175][  T722] FAULT_INJECTION: forcing a failure.
[ 2506.247175][  T722] name failslab, interval 1, probability 0, space 0, times 0
[ 2506.268301][  T722] CPU: 0 PID: 722 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2506.279738][  T722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2506.289782][  T722] Call Trace:
[ 2506.293050][  T722]  dump_stack+0x1d8/0x241
[ 2506.297446][  T722]  ? panic+0x73e/0x73e
[ 2506.301627][  T722]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2506.307417][  T722]  ? idr_get_free+0x6a3/0x840
[ 2506.312078][  T722]  ? mutex_unlock+0x19/0x40
[ 2506.316568][  T722]  should_fail+0x709/0x870
14:09:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = fsmount(r2, 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2506.320969][  T722]  ? setup_fault_attr+0x3d0/0x3d0
[ 2506.325976][  T722]  ? idr_alloc+0x2f0/0x2f0
[ 2506.330416][  T722]  ? __kernfs_new_node+0xdb/0x6d0
[ 2506.335429][  T722]  should_failslab+0x5/0x20
[ 2506.339906][  T722]  kmem_cache_alloc+0x24/0x210
[ 2506.344648][  T722]  __kernfs_new_node+0xdb/0x6d0
[ 2506.349486][  T722]  ? kernfs_new_node+0x160/0x160
[ 2506.354394][  T722]  ? mutex_lock+0xa6/0x110
[ 2506.358790][  T722]  ? mutex_trylock+0xa0/0xa0
[ 2506.363367][  T722]  ? kernfs_activate+0x3fc/0x420
[ 2506.368285][  T722]  kernfs_new_node+0x95/0x160
[ 2506.372935][  T722]  __kernfs_create_file+0x45/0x260
[ 2506.378019][  T722]  sysfs_add_file_mode_ns+0x292/0x340
[ 2506.383364][  T722]  sysfs_merge_group+0x207/0x460
[ 2506.388284][  T722]  ? sysfs_remove_groups+0xb0/0xb0
[ 2506.393366][  T722]  ? device_create_file+0xe8/0x1b0
[ 2506.398448][  T722]  ? bus_add_device+0x92/0x3f0
[ 2506.403190][  T722]  dpm_sysfs_add+0xc0/0x260
[ 2506.407664][  T722]  device_add+0x547/0xbc0
[ 2506.411962][  T722]  device_create_vargs+0x1b8/0x210
[ 2506.417049][  T722]  device_create+0xea/0x130
[ 2506.421532][  T722]  ? device_create_vargs+0x210/0x210
[ 2506.426790][  T722]  bdi_register_va+0x89/0x5e0
[ 2506.431435][  T722]  bdi_register+0xd1/0x120
[ 2506.435826][  T722]  ? __device_add_disk+0x539/0x1200
[ 2506.441003][  T722]  ? bdi_register_va+0x5e0/0x5e0
[ 2506.445912][  T722]  ? percpu_ref_resurrect+0x113/0x190
[ 2506.451266][  T722]  bdi_register_owner+0x56/0xf0
[ 2506.456093][  T722]  __device_add_disk+0x5b8/0x1200
[ 2506.461091][  T722]  ? device_add_disk+0x30/0x30
[ 2506.465830][  T722]  ? vsprintf+0x30/0x30
[ 2506.470047][  T722]  ? device_initialize+0x1c7/0x3d0
[ 2506.475127][  T722]  ? __alloc_disk_node+0x326/0x380
[ 2506.480206][  T722]  loop_add+0x554/0x710
[ 2506.484332][  T722]  loop_control_ioctl+0x564/0x740
[ 2506.489326][  T722]  ? loop_remove+0xa0/0xa0
[ 2506.493714][  T722]  ? __lru_cache_add+0x1bf/0x210
[ 2506.498627][  T722]  ? memset+0x1f/0x40
[ 2506.502581][  T722]  ? fsnotify+0x1332/0x13f0
[ 2506.507051][  T722]  ? loop_remove+0xa0/0xa0
[ 2506.511433][  T722]  do_vfs_ioctl+0x744/0x1730
[ 2506.516001][  T722]  ? selinux_file_ioctl+0x723/0x970
[ 2506.521177][  T722]  ? ioctl_preallocate+0x250/0x250
[ 2506.526269][  T722]  ? __fget+0x40c/0x4a0
[ 2506.530430][  T722]  ? fget_many+0x20/0x20
[ 2506.534642][  T722]  ? check_preemption_disabled+0x154/0x330
[ 2506.540422][  T722]  ? debug_smp_processor_id+0x20/0x20
[ 2506.545771][  T722]  ? security_file_ioctl+0x9d/0xb0
[ 2506.550851][  T722]  __x64_sys_ioctl+0xd4/0x110
[ 2506.555545][  T722]  do_syscall_64+0xcb/0x1c0
[ 2506.560025][  T722]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2506.567123][  T722] ------------[ cut here ]------------
[ 2506.572579][  T722] WARNING: CPU: 0 PID: 722 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2506.581479][  T722] Modules linked in:
[ 2506.585349][  T722] CPU: 0 PID: 722 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2506.596771][  T722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2506.606835][  T722] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2506.612610][  T722] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2506.632201][  T722] RSP: 0018:ffff8881e3407a00 EFLAGS: 00010246
[ 2506.638235][  T722] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2506.646178][  T722] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2506.654125][  T722] RBP: ffff8881e3407b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2506.662065][  T722] R10: ffffffff84800000 R11: 1ffff1103c680e00 R12: ffff8881e4025000
[ 2506.670008][  T722] R13: dffffc0000000000 R14: ffff8881e4025070 R15: 1ffff1103c804a9d
[ 2506.677962][  T722] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2506.686866][  T722] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2506.693415][  T722] CR2: 00007ffff35f4f98 CR3: 00000001e4ad3000 CR4: 00000000003406f0
[ 2506.701359][  T722] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2506.709301][  T722] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2506.717246][  T722] Call Trace:
[ 2506.720514][  T722]  ? device_add_disk+0x30/0x30
[ 2506.725245][  T722]  ? vsprintf+0x30/0x30
[ 2506.729381][  T722]  ? device_initialize+0x1c7/0x3d0
[ 2506.734468][  T722]  ? __alloc_disk_node+0x326/0x380
[ 2506.739549][  T722]  loop_add+0x554/0x710
[ 2506.743678][  T722]  loop_control_ioctl+0x564/0x740
[ 2506.748671][  T722]  ? loop_remove+0xa0/0xa0
[ 2506.753062][  T722]  ? __lru_cache_add+0x1bf/0x210
[ 2506.757981][  T722]  ? memset+0x1f/0x40
[ 2506.761942][  T722]  ? fsnotify+0x1332/0x13f0
[ 2506.766418][  T722]  ? loop_remove+0xa0/0xa0
[ 2506.770801][  T722]  do_vfs_ioctl+0x744/0x1730
[ 2506.775360][  T722]  ? selinux_file_ioctl+0x723/0x970
[ 2506.780526][  T722]  ? ioctl_preallocate+0x250/0x250
[ 2506.785606][  T722]  ? __fget+0x40c/0x4a0
[ 2506.789733][  T722]  ? fget_many+0x20/0x20
[ 2506.793953][  T722]  ? check_preemption_disabled+0x154/0x330
[ 2506.799736][  T722]  ? debug_smp_processor_id+0x20/0x20
[ 2506.805088][  T722]  ? security_file_ioctl+0x9d/0xb0
[ 2506.810177][  T722]  __x64_sys_ioctl+0xd4/0x110
[ 2506.814824][  T722]  do_syscall_64+0xcb/0x1c0
[ 2506.819297][  T722]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2506.825160][  T722] ---[ end trace 7583e5513725d281 ]---
14:09:45 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 61)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:45 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2600)

14:09:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = fsmount(r2, 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
fsmount(r1, 0x1, 0x6) (async)
syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
fsmount(r2, 0x0, 0x0) (async)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)

14:09:45 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6) (async)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r1)
sendmsg$DEVLINK_CMD_PORT_SET(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r6, @ANYBLOB="000429db7000ffdbdf25060000000e0001006e657464657673696d0000000f0002006e657673696d30000008000300030000000600040002000000080001007063690011000200303030303a30303a31302e3000000000080003000300000006000400000000000e00010002006e657464657673696d30000008000300000000000600040003000000000000"], 0xa0}, 0x1, 0x0, 0x0, 0x44000}, 0x4048000)

14:09:45 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c9077", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2506.846369][  T757] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=757 comm=syz-executor.1
[ 2506.883048][  T760] FAULT_INJECTION: forcing a failure.
[ 2506.883048][  T760] name failslab, interval 1, probability 0, space 0, times 0
14:09:45 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2800)

[ 2506.888628][  T766] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=766 comm=syz-executor.1
[ 2506.898850][  T760] CPU: 1 PID: 760 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2506.919698][  T760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2506.929731][  T760] Call Trace:
[ 2506.932994][  T760]  dump_stack+0x1d8/0x241
[ 2506.937300][  T760]  ? panic+0x73e/0x73e
[ 2506.941354][  T760]  ? mutex_unlock+0x19/0x40
[ 2506.945839][  T760]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2506.951620][  T760]  ? selinux_kernfs_init_security+0x155/0x760
[ 2506.957659][  T760]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2506.962659][  T760]  should_fail+0x709/0x870
[ 2506.967067][  T760]  ? setup_fault_attr+0x3d0/0x3d0
[ 2506.972067][  T760]  ? _raw_spin_lock+0xa3/0x1b0
[ 2506.976806][  T760]  ? __kernfs_new_node+0xdb/0x6d0
[ 2506.981839][  T760]  should_failslab+0x5/0x20
[ 2506.986311][  T760]  kmem_cache_alloc+0x24/0x210
[ 2506.991046][  T760]  __kernfs_new_node+0xdb/0x6d0
[ 2506.995870][  T760]  ? mutex_lock+0xa6/0x110
[ 2507.000264][  T760]  ? kernfs_new_node+0x160/0x160
[ 2507.005176][  T760]  ? mutex_lock+0xa6/0x110
[ 2507.009575][  T760]  ? mutex_trylock+0xa0/0xa0
[ 2507.014147][  T760]  kernfs_new_node+0x95/0x160
[ 2507.018823][  T760]  __kernfs_create_file+0x45/0x260
[ 2507.023906][  T760]  sysfs_add_file_mode_ns+0x292/0x340
[ 2507.029941][  T760]  sysfs_merge_group+0x207/0x460
[ 2507.034849][  T760]  ? sysfs_remove_groups+0xb0/0xb0
[ 2507.039937][  T760]  ? device_create_file+0xe8/0x1b0
[ 2507.045017][  T760]  ? bus_add_device+0x92/0x3f0
[ 2507.049747][  T760]  dpm_sysfs_add+0xc0/0x260
[ 2507.054219][  T760]  device_add+0x547/0xbc0
[ 2507.058517][  T760]  device_create_vargs+0x1b8/0x210
[ 2507.063599][  T760]  device_create+0xea/0x130
[ 2507.068079][  T760]  ? device_create_vargs+0x210/0x210
[ 2507.073335][  T760]  bdi_register_va+0x89/0x5e0
[ 2507.077981][  T760]  bdi_register+0xd1/0x120
[ 2507.082365][  T760]  ? __device_add_disk+0x539/0x1200
[ 2507.087531][  T760]  ? bdi_register_va+0x5e0/0x5e0
[ 2507.092438][  T760]  ? percpu_ref_resurrect+0x113/0x190
[ 2507.097776][  T760]  bdi_register_owner+0x56/0xf0
[ 2507.102604][  T760]  __device_add_disk+0x5b8/0x1200
[ 2507.107606][  T760]  ? device_add_disk+0x30/0x30
[ 2507.112336][  T760]  ? vsprintf+0x30/0x30
[ 2507.116459][  T760]  ? device_initialize+0x1c7/0x3d0
[ 2507.121538][  T760]  ? __alloc_disk_node+0x326/0x380
[ 2507.126624][  T760]  loop_add+0x554/0x710
[ 2507.130756][  T760]  loop_control_ioctl+0x564/0x740
[ 2507.135751][  T760]  ? loop_remove+0xa0/0xa0
[ 2507.140137][  T760]  ? __lru_cache_add+0x1bf/0x210
[ 2507.145047][  T760]  ? memset+0x1f/0x40
[ 2507.149000][  T760]  ? fsnotify+0x1332/0x13f0
[ 2507.153472][  T760]  ? loop_remove+0xa0/0xa0
[ 2507.157856][  T760]  do_vfs_ioctl+0x744/0x1730
[ 2507.162426][  T760]  ? selinux_file_ioctl+0x723/0x970
[ 2507.167599][  T760]  ? ioctl_preallocate+0x250/0x250
[ 2507.172685][  T760]  ? __fget+0x40c/0x4a0
[ 2507.176816][  T760]  ? fget_many+0x20/0x20
[ 2507.181208][  T760]  ? check_preemption_disabled+0x154/0x330
[ 2507.186991][  T760]  ? debug_smp_processor_id+0x20/0x20
[ 2507.192342][  T760]  ? security_file_ioctl+0x9d/0xb0
[ 2507.197423][  T760]  __x64_sys_ioctl+0xd4/0x110
[ 2507.202075][  T760]  do_syscall_64+0xcb/0x1c0
[ 2507.206550][  T760]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2507.214358][  T760] ------------[ cut here ]------------
[ 2507.219825][  T760] WARNING: CPU: 1 PID: 760 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2507.228727][  T760] Modules linked in:
[ 2507.232635][  T760] CPU: 1 PID: 760 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2507.244052][  T760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2507.254111][  T760] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2507.259892][  T760] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2507.279472][  T760] RSP: 0018:ffff8881cbb87a00 EFLAGS: 00010246
[ 2507.285509][  T760] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
14:09:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
r5 = fsmount(r2, 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2507.293451][  T760] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2507.301391][  T760] RBP: ffff8881cbb87b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2507.309335][  T760] R10: ffffffff84800000 R11: 1ffff11039770e00 R12: ffff8881f04b4000
[ 2507.317285][  T760] R13: dffffc0000000000 R14: ffff8881f04b4070 R15: 1ffff1103e09689d
[ 2507.325240][  T760] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2507.334339][  T760] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2507.340924][  T760] CR2: 00007f5a1dca1718 CR3: 00000001d0ff1000 CR4: 00000000003406e0
[ 2507.348889][  T760] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2507.356836][  T760] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2507.364779][  T760] Call Trace:
[ 2507.368052][  T760]  ? device_add_disk+0x30/0x30
[ 2507.372788][  T760]  ? vsprintf+0x30/0x30
[ 2507.376914][  T760]  ? device_initialize+0x1c7/0x3d0
[ 2507.381998][  T760]  ? __alloc_disk_node+0x326/0x380
[ 2507.387080][  T760]  loop_add+0x554/0x710
[ 2507.391210][  T760]  loop_control_ioctl+0x564/0x740
[ 2507.396211][  T760]  ? loop_remove+0xa0/0xa0
[ 2507.400614][  T760]  ? __lru_cache_add+0x1bf/0x210
[ 2507.405521][  T760]  ? memset+0x1f/0x40
[ 2507.409470][  T760]  ? fsnotify+0x1332/0x13f0
[ 2507.413949][  T760]  ? loop_remove+0xa0/0xa0
[ 2507.418335][  T760]  do_vfs_ioctl+0x744/0x1730
[ 2507.422899][  T760]  ? selinux_file_ioctl+0x723/0x970
[ 2507.428068][  T760]  ? ioctl_preallocate+0x250/0x250
[ 2507.433149][  T760]  ? __fget+0x40c/0x4a0
[ 2507.437273][  T760]  ? fget_many+0x20/0x20
[ 2507.441484][  T760]  ? check_preemption_disabled+0x154/0x330
14:09:46 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 62)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2507.447262][  T760]  ? debug_smp_processor_id+0x20/0x20
[ 2507.452618][  T760]  ? security_file_ioctl+0x9d/0xb0
[ 2507.457699][  T760]  __x64_sys_ioctl+0xd4/0x110
[ 2507.462344][  T760]  do_syscall_64+0xcb/0x1c0
[ 2507.466819][  T760]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2507.472819][  T760] ---[ end trace 7583e5513725d282 ]---
14:09:46 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x6, &(0x7f0000001c40)=@raw=[@map_fd={0x18, 0x8, 0x1, 0x0, r5}, @map_fd={0x18, 0x6, 0x1, 0x0, r3}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x5}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0xffffffffffffffa1, 0x10, &(0x7f0000001d80)={0x3, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:46 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6) (async)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r1)
sendmsg$DEVLINK_CMD_PORT_SET(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r6, @ANYBLOB="000429db7000ffdbdf25060000000e0001006e657464657673696d0000000f0002006e657673696d30000008000300030000000600040002000000080001007063690011000200303030303a30303a31302e3000000000080003000300000006000400000000000e00010002006e657464657673696d30000008000300000000000600040003000000000000"], 0xa0}, 0x1, 0x0, 0x0, 0x44000}, 0x4048000)

14:09:46 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2900)

[ 2507.546667][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2507.564450][  T805] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=805 comm=syz-executor.1
[ 2507.577622][  T801] FAULT_INJECTION: forcing a failure.
[ 2507.577622][  T801] name failslab, interval 1, probability 0, space 0, times 0
[ 2507.590980][  T801] CPU: 0 PID: 801 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2507.602417][  T801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2507.612446][  T801] Call Trace:
[ 2507.615716][  T801]  dump_stack+0x1d8/0x241
[ 2507.620013][  T801]  ? panic+0x73e/0x73e
[ 2507.624047][  T801]  ? mutex_unlock+0x19/0x40
[ 2507.628522][  T801]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2507.634303][  T801]  ? selinux_kernfs_init_security+0x155/0x760
[ 2507.640344][  T801]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2507.645341][  T801]  should_fail+0x709/0x870
[ 2507.649731][  T801]  ? setup_fault_attr+0x3d0/0x3d0
[ 2507.654724][  T801]  ? _raw_spin_lock+0xa3/0x1b0
[ 2507.659462][  T801]  ? __kernfs_new_node+0xdb/0x6d0
[ 2507.664452][  T801]  should_failslab+0x5/0x20
[ 2507.668925][  T801]  kmem_cache_alloc+0x24/0x210
[ 2507.673656][  T801]  __kernfs_new_node+0xdb/0x6d0
[ 2507.678475][  T801]  ? mutex_lock+0xa6/0x110
[ 2507.682855][  T801]  ? kernfs_new_node+0x160/0x160
[ 2507.687759][  T801]  ? mutex_lock+0xa6/0x110
[ 2507.692170][  T801]  ? mutex_trylock+0xa0/0xa0
14:09:46 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d82", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2507.696733][  T801]  kernfs_new_node+0x95/0x160
[ 2507.701384][  T801]  __kernfs_create_file+0x45/0x260
[ 2507.706471][  T801]  sysfs_add_file_mode_ns+0x292/0x340
[ 2507.711810][  T801]  sysfs_merge_group+0x207/0x460
[ 2507.716719][  T801]  ? sysfs_remove_groups+0xb0/0xb0
[ 2507.721799][  T801]  ? device_create_file+0xe8/0x1b0
[ 2507.726876][  T801]  ? bus_add_device+0x92/0x3f0
[ 2507.731604][  T801]  dpm_sysfs_add+0xc0/0x260
[ 2507.736085][  T801]  device_add+0x547/0xbc0
[ 2507.740406][  T801]  device_create_vargs+0x1b8/0x210
[ 2507.745498][  T801]  device_create+0xea/0x130
[ 2507.749988][  T801]  ? device_create_vargs+0x210/0x210
[ 2507.755258][  T801]  bdi_register_va+0x89/0x5e0
[ 2507.759911][  T801]  bdi_register+0xd1/0x120
[ 2507.764293][  T801]  ? __device_add_disk+0x539/0x1200
[ 2507.769457][  T801]  ? bdi_register_va+0x5e0/0x5e0
[ 2507.774362][  T801]  ? percpu_ref_resurrect+0x113/0x190
[ 2507.779701][  T801]  bdi_register_owner+0x56/0xf0
[ 2507.784521][  T801]  __device_add_disk+0x5b8/0x1200
[ 2507.789515][  T801]  ? device_add_disk+0x30/0x30
[ 2507.794248][  T801]  ? vsprintf+0x30/0x30
[ 2507.798380][  T801]  ? device_initialize+0x1c7/0x3d0
[ 2507.803459][  T801]  ? __alloc_disk_node+0x326/0x380
[ 2507.808538][  T801]  loop_add+0x554/0x710
[ 2507.812663][  T801]  loop_control_ioctl+0x564/0x740
[ 2507.817656][  T801]  ? loop_remove+0xa0/0xa0
[ 2507.822039][  T801]  ? __lru_cache_add+0x1bf/0x210
[ 2507.826944][  T801]  ? memset+0x1f/0x40
[ 2507.830895][  T801]  ? fsnotify+0x1332/0x13f0
[ 2507.835365][  T801]  ? loop_remove+0xa0/0xa0
[ 2507.839747][  T801]  do_vfs_ioctl+0x744/0x1730
[ 2507.844306][  T801]  ? selinux_file_ioctl+0x723/0x970
[ 2507.849479][  T801]  ? ioctl_preallocate+0x250/0x250
[ 2507.854564][  T801]  ? __fget+0x40c/0x4a0
[ 2507.858686][  T801]  ? fget_many+0x20/0x20
[ 2507.862896][  T801]  ? check_preemption_disabled+0x154/0x330
[ 2507.868671][  T801]  ? debug_smp_processor_id+0x20/0x20
[ 2507.874012][  T801]  ? security_file_ioctl+0x9d/0xb0
[ 2507.879089][  T801]  __x64_sys_ioctl+0xd4/0x110
[ 2507.883736][  T801]  do_syscall_64+0xcb/0x1c0
[ 2507.888207][  T801]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2507.895894][  T801] ------------[ cut here ]------------
[ 2507.901357][  T801] WARNING: CPU: 0 PID: 801 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2507.910256][  T801] Modules linked in:
[ 2507.914121][  T801] CPU: 0 PID: 801 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2507.925551][  T801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2507.935584][  T801] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2507.941360][  T801] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2507.960935][  T801] RSP: 0018:ffff8881cbb87a00 EFLAGS: 00010246
[ 2507.966972][  T801] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2507.974912][  T801] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2507.982853][  T801] RBP: ffff8881cbb87b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2507.990834][  T801] R10: ffffffff84800000 R11: 1ffff11039770e00 R12: ffff8881eab80000
[ 2507.998777][  T801] R13: dffffc0000000000 R14: ffff8881eab80070 R15: 1ffff1103d57009d
[ 2508.006732][  T801] FS:  00007fc99aad9700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2508.015628][  T801] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2508.022180][  T801] CR2: 00007ff7d84d9ff8 CR3: 00000001ec125000 CR4: 00000000003406f0
[ 2508.030124][  T801] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2508.038080][  T801] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2508.046018][  T801] Call Trace:
[ 2508.049281][  T801]  ? device_add_disk+0x30/0x30
[ 2508.054014][  T801]  ? vsprintf+0x30/0x30
[ 2508.058139][  T801]  ? device_initialize+0x1c7/0x3d0
[ 2508.063226][  T801]  ? __alloc_disk_node+0x326/0x380
[ 2508.068313][  T801]  loop_add+0x554/0x710
[ 2508.072438][  T801]  loop_control_ioctl+0x564/0x740
[ 2508.077430][  T801]  ? loop_remove+0xa0/0xa0
[ 2508.081812][  T801]  ? __lru_cache_add+0x1bf/0x210
[ 2508.086720][  T801]  ? memset+0x1f/0x40
[ 2508.090695][  T801]  ? fsnotify+0x1332/0x13f0
[ 2508.095172][  T801]  ? loop_remove+0xa0/0xa0
[ 2508.099556][  T801]  do_vfs_ioctl+0x744/0x1730
[ 2508.104112][  T801]  ? selinux_file_ioctl+0x723/0x970
[ 2508.109289][  T801]  ? ioctl_preallocate+0x250/0x250
[ 2508.114388][  T801]  ? __fget+0x40c/0x4a0
[ 2508.118521][  T801]  ? fget_many+0x20/0x20
[ 2508.122735][  T801]  ? check_preemption_disabled+0x154/0x330
[ 2508.128512][  T801]  ? debug_smp_processor_id+0x20/0x20
[ 2508.133856][  T801]  ? security_file_ioctl+0x9d/0xb0
[ 2508.138934][  T801]  __x64_sys_ioctl+0xd4/0x110
[ 2508.143580][  T801]  do_syscall_64+0xcb/0x1c0
14:09:46 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 63)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2508.148053][  T801]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2508.153911][  T801] ---[ end trace 7583e5513725d283 ]---
14:09:46 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:46 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d82", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x6, &(0x7f0000001c40)=@raw=[@map_fd={0x18, 0x8, 0x1, 0x0, r5}, @map_fd={0x18, 0x6, 0x1, 0x0, r3}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x5}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0xffffffffffffffa1, 0x10, &(0x7f0000001d80)={0x3, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:46 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='\x00', &(0x7f00000000c0)='/dev/loop-control\x00', 0x0)
fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0xfffffffffffffdb1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffee9)
r5 = fsopen(&(0x7f0000000100)='ext4\x00', 0x1)
fsconfig$FSCONFIG_SET_FLAG(r5, 0x0, &(0x7f0000000140)='dirsync\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xb)

14:09:46 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

[ 2508.196944][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2508.224619][  T829] FAULT_INJECTION: forcing a failure.
[ 2508.224619][  T829] name failslab, interval 1, probability 0, space 0, times 0
14:09:46 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2a00)

[ 2508.225851][  T831] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=831 comm=syz-executor.1
[ 2508.243195][  T829] CPU: 1 PID: 829 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2508.261234][  T829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2508.271270][  T829] Call Trace:
[ 2508.274534][  T829]  dump_stack+0x1d8/0x241
[ 2508.278831][  T829]  ? panic+0x73e/0x73e
[ 2508.282866][  T829]  ? mutex_unlock+0x19/0x40
[ 2508.287337][  T829]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2508.293108][  T829]  ? selinux_kernfs_init_security+0x155/0x760
[ 2508.299140][  T829]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2508.304134][  T829]  should_fail+0x709/0x870
[ 2508.308519][  T829]  ? setup_fault_attr+0x3d0/0x3d0
[ 2508.313514][  T829]  ? _raw_spin_lock+0xa3/0x1b0
[ 2508.318248][  T829]  ? __kernfs_new_node+0xdb/0x6d0
[ 2508.323250][  T829]  should_failslab+0x5/0x20
[ 2508.327720][  T829]  kmem_cache_alloc+0x24/0x210
[ 2508.332448][  T829]  __kernfs_new_node+0xdb/0x6d0
[ 2508.337275][  T829]  ? mutex_lock+0xa6/0x110
[ 2508.341667][  T829]  ? kernfs_new_node+0x160/0x160
[ 2508.346568][  T829]  ? mutex_lock+0xa6/0x110
[ 2508.350948][  T829]  ? mutex_trylock+0xa0/0xa0
[ 2508.355514][  T829]  kernfs_new_node+0x95/0x160
[ 2508.360219][  T829]  __kernfs_create_file+0x45/0x260
[ 2508.365324][  T829]  sysfs_add_file_mode_ns+0x292/0x340
[ 2508.370668][  T829]  sysfs_merge_group+0x207/0x460
[ 2508.375578][  T829]  ? sysfs_remove_groups+0xb0/0xb0
[ 2508.380658][  T829]  ? device_create_file+0xe8/0x1b0
[ 2508.385737][  T829]  ? bus_add_device+0x92/0x3f0
[ 2508.390470][  T829]  dpm_sysfs_add+0xc0/0x260
[ 2508.394943][  T829]  device_add+0x547/0xbc0
[ 2508.399241][  T829]  device_create_vargs+0x1b8/0x210
[ 2508.404318][  T829]  device_create+0xea/0x130
[ 2508.408788][  T829]  ? device_create_vargs+0x210/0x210
[ 2508.414044][  T829]  bdi_register_va+0x89/0x5e0
[ 2508.418688][  T829]  bdi_register+0xd1/0x120
[ 2508.423071][  T829]  ? __device_add_disk+0x539/0x1200
[ 2508.428234][  T829]  ? bdi_register_va+0x5e0/0x5e0
[ 2508.433138][  T829]  ? percpu_ref_resurrect+0x113/0x190
[ 2508.438475][  T829]  bdi_register_owner+0x56/0xf0
[ 2508.443292][  T829]  __device_add_disk+0x5b8/0x1200
[ 2508.448282][  T829]  ? device_add_disk+0x30/0x30
[ 2508.453010][  T829]  ? vsprintf+0x30/0x30
[ 2508.457136][  T829]  ? device_initialize+0x1c7/0x3d0
[ 2508.462217][  T829]  ? __alloc_disk_node+0x326/0x380
[ 2508.467305][  T829]  loop_add+0x554/0x710
[ 2508.471431][  T829]  loop_control_ioctl+0x564/0x740
[ 2508.476423][  T829]  ? loop_remove+0xa0/0xa0
[ 2508.480809][  T829]  ? __lru_cache_add+0x1bf/0x210
[ 2508.485711][  T829]  ? memset+0x1f/0x40
[ 2508.489664][  T829]  ? fsnotify+0x1332/0x13f0
[ 2508.494141][  T829]  ? loop_remove+0xa0/0xa0
[ 2508.498525][  T829]  do_vfs_ioctl+0x744/0x1730
[ 2508.503081][  T829]  ? selinux_file_ioctl+0x723/0x970
[ 2508.508246][  T829]  ? ioctl_preallocate+0x250/0x250
[ 2508.513325][  T829]  ? __fget+0x40c/0x4a0
[ 2508.517460][  T829]  ? fget_many+0x20/0x20
[ 2508.521669][  T829]  ? check_preemption_disabled+0x154/0x330
[ 2508.527451][  T829]  ? debug_smp_processor_id+0x20/0x20
[ 2508.532791][  T829]  ? security_file_ioctl+0x9d/0xb0
[ 2508.537958][  T829]  __x64_sys_ioctl+0xd4/0x110
[ 2508.542602][  T829]  do_syscall_64+0xcb/0x1c0
14:09:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async, rerun: 32)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (async, rerun: 64)
r5 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (rerun: 64)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x6, &(0x7f0000001c40)=@raw=[@map_fd={0x18, 0x8, 0x1, 0x0, r5}, @map_fd={0x18, 0x6, 0x1, 0x0, r3}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x5}], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0xffffffffffffffa1, 0x10, &(0x7f0000001d80)={0x3, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async, rerun: 32)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (rerun: 32)

[ 2508.547074][  T829]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2508.559447][  T829] ------------[ cut here ]------------
[ 2508.564926][  T829] WARNING: CPU: 1 PID: 829 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2508.573921][  T829] Modules linked in:
[ 2508.577803][  T829] CPU: 1 PID: 829 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2508.589215][  T829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2508.599420][  T829] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2508.605192][  T829] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2508.624783][  T829] RSP: 0018:ffff8881e0bcfa00 EFLAGS: 00010246
[ 2508.630816][  T829] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2508.638788][  T829] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2508.646725][  T829] RBP: ffff8881e0bcfb40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2508.654758][  T829] R10: ffffffff84800000 R11: 1ffff1103c179e00 R12: ffff8881f25f6000
[ 2508.662717][  T829] R13: dffffc0000000000 R14: ffff8881f25f6070 R15: 1ffff1103e4bec9d
[ 2508.670657][  T829] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2508.679550][  T829] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2508.686115][  T829] CR2: 00007fff51ae0828 CR3: 00000001e3489000 CR4: 00000000003406e0
[ 2508.694055][  T829] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2508.701999][  T829] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2508.709935][  T829] Call Trace:
[ 2508.713198][  T829]  ? device_add_disk+0x30/0x30
[ 2508.717926][  T829]  ? vsprintf+0x30/0x30
[ 2508.722486][  T829]  ? device_initialize+0x1c7/0x3d0
[ 2508.727580][  T829]  ? __alloc_disk_node+0x326/0x380
[ 2508.732658][  T829]  loop_add+0x554/0x710
[ 2508.736782][  T829]  loop_control_ioctl+0x564/0x740
[ 2508.741771][  T829]  ? loop_remove+0xa0/0xa0
[ 2508.746154][  T829]  ? __lru_cache_add+0x1bf/0x210
[ 2508.751057][  T829]  ? memset+0x1f/0x40
[ 2508.755004][  T829]  ? fsnotify+0x1332/0x13f0
[ 2508.759471][  T829]  ? loop_remove+0xa0/0xa0
[ 2508.763853][  T829]  do_vfs_ioctl+0x744/0x1730
[ 2508.768414][  T829]  ? selinux_file_ioctl+0x723/0x970
[ 2508.773578][  T829]  ? ioctl_preallocate+0x250/0x250
[ 2508.778653][  T829]  ? __fget+0x40c/0x4a0
[ 2508.782776][  T829]  ? fget_many+0x20/0x20
[ 2508.786982][  T829]  ? check_preemption_disabled+0x154/0x330
[ 2508.792752][  T829]  ? debug_smp_processor_id+0x20/0x20
14:09:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x2a9932e9cb2f2258)
r3 = fsmount(r2, 0x1, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0xffffffffffffff06, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
getresuid(&(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0))
r5 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000400)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @map_val={0x18, 0x9, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @ldst={0x1, 0x3, 0x6, 0x3, 0xa, 0x10, 0xfffffffffffffff8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], &(0x7f0000000540)='GPL\x00', 0x6, 0x22, &(0x7f0000000580)=""/34, 0x41100, 0x0, '\x00', 0x0, 0x0, r5, 0x8, &(0x7f0000000600)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0x3, 0x88c, 0x7}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r3]}, 0x80)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000000880)=""/168, &(0x7f0000000940)=""/187, &(0x7f0000000a00)=""/4096, 0x4000})
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
r6 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r6, 0x10e, 0x2, &(0x7f0000000800)=0x18, 0x4)

14:09:47 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 64)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2508.798090][  T829]  ? security_file_ioctl+0x9d/0xb0
[ 2508.803165][  T829]  __x64_sys_ioctl+0xd4/0x110
[ 2508.807810][  T829]  do_syscall_64+0xcb/0x1c0
[ 2508.812279][  T829]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2508.818135][  T829] ---[ end trace 7583e5513725d284 ]---
14:09:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x2a9932e9cb2f2258)
r3 = fsmount(r2, 0x1, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0xffffffffffffff06, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
getresuid(&(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0))
r5 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000400)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @map_val={0x18, 0x9, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @ldst={0x1, 0x3, 0x6, 0x3, 0xa, 0x10, 0xfffffffffffffff8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], &(0x7f0000000540)='GPL\x00', 0x6, 0x22, &(0x7f0000000580)=""/34, 0x41100, 0x0, '\x00', 0x0, 0x0, r5, 0x8, &(0x7f0000000600)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0x3, 0x88c, 0x7}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r3]}, 0x80)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000000880)=""/168, &(0x7f0000000940)=""/187, &(0x7f0000000a00)=""/4096, 0x4000})
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r6, 0x10e, 0x2, &(0x7f0000000800)=0x18, 0x4)

14:09:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='\x00', &(0x7f00000000c0)='/dev/loop-control\x00', 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0xfffffffffffffdb1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffee9)
r5 = fsopen(&(0x7f0000000100)='ext4\x00', 0x1)
fsconfig$FSCONFIG_SET_FLAG(r5, 0x0, &(0x7f0000000140)='dirsync\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xb)

14:09:47 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:47 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d82", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:47 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2c00)

[ 2508.887818][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2508.899635][  T875] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=875 comm=syz-executor.1
[ 2508.920167][  T870] FAULT_INJECTION: forcing a failure.
[ 2508.920167][  T870] name failslab, interval 1, probability 0, space 0, times 0
[ 2508.933011][  T870] CPU: 1 PID: 870 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2508.944985][  T870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2508.955128][  T870] Call Trace:
[ 2508.958396][  T870]  dump_stack+0x1d8/0x241
[ 2508.962694][  T870]  ? panic+0x73e/0x73e
[ 2508.966750][  T870]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2508.972529][  T870]  ? mutex_unlock+0x19/0x40
[ 2508.977004][  T870]  ? kernfs_add_one+0x4a3/0x5c0
[ 2508.981827][  T870]  should_fail+0x709/0x870
[ 2508.986227][  T870]  ? setup_fault_attr+0x3d0/0x3d0
[ 2508.991227][  T870]  ? _raw_spin_lock_irqsave+0xf8/0x210
[ 2508.996653][  T870]  ? _raw_spin_lock+0x1b0/0x1b0
[ 2509.001469][  T870]  ? sysfs_merge_group+0x3bc/0x460
[ 2509.006549][  T870]  ? kobject_uevent_env+0x26d/0x700
[ 2509.011714][  T870]  should_failslab+0x5/0x20
[ 2509.016273][  T870]  kmem_cache_alloc_trace+0x28/0x240
[ 2509.021529][  T870]  ? dev_uevent_filter+0xb0/0xb0
[ 2509.026527][  T870]  kobject_uevent_env+0x26d/0x700
[ 2509.031533][  T870]  device_add+0x7a7/0xbc0
[ 2509.035865][  T870]  device_create_vargs+0x1b8/0x210
[ 2509.040949][  T870]  device_create+0xea/0x130
[ 2509.045422][  T870]  ? device_create_vargs+0x210/0x210
[ 2509.050678][  T870]  bdi_register_va+0x89/0x5e0
[ 2509.055340][  T870]  bdi_register+0xd1/0x120
[ 2509.059726][  T870]  ? __device_add_disk+0x539/0x1200
[ 2509.064893][  T870]  ? bdi_register_va+0x5e0/0x5e0
[ 2509.069804][  T870]  ? percpu_ref_resurrect+0x113/0x190
[ 2509.075152][  T870]  bdi_register_owner+0x56/0xf0
[ 2509.079975][  T870]  __device_add_disk+0x5b8/0x1200
[ 2509.084980][  T870]  ? device_add_disk+0x30/0x30
[ 2509.089719][  T870]  ? vsprintf+0x30/0x30
[ 2509.093846][  T870]  ? device_initialize+0x1c7/0x3d0
[ 2509.098924][  T870]  ? __alloc_disk_node+0x326/0x380
[ 2509.104002][  T870]  loop_add+0x554/0x710
[ 2509.108127][  T870]  loop_control_ioctl+0x564/0x740
[ 2509.113127][  T870]  ? loop_remove+0xa0/0xa0
[ 2509.117511][  T870]  ? __lru_cache_add+0x1bf/0x210
[ 2509.122418][  T870]  ? memset+0x1f/0x40
[ 2509.126371][  T870]  ? fsnotify+0x1332/0x13f0
[ 2509.130847][  T870]  ? loop_remove+0xa0/0xa0
[ 2509.135231][  T870]  do_vfs_ioctl+0x744/0x1730
[ 2509.139790][  T870]  ? selinux_file_ioctl+0x723/0x970
[ 2509.144964][  T870]  ? ioctl_preallocate+0x250/0x250
[ 2509.150044][  T870]  ? __fget+0x40c/0x4a0
[ 2509.154166][  T870]  ? fget_many+0x20/0x20
[ 2509.158386][  T870]  ? check_preemption_disabled+0x154/0x330
[ 2509.164160][  T870]  ? debug_smp_processor_id+0x20/0x20
[ 2509.169503][  T870]  ? security_file_ioctl+0x9d/0xb0
[ 2509.174580][  T870]  __x64_sys_ioctl+0xd4/0x110
[ 2509.179227][  T870]  do_syscall_64+0xcb/0x1c0
14:09:47 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 65)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2509.183709][  T870]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x2a9932e9cb2f2258)
r3 = fsmount(r2, 0x1, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0xffffffffffffff06, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10) (async)
syz_open_dev$MSR(&(0x7f0000000840), 0x6, 0x0) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
getresuid(&(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0)) (async)
r5 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000400)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @map_val={0x18, 0x9, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @ldst={0x1, 0x3, 0x6, 0x3, 0xa, 0x10, 0xfffffffffffffff8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], &(0x7f0000000540)='GPL\x00', 0x6, 0x22, &(0x7f0000000580)=""/34, 0x41100, 0x0, '\x00', 0x0, 0x0, r5, 0x8, &(0x7f0000000600)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0x3, 0x88c, 0x7}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r3]}, 0x80) (async)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000000880)=""/168, &(0x7f0000000940)=""/187, &(0x7f0000000a00)=""/4096, 0x4000}) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r6, 0x10e, 0x2, &(0x7f0000000800)=0x18, 0x4)

14:09:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 32)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 32)
r2 = fsopen(0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='\x00', &(0x7f00000000c0)='/dev/loop-control\x00', 0x0) (async)
fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0xfffffffffffffdb1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffee9)
r5 = fsopen(&(0x7f0000000100)='ext4\x00', 0x1)
fsconfig$FSCONFIG_SET_FLAG(r5, 0x0, &(0x7f0000000140)='dirsync\x00', 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xb)

14:09:47 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:47 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2d00)

[ 2509.210885][  T897] FAULT_INJECTION: forcing a failure.
[ 2509.210885][  T897] name failslab, interval 1, probability 0, space 0, times 0
[ 2509.226033][  T897] CPU: 1 PID: 897 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2509.233045][  T902] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=902 comm=syz-executor.1
[ 2509.237486][  T897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2509.237489][  T897] Call Trace:
[ 2509.237506][  T897]  dump_stack+0x1d8/0x241
[ 2509.237523][  T897]  ? panic+0x73e/0x73e
[ 2509.271691][  T897]  ? mutex_unlock+0x19/0x40
[ 2509.276169][  T897]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2509.281946][  T897]  ? selinux_kernfs_init_security+0x155/0x760
[ 2509.287979][  T897]  ? idr_alloc_cyclic+0x36e/0x5e0
[ 2509.292970][  T897]  should_fail+0x709/0x870
[ 2509.297354][  T897]  ? setup_fault_attr+0x3d0/0x3d0
[ 2509.302348][  T897]  ? _raw_spin_lock+0xa3/0x1b0
[ 2509.307082][  T897]  ? __kernfs_new_node+0xdb/0x6d0
[ 2509.312084][  T897]  should_failslab+0x5/0x20
[ 2509.316574][  T897]  kmem_cache_alloc+0x24/0x210
[ 2509.321309][  T897]  __kernfs_new_node+0xdb/0x6d0
[ 2509.326264][  T897]  ? mutex_lock+0xa6/0x110
[ 2509.330657][  T897]  ? kernfs_new_node+0x160/0x160
[ 2509.335565][  T897]  ? mutex_lock+0xa6/0x110
[ 2509.339960][  T897]  kernfs_new_node+0x95/0x160
[ 2509.344612][  T897]  __kernfs_create_file+0x45/0x260
[ 2509.349703][  T897]  sysfs_add_file_mode_ns+0x292/0x340
[ 2509.355050][  T897]  sysfs_merge_group+0x207/0x460
[ 2509.359958][  T897]  ? sysfs_remove_groups+0xb0/0xb0
[ 2509.365044][  T897]  ? device_create_file+0xe8/0x1b0
[ 2509.370125][  T897]  ? bus_add_device+0x92/0x3f0
[ 2509.374860][  T897]  dpm_sysfs_add+0xc0/0x260
[ 2509.379356][  T897]  device_add+0x547/0xbc0
[ 2509.383666][  T897]  device_create_vargs+0x1b8/0x210
[ 2509.388750][  T897]  device_create+0xea/0x130
[ 2509.393224][  T897]  ? device_create_vargs+0x210/0x210
[ 2509.398480][  T897]  bdi_register_va+0x89/0x5e0
[ 2509.403137][  T897]  bdi_register+0xd1/0x120
[ 2509.407536][  T897]  ? __device_add_disk+0x539/0x1200
[ 2509.412707][  T897]  ? bdi_register_va+0x5e0/0x5e0
[ 2509.417640][  T897]  ? percpu_ref_resurrect+0x113/0x190
[ 2509.422990][  T897]  bdi_register_owner+0x56/0xf0
[ 2509.427817][  T897]  __device_add_disk+0x5b8/0x1200
[ 2509.432815][  T897]  ? device_add_disk+0x30/0x30
[ 2509.437637][  T897]  ? vsprintf+0x30/0x30
[ 2509.441767][  T897]  ? device_initialize+0x1c7/0x3d0
[ 2509.446852][  T897]  ? __alloc_disk_node+0x326/0x380
[ 2509.452125][  T897]  loop_add+0x554/0x710
[ 2509.456259][  T897]  loop_control_ioctl+0x564/0x740
[ 2509.461259][  T897]  ? loop_remove+0xa0/0xa0
[ 2509.465665][  T897]  ? __lru_cache_add+0x1bf/0x210
[ 2509.470702][  T897]  ? memset+0x1f/0x40
[ 2509.474662][  T897]  ? fsnotify+0x1332/0x13f0
[ 2509.479133][  T897]  ? loop_remove+0xa0/0xa0
[ 2509.483518][  T897]  do_vfs_ioctl+0x744/0x1730
[ 2509.488078][  T897]  ? selinux_file_ioctl+0x723/0x970
[ 2509.493242][  T897]  ? ioctl_preallocate+0x250/0x250
[ 2509.498324][  T897]  ? __fget+0x40c/0x4a0
[ 2509.503404][  T897]  ? fget_many+0x20/0x20
[ 2509.507618][  T897]  ? check_preemption_disabled+0x154/0x330
[ 2509.513389][  T897]  ? debug_smp_processor_id+0x20/0x20
[ 2509.518734][  T897]  ? security_file_ioctl+0x9d/0xb0
[ 2509.523816][  T897]  __x64_sys_ioctl+0xd4/0x110
[ 2509.528492][  T897]  do_syscall_64+0xcb/0x1c0
[ 2509.532965][  T897]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2509.540454][  T897] ------------[ cut here ]------------
[ 2509.545914][  T897] WARNING: CPU: 1 PID: 897 at block/genhd.c:742 __device_add_disk+0xe83/0x1200
[ 2509.554808][  T897] Modules linked in:
[ 2509.558679][  T897] CPU: 1 PID: 897 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2509.570092][  T897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2509.580126][  T897] RIP: 0010:__device_add_disk+0xe83/0x1200
[ 2509.585898][  T897] Code: ff ff e8 f0 b3 45 ff 0f 0b e9 29 f3 ff ff e8 e4 b3 45 ff 0f 0b 42 80 3c 2b 00 0f 85 ae f8 ff ff e9 b1 f8 ff ff e8 cd b3 45 ff <0f> 0b e9 46 f7 ff ff e8 c1 b3 45 ff e9 18 ff ff ff 44 89 f9 80 e1
[ 2509.605473][  T897] RSP: 0018:ffff8881e6947a00 EFLAGS: 00010246
[ 2509.611596][  T897] RAX: ffffffff821f9753 RBX: 00000000fffffff4 RCX: 0000000000040000
[ 2509.619536][  T897] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2509.627487][  T897] RBP: ffff8881e6947b40 R08: ffffffff821f8e93 R09: 0000000000000010
[ 2509.635426][  T897] R10: ffffffff84800000 R11: 1ffff1103cd28e00 R12: ffff8881ec039000
[ 2509.643373][  T897] R13: dffffc0000000000 R14: ffff8881ec039070 R15: 1ffff1103d80729d
[ 2509.651325][  T897] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2509.660221][  T897] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2509.666771][  T897] CR2: 00007ff7be771718 CR3: 00000001e3489000 CR4: 00000000003406e0
[ 2509.674713][  T897] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2509.682653][  T897] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2509.690594][  T897] Call Trace:
[ 2509.693862][  T897]  ? device_add_disk+0x30/0x30
[ 2509.698593][  T897]  ? vsprintf+0x30/0x30
[ 2509.702719][  T897]  ? device_initialize+0x1c7/0x3d0
[ 2509.707799][  T897]  ? __alloc_disk_node+0x326/0x380
[ 2509.712878][  T897]  loop_add+0x554/0x710
[ 2509.717004][  T897]  loop_control_ioctl+0x564/0x740
[ 2509.721997][  T897]  ? loop_remove+0xa0/0xa0
[ 2509.726384][  T897]  ? __lru_cache_add+0x1bf/0x210
[ 2509.731291][  T897]  ? memset+0x1f/0x40
[ 2509.735249][  T897]  ? fsnotify+0x1332/0x13f0
[ 2509.739728][  T897]  ? loop_remove+0xa0/0xa0
[ 2509.744115][  T897]  do_vfs_ioctl+0x744/0x1730
[ 2509.748674][  T897]  ? selinux_file_ioctl+0x723/0x970
[ 2509.753850][  T897]  ? ioctl_preallocate+0x250/0x250
[ 2509.758961][  T897]  ? __fget+0x40c/0x4a0
[ 2509.763085][  T897]  ? fget_many+0x20/0x20
[ 2509.767297][  T897]  ? check_preemption_disabled+0x154/0x330
[ 2509.773072][  T897]  ? debug_smp_processor_id+0x20/0x20
[ 2509.778412][  T897]  ? security_file_ioctl+0x9d/0xb0
[ 2509.783493][  T897]  __x64_sys_ioctl+0xd4/0x110
[ 2509.788139][  T897]  do_syscall_64+0xcb/0x1c0
[ 2509.792620][  T897]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2509.798480][  T897] ---[ end trace 7583e5513725d285 ]---
[ 2509.805359][  T897] debugfs: Directory 'loop0' with parent 'block' already present!
14:09:48 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 66)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:48 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:48 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)

14:09:48 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x1)
getpeername$netlink(r1, &(0x7f0000000400), &(0x7f0000000440)=0xc)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r2, 0xb9)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/partitions\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xc, &(0x7f0000000300)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x7}, @map_fd={0x18, 0xb, 0x1, 0x0, r7}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5}, @map_idx_val={0x18, 0x8, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}], &(0x7f0000000380)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
pipe2$watch_queue(&(0x7f00000003c0), 0x80)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
getresuid(&(0x7f0000000540), &(0x7f0000000580), &(0x7f00000005c0))

14:09:48 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000040)='$[[]:,\x00', &(0x7f0000000080)='./file0\x00', r3)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2509.818649][T32421] udevd[32421]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2509.839192][  T925] FAULT_INJECTION: forcing a failure.
[ 2509.839192][  T925] name failslab, interval 1, probability 0, space 0, times 0
[ 2509.850180][  T927] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=927 comm=syz-executor.1
14:09:48 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x2e00)

[ 2509.869237][  T925] CPU: 0 PID: 925 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2509.880692][  T925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2509.890730][  T925] Call Trace:
[ 2509.893994][  T925]  dump_stack+0x1d8/0x241
[ 2509.898293][  T925]  ? panic+0x73e/0x73e
[ 2509.902331][  T925]  ? bdi_register_owner+0x56/0xf0
[ 2509.907324][  T925]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2509.913104][  T925]  ? do_vfs_ioctl+0x744/0x1730
[ 2509.917834][  T925]  ? do_syscall_64+0xcb/0x1c0
[ 2509.922479][  T925]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2509.928517][  T925]  should_fail+0x709/0x870
[ 2509.932936][  T925]  ? setup_fault_attr+0x3d0/0x3d0
[ 2509.937931][  T925]  ? kobject_get_path+0xbb/0x1a0
[ 2509.942835][  T925]  should_failslab+0x5/0x20
[ 2509.947305][  T925]  __kmalloc+0x51/0x2b0
[ 2509.951445][  T925]  kobject_get_path+0xbb/0x1a0
[ 2509.956181][  T925]  kobject_uevent_env+0x284/0x700
[ 2509.961175][  T925]  device_add+0x7a7/0xbc0
[ 2509.965480][  T925]  device_create_vargs+0x1b8/0x210
[ 2509.970563][  T925]  device_create+0xea/0x130
[ 2509.975035][  T925]  ? device_create_vargs+0x210/0x210
[ 2509.980307][  T925]  bdi_register_va+0x89/0x5e0
[ 2509.984968][  T925]  bdi_register+0xd1/0x120
[ 2509.989362][  T925]  ? __device_add_disk+0x539/0x1200
[ 2509.994530][  T925]  ? bdi_register_va+0x5e0/0x5e0
[ 2509.999438][  T925]  ? percpu_ref_resurrect+0x113/0x190
[ 2510.004780][  T925]  bdi_register_owner+0x56/0xf0
[ 2510.009600][  T925]  __device_add_disk+0x5b8/0x1200
[ 2510.014595][  T925]  ? device_add_disk+0x30/0x30
[ 2510.019325][  T925]  ? vsprintf+0x30/0x30
[ 2510.023545][  T925]  ? device_initialize+0x1c7/0x3d0
[ 2510.028622][  T925]  ? __alloc_disk_node+0x326/0x380
[ 2510.033704][  T925]  loop_add+0x554/0x710
[ 2510.037830][  T925]  loop_control_ioctl+0x564/0x740
[ 2510.042820][  T925]  ? loop_remove+0xa0/0xa0
[ 2510.047203][  T925]  ? __lru_cache_add+0x1bf/0x210
[ 2510.052108][  T925]  ? memset+0x1f/0x40
[ 2510.056060][  T925]  ? fsnotify+0x1332/0x13f0
[ 2510.060535][  T925]  ? loop_remove+0xa0/0xa0
[ 2510.064921][  T925]  do_vfs_ioctl+0x744/0x1730
[ 2510.069479][  T925]  ? selinux_file_ioctl+0x723/0x970
[ 2510.074644][  T925]  ? ioctl_preallocate+0x250/0x250
[ 2510.079720][  T925]  ? __fget+0x40c/0x4a0
[ 2510.083842][  T925]  ? fget_many+0x20/0x20
[ 2510.088049][  T925]  ? check_preemption_disabled+0x154/0x330
[ 2510.093819][  T925]  ? debug_smp_processor_id+0x20/0x20
[ 2510.099156][  T925]  ? security_file_ioctl+0x9d/0xb0
[ 2510.104234][  T925]  __x64_sys_ioctl+0xd4/0x110
[ 2510.108878][  T925]  do_syscall_64+0xcb/0x1c0
[ 2510.113357][  T925]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:48 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 67)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:48 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3000)

14:09:48 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x1) (async)
getpeername$netlink(r1, &(0x7f0000000400), &(0x7f0000000440)=0xc) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r2, 0xb9)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6) (async)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/partitions\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xc, &(0x7f0000000300)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x7}, @map_fd={0x18, 0xb, 0x1, 0x0, r7}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5}, @map_idx_val={0x18, 0x8, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}], &(0x7f0000000380)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
pipe2$watch_queue(&(0x7f00000003c0), 0x80)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (async)
getresuid(&(0x7f0000000540), &(0x7f0000000580), &(0x7f00000005c0))

14:09:48 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000040)='$[[]:,\x00', &(0x7f0000000080)='./file0\x00', r3) (async)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 64)

[ 2510.134630][  T943] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=943 comm=syz-executor.1
14:09:48 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)

14:09:48 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3100)

[ 2510.202046][  T945] FAULT_INJECTION: forcing a failure.
[ 2510.202046][  T945] name failslab, interval 1, probability 0, space 0, times 0
[ 2510.203553][  T956] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=956 comm=syz-executor.1
[ 2510.228610][  T945] CPU: 1 PID: 945 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2510.240053][  T945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2510.250178][  T945] Call Trace:
[ 2510.253443][  T945]  dump_stack+0x1d8/0x241
[ 2510.257741][  T945]  ? panic+0x73e/0x73e
[ 2510.261780][  T945]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2510.267553][  T945]  should_fail+0x709/0x870
[ 2510.271939][  T945]  ? setup_fault_attr+0x3d0/0x3d0
[ 2510.276939][  T945]  ? alloc_uevent_skb+0x73/0x220
[ 2510.281853][  T945]  should_failslab+0x5/0x20
[ 2510.286334][  T945]  __kmalloc_track_caller+0x4f/0x280
[ 2510.291590][  T945]  ? kmem_cache_alloc+0xd0/0x210
[ 2510.296499][  T945]  ? alloc_uevent_skb+0x73/0x220
[ 2510.301404][  T945]  __alloc_skb+0xb5/0x4d0
[ 2510.305753][  T945]  alloc_uevent_skb+0x73/0x220
[ 2510.310485][  T945]  kobject_uevent_net_broadcast+0x2f3/0x570
[ 2510.316356][  T945]  ? kobject_get_path+0x17b/0x1a0
[ 2510.321365][  T945]  kobject_uevent_env+0x552/0x700
[ 2510.326357][  T945]  device_add+0x7a7/0xbc0
[ 2510.330657][  T945]  device_create_vargs+0x1b8/0x210
[ 2510.335741][  T945]  device_create+0xea/0x130
[ 2510.340213][  T945]  ? device_create_vargs+0x210/0x210
[ 2510.345466][  T945]  bdi_register_va+0x89/0x5e0
[ 2510.350156][  T945]  bdi_register+0xd1/0x120
[ 2510.354558][  T945]  ? __device_add_disk+0x539/0x1200
[ 2510.359733][  T945]  ? bdi_register_va+0x5e0/0x5e0
[ 2510.364677][  T945]  ? percpu_ref_resurrect+0x113/0x190
[ 2510.370019][  T945]  bdi_register_owner+0x56/0xf0
[ 2510.374839][  T945]  __device_add_disk+0x5b8/0x1200
[ 2510.379832][  T945]  ? device_add_disk+0x30/0x30
[ 2510.384584][  T945]  ? vsprintf+0x30/0x30
[ 2510.388708][  T945]  ? device_initialize+0x1c7/0x3d0
[ 2510.393797][  T945]  ? __alloc_disk_node+0x326/0x380
[ 2510.398875][  T945]  loop_add+0x554/0x710
[ 2510.402999][  T945]  loop_control_ioctl+0x564/0x740
[ 2510.407993][  T945]  ? loop_remove+0xa0/0xa0
[ 2510.412380][  T945]  ? __lru_cache_add+0x1bf/0x210
[ 2510.417285][  T945]  ? memset+0x1f/0x40
[ 2510.421237][  T945]  ? fsnotify+0x1332/0x13f0
[ 2510.425706][  T945]  ? loop_remove+0xa0/0xa0
[ 2510.430087][  T945]  do_vfs_ioctl+0x744/0x1730
[ 2510.434645][  T945]  ? selinux_file_ioctl+0x723/0x970
[ 2510.439810][  T945]  ? ioctl_preallocate+0x250/0x250
[ 2510.444888][  T945]  ? __fget+0x40c/0x4a0
[ 2510.449009][  T945]  ? fget_many+0x20/0x20
14:09:49 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 68)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2510.453225][  T945]  ? check_preemption_disabled+0x154/0x330
[ 2510.458995][  T945]  ? debug_smp_processor_id+0x20/0x20
[ 2510.464338][  T945]  ? security_file_ioctl+0x9d/0xb0
[ 2510.469422][  T945]  __x64_sys_ioctl+0xd4/0x110
[ 2510.474073][  T945]  do_syscall_64+0xcb/0x1c0
[ 2510.478547][  T945]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:49 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000040)='$[[]:,\x00', &(0x7f0000000080)='./file0\x00', r3)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) (async)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000040)='$[[]:,\x00', &(0x7f0000000080)='./file0\x00', r3) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x1) (async)
getpeername$netlink(r1, &(0x7f0000000400), &(0x7f0000000440)=0xc)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r2 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r2, 0xb9)
r3 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r4 = fsmount(r3, 0x1, 0x6) (async)
r5 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0xfffffffffffffeb7) (async)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/partitions\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xc, &(0x7f0000000300)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x7}, @map_fd={0x18, 0xb, 0x1, 0x0, r7}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fffffff}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5}, @map_idx_val={0x18, 0x8, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}], &(0x7f0000000380)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r6, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r5) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
pipe2$watch_queue(&(0x7f00000003c0), 0x80) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)
getresuid(&(0x7f0000000540), &(0x7f0000000580), &(0x7f00000005c0))

[ 2510.551055][T18472] udevd[18472]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 2510.564146][  T966] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=966 comm=syz-executor.1
[ 2510.579897][  T963] FAULT_INJECTION: forcing a failure.
[ 2510.579897][  T963] name failslab, interval 1, probability 0, space 0, times 0
[ 2510.592744][  T963] CPU: 0 PID: 963 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2510.604169][  T963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2510.614202][  T963] Call Trace:
[ 2510.617486][  T963]  dump_stack+0x1d8/0x241
[ 2510.621794][  T963]  ? panic+0x73e/0x73e
[ 2510.625837][  T963]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2510.631610][  T963]  ? vsnprintf+0x1cd0/0x1cd0
[ 2510.636167][  T963]  ? bdi_register_va+0x89/0x5e0
[ 2510.640996][  T963]  ? bdi_register_owner+0x56/0xf0
[ 2510.646009][  T963]  ? __device_add_disk+0x5b8/0x1200
14:09:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f00000002c0)={0x0, 0x1, 0x20, 0x9, @vifc_lcl_addr=@remote, @remote}, 0x10)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r4, 0x0, 0xcc, &(0x7f0000000300)={@empty, @loopback, 0x0, "c91f6ed0dec9befdbf64f8ed091cc10fba91a871f738a7a751f3403743411ec2", 0x2, 0x100, 0x1, 0x9}, 0x3c)
r5 = fsmount(r2, 0x1, 0x6)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2510.651186][  T963]  ? loop_add+0x554/0x710
[ 2510.655510][  T963]  should_fail+0x709/0x870
[ 2510.659916][  T963]  ? setup_fault_attr+0x3d0/0x3d0
[ 2510.664919][  T963]  ? skb_clone+0x1b7/0x380
[ 2510.669309][  T963]  should_failslab+0x5/0x20
[ 2510.673779][  T963]  kmem_cache_alloc+0x24/0x210
[ 2510.678514][  T963]  skb_clone+0x1b7/0x380
[ 2510.682724][  T963]  ? netlink_broadcast_filtered+0x64d/0x11d0
[ 2510.688670][  T963]  netlink_broadcast_filtered+0x65b/0x11d0
[ 2510.694463][  T963]  netlink_broadcast+0x35/0x50
[ 2510.699218][  T963]  kobject_uevent_net_broadcast+0x385/0x570
[ 2510.705079][  T963]  kobject_uevent_env+0x552/0x700
[ 2510.710252][  T963]  device_add+0x7a7/0xbc0
[ 2510.714564][  T963]  device_create_vargs+0x1b8/0x210
[ 2510.719646][  T963]  device_create+0xea/0x130
[ 2510.724124][  T963]  ? device_create_vargs+0x210/0x210
[ 2510.729383][  T963]  bdi_register_va+0x89/0x5e0
[ 2510.734031][  T963]  bdi_register+0xd1/0x120
[ 2510.738416][  T963]  ? __device_add_disk+0x539/0x1200
[ 2510.743583][  T963]  ? bdi_register_va+0x5e0/0x5e0
[ 2510.748507][  T963]  ? percpu_ref_resurrect+0x113/0x190
[ 2510.753848][  T963]  bdi_register_owner+0x56/0xf0
[ 2510.758672][  T963]  __device_add_disk+0x5b8/0x1200
[ 2510.763676][  T963]  ? device_add_disk+0x30/0x30
[ 2510.768415][  T963]  ? vsprintf+0x30/0x30
[ 2510.772539][  T963]  ? device_initialize+0x1c7/0x3d0
[ 2510.777622][  T963]  ? __alloc_disk_node+0x326/0x380
[ 2510.782699][  T963]  loop_add+0x554/0x710
[ 2510.786821][  T963]  loop_control_ioctl+0x564/0x740
[ 2510.791821][  T963]  ? loop_remove+0xa0/0xa0
[ 2510.796394][  T963]  ? __lru_cache_add+0x1bf/0x210
[ 2510.801305][  T963]  ? memset+0x1f/0x40
[ 2510.805255][  T963]  ? fsnotify+0x1332/0x13f0
[ 2510.809730][  T963]  ? loop_remove+0xa0/0xa0
[ 2510.814113][  T963]  do_vfs_ioctl+0x744/0x1730
[ 2510.818681][  T963]  ? selinux_file_ioctl+0x723/0x970
[ 2510.823845][  T963]  ? ioctl_preallocate+0x250/0x250
[ 2510.828922][  T963]  ? __fget+0x40c/0x4a0
[ 2510.833077][  T963]  ? fget_many+0x20/0x20
[ 2510.837287][  T963]  ? check_preemption_disabled+0x154/0x330
[ 2510.843057][  T963]  ? debug_smp_processor_id+0x20/0x20
14:09:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000000085200000020000009500fb9ddc113b8e19d9288ac1aa000000000000950000000000000056aba183648300027ace82cddf99e163c19c1bf50ddef82cbf39ab88aec2e8b936d2078c1d78b0a0999be4f267c33298542df4da6a42460d17a59b9dc7ac7774873d6fda292d719c2e9f79c87ee30954b5b722339afadfe3020f40f190b0e6e4721a88e251e7c4813818651b876d23c4a2eb447a7117bdd98596bb9fc92dff58c7c15594e7"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:49 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3200)

14:09:49 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 69)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2510.848402][  T963]  ? security_file_ioctl+0x9d/0xb0
[ 2510.853480][  T963]  __x64_sys_ioctl+0xd4/0x110
[ 2510.858125][  T963]  do_syscall_64+0xcb/0x1c0
[ 2510.862596][  T963]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:49 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async, rerun: 64)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async, rerun: 64)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f00000002c0)={0x0, 0x1, 0x20, 0x9, @vifc_lcl_addr=@remote, @remote}, 0x10) (async)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r4, 0x0, 0xcc, &(0x7f0000000300)={@empty, @loopback, 0x0, "c91f6ed0dec9befdbf64f8ed091cc10fba91a871f738a7a751f3403743411ec2", 0x2, 0x100, 0x1, 0x9}, 0x3c) (async, rerun: 64)
r5 = fsmount(r2, 0x1, 0x6) (rerun: 64)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7) (rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async, rerun: 64)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (rerun: 64)

14:09:49 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)

14:09:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000000085200000020000009500fb9ddc113b8e19d9288ac1aa000000000000950000000000000056aba183648300027ace82cddf99e163c19c1bf50ddef82cbf39ab88aec2e8b936d2078c1d78b0a0999be4f267c33298542df4da6a42460d17a59b9dc7ac7774873d6fda292d719c2e9f79c87ee30954b5b722339afadfe3020f40f190b0e6e4721a88e251e7c4813818651b876d23c4a2eb447a7117bdd98596bb9fc92dff58c7c15594e7"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000000085200000020000009500fb9ddc113b8e19d9288ac1aa000000000000950000000000000056aba183648300027ace82cddf99e163c19c1bf50ddef82cbf39ab88aec2e8b936d2078c1d78b0a0999be4f267c33298542df4da6a42460d17a59b9dc7ac7774873d6fda292d719c2e9f79c87ee30954b5b722339afadfe3020f40f190b0e6e4721a88e251e7c4813818651b876d23c4a2eb447a7117bdd98596bb9fc92dff58c7c15594e7"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2510.936461][ T1012] FAULT_INJECTION: forcing a failure.
[ 2510.936461][ T1012] name failslab, interval 1, probability 0, space 0, times 0
[ 2510.941399][ T1016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1016 comm=syz-executor.1
[ 2510.966367][ T1012] CPU: 1 PID: 1012 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2510.977906][ T1012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2510.987946][ T1012] Call Trace:
[ 2510.991234][ T1012]  dump_stack+0x1d8/0x241
[ 2510.995555][ T1012]  ? panic+0x73e/0x73e
[ 2510.999616][ T1012]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2511.005410][ T1012]  ? vsnprintf+0x1cd0/0x1cd0
[ 2511.009989][ T1012]  ? bdi_register_va+0x89/0x5e0
[ 2511.014829][ T1012]  ? bdi_register_owner+0x56/0xf0
[ 2511.019841][ T1012]  ? __device_add_disk+0x5b8/0x1200
[ 2511.025048][ T1012]  ? loop_add+0x554/0x710
[ 2511.029367][ T1012]  should_fail+0x709/0x870
[ 2511.033790][ T1012]  ? setup_fault_attr+0x3d0/0x3d0
[ 2511.038804][ T1012]  ? skb_clone+0x1b7/0x380
[ 2511.043206][ T1012]  should_failslab+0x5/0x20
[ 2511.047693][ T1012]  kmem_cache_alloc+0x24/0x210
[ 2511.052446][ T1012]  skb_clone+0x1b7/0x380
[ 2511.056677][ T1012]  ? netlink_broadcast_filtered+0x64d/0x11d0
[ 2511.062656][ T1012]  netlink_broadcast_filtered+0x65b/0x11d0
[ 2511.068456][ T1012]  netlink_broadcast+0x35/0x50
[ 2511.073207][ T1012]  kobject_uevent_net_broadcast+0x385/0x570
[ 2511.079093][ T1012]  kobject_uevent_env+0x552/0x700
[ 2511.084118][ T1012]  device_add+0x7a7/0xbc0
[ 2511.088437][ T1012]  device_create_vargs+0x1b8/0x210
[ 2511.093543][ T1012]  device_create+0xea/0x130
[ 2511.098213][ T1012]  ? device_create_vargs+0x210/0x210
[ 2511.103488][ T1012]  bdi_register_va+0x89/0x5e0
[ 2511.108151][ T1012]  bdi_register+0xd1/0x120
[ 2511.112556][ T1012]  ? __device_add_disk+0x539/0x1200
[ 2511.117767][ T1012]  ? bdi_register_va+0x5e0/0x5e0
[ 2511.122701][ T1012]  ? percpu_ref_resurrect+0x113/0x190
[ 2511.128061][ T1012]  bdi_register_owner+0x56/0xf0
[ 2511.132900][ T1012]  __device_add_disk+0x5b8/0x1200
[ 2511.137914][ T1012]  ? device_add_disk+0x30/0x30
[ 2511.142664][ T1012]  ? vsprintf+0x30/0x30
[ 2511.146807][ T1012]  ? device_initialize+0x1c7/0x3d0
[ 2511.151911][ T1012]  ? __alloc_disk_node+0x326/0x380
[ 2511.157011][ T1012]  loop_add+0x554/0x710
[ 2511.161154][ T1012]  loop_control_ioctl+0x564/0x740
[ 2511.166171][ T1012]  ? loop_remove+0xa0/0xa0
[ 2511.170576][ T1012]  ? __lru_cache_add+0x1bf/0x210
[ 2511.175509][ T1012]  ? memset+0x1f/0x40
[ 2511.179480][ T1012]  ? fsnotify+0x1332/0x13f0
[ 2511.183987][ T1012]  ? loop_remove+0xa0/0xa0
[ 2511.188391][ T1012]  do_vfs_ioctl+0x744/0x1730
[ 2511.192972][ T1012]  ? selinux_file_ioctl+0x723/0x970
[ 2511.198159][ T1012]  ? ioctl_preallocate+0x250/0x250
[ 2511.203267][ T1012]  ? __fget+0x40c/0x4a0
[ 2511.207412][ T1012]  ? fget_many+0x20/0x20
[ 2511.211637][ T1012]  ? check_preemption_disabled+0x154/0x330
[ 2511.217434][ T1012]  ? debug_smp_processor_id+0x20/0x20
[ 2511.222796][ T1012]  ? security_file_ioctl+0x9d/0xb0
[ 2511.227895][ T1012]  __x64_sys_ioctl+0xd4/0x110
[ 2511.232567][ T1012]  do_syscall_64+0xcb/0x1c0
14:09:49 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3400)

14:09:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000000085200000020000009500fb9ddc113b8e19d9288ac1aa000000000000950000000000000056aba183648300027ace82cddf99e163c19c1bf50ddef82cbf39ab88aec2e8b936d2078c1d78b0a0999be4f267c33298542df4da6a42460d17a59b9dc7ac7774873d6fda292d719c2e9f79c87ee30954b5b722339afadfe3020f40f190b0e6e4721a88e251e7c4813818651b876d23c4a2eb447a7117bdd98596bb9fc92dff58c7c15594e7"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff000000000000000085200000020000009500fb9ddc113b8e19d9288ac1aa000000000000950000000000000056aba183648300027ace82cddf99e163c19c1bf50ddef82cbf39ab88aec2e8b936d2078c1d78b0a0999be4f267c33298542df4da6a42460d17a59b9dc7ac7774873d6fda292d719c2e9f79c87ee30954b5b722339afadfe3020f40f190b0e6e4721a88e251e7c4813818651b876d23c4a2eb447a7117bdd98596bb9fc92dff58c7c15594e7"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2511.237067][ T1012]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:49 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 70)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:49 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0) (async)
ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f00000002c0)={0x0, 0x1, 0x20, 0x9, @vifc_lcl_addr=@remote, @remote}, 0x10) (async)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r4, 0x0, 0xcc, &(0x7f0000000300)={@empty, @loopback, 0x0, "c91f6ed0dec9befdbf64f8ed091cc10fba91a871f738a7a751f3403743411ec2", 0x2, 0x100, 0x1, 0x9}, 0x3c)
r5 = fsmount(r2, 0x1, 0x6) (async)
r6 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r7, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:50 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000040))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:50 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3a00)

[ 2511.317298][ T1051] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1051 comm=syz-executor.1
[ 2511.330621][ T1048] FAULT_INJECTION: forcing a failure.
[ 2511.330621][ T1048] name failslab, interval 1, probability 0, space 0, times 0
[ 2511.351912][ T1048] CPU: 1 PID: 1048 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2511.363452][ T1048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2511.373500][ T1048] Call Trace:
[ 2511.376786][ T1048]  dump_stack+0x1d8/0x241
[ 2511.381113][ T1048]  ? panic+0x73e/0x73e
[ 2511.385187][ T1048]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2511.390982][ T1048]  ? __lookup_slow+0x340/0x450
[ 2511.395730][ T1048]  should_fail+0x709/0x870
[ 2511.400133][ T1048]  ? setup_fault_attr+0x3d0/0x3d0
[ 2511.405147][ T1048]  ? lookup_one_len+0x426/0x680
[ 2511.409986][ T1048]  ? new_inode_pseudo+0x78/0x210
[ 2511.414919][ T1048]  should_failslab+0x5/0x20
[ 2511.419408][ T1048]  kmem_cache_alloc+0x24/0x210
[ 2511.424160][ T1048]  new_inode_pseudo+0x78/0x210
[ 2511.428909][ T1048]  new_inode+0x25/0x1d0
[ 2511.433148][ T1048]  ? start_creating+0x183/0x270
[ 2511.438007][ T1048]  debugfs_create_dir+0x66/0x380
[ 2511.442938][ T1048]  bdi_register_va+0x232/0x5e0
[ 2511.447698][ T1048]  bdi_register+0xd1/0x120
[ 2511.452112][ T1048]  ? __device_add_disk+0x539/0x1200
[ 2511.457301][ T1048]  ? bdi_register_va+0x5e0/0x5e0
[ 2511.462233][ T1048]  ? percpu_ref_resurrect+0x113/0x190
[ 2511.467597][ T1048]  bdi_register_owner+0x56/0xf0
[ 2511.472437][ T1048]  __device_add_disk+0x5b8/0x1200
[ 2511.477488][ T1048]  ? device_add_disk+0x30/0x30
[ 2511.482235][ T1048]  ? vsprintf+0x30/0x30
[ 2511.486385][ T1048]  ? device_initialize+0x1c7/0x3d0
[ 2511.491490][ T1048]  ? __alloc_disk_node+0x326/0x380
[ 2511.496588][ T1048]  loop_add+0x554/0x710
[ 2511.500733][ T1048]  loop_control_ioctl+0x564/0x740
[ 2511.505746][ T1048]  ? loop_remove+0xa0/0xa0
[ 2511.510148][ T1048]  ? __lru_cache_add+0x1bf/0x210
[ 2511.515084][ T1048]  ? memset+0x1f/0x40
[ 2511.519054][ T1048]  ? fsnotify+0x1332/0x13f0
[ 2511.523552][ T1048]  ? loop_remove+0xa0/0xa0
[ 2511.527954][ T1048]  do_vfs_ioctl+0x744/0x1730
[ 2511.532534][ T1048]  ? selinux_file_ioctl+0x723/0x970
[ 2511.537728][ T1048]  ? ioctl_preallocate+0x250/0x250
[ 2511.543098][ T1048]  ? __fget+0x40c/0x4a0
[ 2511.547240][ T1048]  ? fget_many+0x20/0x20
[ 2511.551469][ T1048]  ? check_preemption_disabled+0x154/0x330
[ 2511.557264][ T1048]  ? debug_smp_processor_id+0x20/0x20
[ 2511.562625][ T1048]  ? security_file_ioctl+0x9d/0xb0
14:09:50 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 71)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2511.567723][ T1048]  __x64_sys_ioctl+0xd4/0x110
[ 2511.572387][ T1048]  do_syscall_64+0xcb/0x1c0
[ 2511.576880][ T1048]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2511.586666][ T1048] debugfs: out of free dentries, can not create directory '7:0'
14:09:50 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000040)) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x0, 0x8d)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:50 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x3e00)

[ 2511.658334][ T1081] FAULT_INJECTION: forcing a failure.
[ 2511.658334][ T1081] name failslab, interval 1, probability 0, space 0, times 0
[ 2511.674946][ T1086] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1086 comm=syz-executor.1
[ 2511.690465][ T1081] CPU: 1 PID: 1081 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2511.702005][ T1081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2511.712045][ T1081] Call Trace:
[ 2511.715335][ T1081]  dump_stack+0x1d8/0x241
[ 2511.719660][ T1081]  ? panic+0x73e/0x73e
[ 2511.723736][ T1081]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2511.729531][ T1081]  ? __lookup_slow+0x340/0x450
[ 2511.734279][ T1081]  should_fail+0x709/0x870
[ 2511.738683][ T1081]  ? setup_fault_attr+0x3d0/0x3d0
[ 2511.743689][ T1081]  ? lookup_one_len+0x426/0x680
[ 2511.748542][ T1081]  ? new_inode_pseudo+0x78/0x210
[ 2511.753469][ T1081]  should_failslab+0x5/0x20
[ 2511.757959][ T1081]  kmem_cache_alloc+0x24/0x210
[ 2511.762712][ T1081]  new_inode_pseudo+0x78/0x210
[ 2511.767508][ T1081]  new_inode+0x25/0x1d0
[ 2511.771664][ T1081]  ? start_creating+0x183/0x270
[ 2511.776511][ T1081]  debugfs_create_dir+0x66/0x380
[ 2511.781438][ T1081]  bdi_register_va+0x232/0x5e0
[ 2511.786191][ T1081]  bdi_register+0xd1/0x120
[ 2511.790602][ T1081]  ? __device_add_disk+0x539/0x1200
[ 2511.795786][ T1081]  ? bdi_register_va+0x5e0/0x5e0
[ 2511.800708][ T1081]  ? percpu_ref_resurrect+0x113/0x190
[ 2511.806069][ T1081]  bdi_register_owner+0x56/0xf0
[ 2511.810905][ T1081]  __device_add_disk+0x5b8/0x1200
[ 2511.815919][ T1081]  ? device_add_disk+0x30/0x30
[ 2511.820666][ T1081]  ? vsprintf+0x30/0x30
[ 2511.824808][ T1081]  ? device_initialize+0x1c7/0x3d0
[ 2511.829901][ T1081]  ? __alloc_disk_node+0x326/0x380
[ 2511.834995][ T1081]  loop_add+0x554/0x710
[ 2511.839141][ T1081]  loop_control_ioctl+0x564/0x740
[ 2511.844153][ T1081]  ? loop_remove+0xa0/0xa0
[ 2511.848553][ T1081]  ? __lru_cache_add+0x1bf/0x210
[ 2511.853482][ T1081]  ? memset+0x1f/0x40
[ 2511.857450][ T1081]  ? fsnotify+0x1332/0x13f0
[ 2511.862025][ T1081]  ? loop_remove+0xa0/0xa0
[ 2511.866431][ T1081]  do_vfs_ioctl+0x744/0x1730
[ 2511.871011][ T1081]  ? selinux_file_ioctl+0x723/0x970
[ 2511.876195][ T1081]  ? ioctl_preallocate+0x250/0x250
[ 2511.881299][ T1081]  ? __fget+0x40c/0x4a0
[ 2511.885445][ T1081]  ? fget_many+0x20/0x20
[ 2511.889677][ T1081]  ? check_preemption_disabled+0x154/0x330
[ 2511.895472][ T1081]  ? debug_smp_processor_id+0x20/0x20
[ 2511.900832][ T1081]  ? security_file_ioctl+0x9d/0xb0
14:09:50 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 72)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2511.905932][ T1081]  __x64_sys_ioctl+0xd4/0x110
[ 2511.910602][ T1081]  do_syscall_64+0xcb/0x1c0
[ 2511.915097][ T1081]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2511.922512][ T1081] debugfs: out of free dentries, can not create directory '7:0'
14:09:50 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:50 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(0x0, 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0) (async)
r2 = fsmount(r1, 0x0, 0x8d)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000040))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
fstat(0xffffffffffffffff, &(0x7f0000000040)) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

[ 2511.975404][ T1103] FAULT_INJECTION: forcing a failure.
[ 2511.975404][ T1103] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2511.977306][ T1105] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1105 comm=syz-executor.1
[ 2512.018689][ T1103] CPU: 0 PID: 1103 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2512.030230][ T1103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2512.040254][ T1103] Call Trace:
[ 2512.043520][ T1103]  dump_stack+0x1d8/0x241
[ 2512.047818][ T1103]  ? panic+0x73e/0x73e
[ 2512.051869][ T1103]  ? stack_trace_save+0x132/0x200
[ 2512.056864][ T1103]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2512.062644][ T1103]  ? stack_trace_snprint+0x170/0x170
[ 2512.067911][ T1103]  should_fail+0x709/0x870
[ 2512.072304][ T1103]  ? setup_fault_attr+0x3d0/0x3d0
[ 2512.077300][ T1103]  ? __kasan_kmalloc+0x131/0x1e0
[ 2512.082207][ T1103]  ? kmem_cache_alloc+0xd0/0x210
[ 2512.087112][ T1103]  ? inode_init_always+0x5db/0x800
[ 2512.092193][ T1103]  ? new_inode_pseudo+0x8f/0x210
[ 2512.097107][ T1103]  __alloc_pages_nodemask+0x1b6/0x860
[ 2512.102453][ T1103]  ? __x64_sys_ioctl+0xd4/0x110
[ 2512.107293][ T1103]  ? do_syscall_64+0xcb/0x1c0
[ 2512.111946][ T1103]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2512.117464][ T1103]  ? lockref_get+0x1b3/0x2a0
[ 2512.122030][ T1103]  ? asan.module_dtor+0x20/0x20
[ 2512.126860][ T1103]  __get_free_pages+0xa/0x30
[ 2512.131433][ T1103]  selinux_genfs_get_sid+0x55/0x250
[ 2512.136608][ T1103]  inode_doinit_with_dentry+0x87c/0x1020
[ 2512.142212][ T1103]  ? sb_finish_set_opts+0x7a0/0x7a0
[ 2512.147388][ T1103]  ? current_time+0x1c4/0x310
[ 2512.152034][ T1103]  ? atime_needs_update+0x580/0x580
[ 2512.157211][ T1103]  security_d_instantiate+0xa5/0x100
[ 2512.162480][ T1103]  d_instantiate+0x51/0x90
[ 2512.166863][ T1103]  debugfs_create_dir+0x1a1/0x380
[ 2512.171856][ T1103]  bdi_register_va+0x232/0x5e0
[ 2512.176585][ T1103]  bdi_register+0xd1/0x120
[ 2512.180969][ T1103]  ? __device_add_disk+0x539/0x1200
[ 2512.186131][ T1103]  ? bdi_register_va+0x5e0/0x5e0
[ 2512.191042][ T1103]  ? percpu_ref_resurrect+0x113/0x190
[ 2512.196390][ T1103]  bdi_register_owner+0x56/0xf0
[ 2512.201207][ T1103]  __device_add_disk+0x5b8/0x1200
[ 2512.206198][ T1103]  ? device_add_disk+0x30/0x30
[ 2512.210926][ T1103]  ? vsprintf+0x30/0x30
[ 2512.215062][ T1103]  ? device_initialize+0x1c7/0x3d0
[ 2512.220147][ T1103]  ? __alloc_disk_node+0x326/0x380
[ 2512.225343][ T1103]  loop_add+0x554/0x710
[ 2512.229469][ T1103]  loop_control_ioctl+0x564/0x740
[ 2512.234464][ T1103]  ? loop_remove+0xa0/0xa0
[ 2512.238850][ T1103]  ? __lru_cache_add+0x1bf/0x210
[ 2512.243761][ T1103]  ? memset+0x1f/0x40
[ 2512.247717][ T1103]  ? fsnotify+0x1332/0x13f0
[ 2512.252287][ T1103]  ? loop_remove+0xa0/0xa0
[ 2512.256680][ T1103]  do_vfs_ioctl+0x744/0x1730
[ 2512.261246][ T1103]  ? selinux_file_ioctl+0x723/0x970
[ 2512.266409][ T1103]  ? ioctl_preallocate+0x250/0x250
[ 2512.271489][ T1103]  ? __fget+0x40c/0x4a0
14:09:51 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4000)

14:09:51 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 73)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2512.275613][ T1103]  ? fget_many+0x20/0x20
[ 2512.279824][ T1103]  ? check_preemption_disabled+0x154/0x330
[ 2512.285595][ T1103]  ? debug_smp_processor_id+0x20/0x20
[ 2512.290935][ T1103]  ? security_file_ioctl+0x9d/0xb0
[ 2512.296014][ T1103]  __x64_sys_ioctl+0xd4/0x110
[ 2512.300659][ T1103]  do_syscall_64+0xcb/0x1c0
[ 2512.305131][ T1103]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(0x0, 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x0, 0x8d) (async, rerun: 64)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r4, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x5c, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x2f}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_IPPROTO={0x5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @empty}, @FOU_ATTR_PEER_V4={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x20}}]}, 0x5c}}, 0x40000)
r3 = fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000240), r3)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r3, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x11c, r4, 0x400, 0x70bd25, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8800)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2512.371280][ T1134] FAULT_INJECTION: forcing a failure.
[ 2512.371280][ T1134] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2512.389242][ T1134] CPU: 1 PID: 1134 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2512.400776][ T1134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2512.410813][ T1134] Call Trace:
[ 2512.414085][ T1134]  dump_stack+0x1d8/0x241
[ 2512.418389][ T1134]  ? panic+0x73e/0x73e
[ 2512.422435][ T1134]  ? stack_trace_save+0x132/0x200
[ 2512.427433][ T1134]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2512.433214][ T1134]  ? stack_trace_snprint+0x170/0x170
[ 2512.438472][ T1134]  should_fail+0x709/0x870
[ 2512.442862][ T1134]  ? setup_fault_attr+0x3d0/0x3d0
[ 2512.447852][ T1134]  ? __kasan_kmalloc+0x131/0x1e0
[ 2512.452761][ T1134]  ? kmem_cache_alloc+0xd0/0x210
[ 2512.457677][ T1134]  ? inode_init_always+0x5db/0x800
[ 2512.462773][ T1134]  ? new_inode_pseudo+0x8f/0x210
[ 2512.467685][ T1134]  __alloc_pages_nodemask+0x1b6/0x860
[ 2512.473026][ T1134]  ? __x64_sys_ioctl+0xd4/0x110
[ 2512.477847][ T1134]  ? do_syscall_64+0xcb/0x1c0
[ 2512.482508][ T1134]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2512.488025][ T1134]  ? lockref_get+0x1b3/0x2a0
[ 2512.492596][ T1134]  ? asan.module_dtor+0x20/0x20
[ 2512.497419][ T1134]  __get_free_pages+0xa/0x30
[ 2512.501977][ T1134]  selinux_genfs_get_sid+0x55/0x250
[ 2512.507149][ T1134]  inode_doinit_with_dentry+0x87c/0x1020
[ 2512.512767][ T1134]  ? sb_finish_set_opts+0x7a0/0x7a0
[ 2512.517946][ T1134]  ? current_time+0x1c4/0x310
[ 2512.522601][ T1134]  ? atime_needs_update+0x580/0x580
[ 2512.527774][ T1134]  security_d_instantiate+0xa5/0x100
[ 2512.533027][ T1134]  d_instantiate+0x51/0x90
[ 2512.537412][ T1134]  debugfs_create_dir+0x1a1/0x380
[ 2512.542404][ T1134]  bdi_register_va+0x232/0x5e0
[ 2512.547135][ T1134]  bdi_register+0xd1/0x120
[ 2512.551519][ T1134]  ? __device_add_disk+0x539/0x1200
[ 2512.556684][ T1134]  ? bdi_register_va+0x5e0/0x5e0
[ 2512.561594][ T1134]  ? percpu_ref_resurrect+0x113/0x190
[ 2512.566933][ T1134]  bdi_register_owner+0x56/0xf0
[ 2512.571756][ T1134]  __device_add_disk+0x5b8/0x1200
[ 2512.576748][ T1134]  ? device_add_disk+0x30/0x30
[ 2512.581478][ T1134]  ? vsprintf+0x30/0x30
[ 2512.585606][ T1134]  ? device_initialize+0x1c7/0x3d0
[ 2512.590684][ T1134]  ? __alloc_disk_node+0x326/0x380
[ 2512.595773][ T1134]  loop_add+0x554/0x710
[ 2512.599902][ T1134]  loop_control_ioctl+0x564/0x740
[ 2512.604892][ T1134]  ? loop_remove+0xa0/0xa0
[ 2512.609284][ T1134]  ? __lru_cache_add+0x1bf/0x210
[ 2512.614200][ T1134]  ? memset+0x1f/0x40
[ 2512.618152][ T1134]  ? fsnotify+0x1332/0x13f0
[ 2512.622630][ T1134]  ? loop_remove+0xa0/0xa0
[ 2512.627029][ T1134]  do_vfs_ioctl+0x744/0x1730
[ 2512.631595][ T1134]  ? selinux_file_ioctl+0x723/0x970
[ 2512.636757][ T1134]  ? ioctl_preallocate+0x250/0x250
[ 2512.641844][ T1134]  ? __fget+0x40c/0x4a0
[ 2512.645975][ T1134]  ? fget_many+0x20/0x20
[ 2512.650183][ T1134]  ? check_preemption_disabled+0x154/0x330
[ 2512.655955][ T1134]  ? debug_smp_processor_id+0x20/0x20
[ 2512.661304][ T1134]  ? security_file_ioctl+0x9d/0xb0
[ 2512.666394][ T1134]  __x64_sys_ioctl+0xd4/0x110
14:09:51 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4200)

14:09:51 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 74)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x5c, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x2f}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_IPPROTO={0x5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @empty}, @FOU_ATTR_PEER_V4={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x20}}]}, 0x5c}}, 0x40000) (async)
r3 = fsmount(r2, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000240), r3)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r3, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x11c, r4, 0x400, 0x70bd25, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8800)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2512.671050][ T1134]  do_syscall_64+0xcb/0x1c0
[ 2512.675526][ T1134]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x0, @vifc_lcl_ifindex, @multicast2}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(0x0, 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x1, 0x765c, @vifc_lcl_ifindex=r5, @loopback}, 0x10)
r7 = syz_genetlink_get_family_id$team(&(0x7f0000000200), r4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r6, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000300)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000540)}}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r3, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r11=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001580)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000852000000200000095000000000000009500000000000000000000000e3756c595aadaad29906d91d03f4a7df5878263e552"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r11, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a40)={r3, 0xe0, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x1, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0], 0x0, 0x8, &(0x7f0000000840)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000880), &(0x7f00000008c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000900)}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r3, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000a80)=[0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x5, 0x8, &(0x7f0000000ac0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000b00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000b40)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000b80), &(0x7f0000000bc0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000c00)}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001040)={r4, 0xe0, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000d80)=[0x0, 0x0, 0x0], ""/16, <r14=>0x0, 0x0, 0x0, 0x0, 0x7, 0x4, &(0x7f0000000dc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000e00)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000e40)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000e80), &(0x7f0000000ec0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000f00)}}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001100)={r4, 0x58, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r15=>0x0}}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000011c0)={r1, 0x58, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r16=>0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000014c0)={r3, 0xe0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000001200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r17=>0x0, 0x0, 0x0, 0x0, 0x3, 0x9, &(0x7f0000001240)=[0x0, 0x0, 0x0], &(0x7f0000001280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000012c0)=[{}], 0x8, 0x10, &(0x7f0000001300), &(0x7f0000001340), 0x8, 0x10, 0x8, 0x8, &(0x7f0000001380)}}, 0x10)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000001540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001e40)={0x89c, r7, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x20c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x100}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3f}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}]}}, {{0x8, 0x1, r10}, {0x248, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x7fff, 0xff, 0xff, 0x6}, {0x800, 0x81, 0x8, 0x1}, {0x5, 0x6, 0x7b, 0x7f}, {0x81, 0x0, 0x6, 0x74c1be52}, {0x100, 0x7, 0x20, 0x374}, {0x7, 0x3, 0x0, 0x4}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3f, 0x40, 0x20, 0x800}, {0x0, 0x40, 0xe6, 0x8}, {0x3366, 0x2, 0x6, 0x950f}, {0x1, 0x8, 0x1}, {0x7, 0x0, 0x1, 0x10000}, {0x6, 0x3, 0x80, 0x1}, {0x9648, 0x4, 0x6, 0xffffff6d}]}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x1000, 0x6, 0x40, 0x4}, {0xff, 0x1f, 0x7, 0x40}, {0x5, 0x32, 0x8, 0x9360}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}]}}, {{0x8, 0x1, r11}, {0x170, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3c}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf0}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r14}}}]}}, {{0x8, 0x1, r15}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r16}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r17}, {0x160, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2328}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0x40, 0xd5, 0x4, 0xffff}, {0x0, 0x4, 0x2, 0x7bc}, {0xfeff, 0x3f, 0x0, 0x5}, {0x5c60, 0x5, 0x9, 0x5}, {0x7ff, 0x0, 0x5}, {0x6, 0xc7, 0x8, 0x7fff}, {0x9d97, 0x7f, 0x6, 0x9}, {0x2, 0x7f, 0xff}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8}}}]}}]}, 0x89c}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000804)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2512.750463][ T1158] FAULT_INJECTION: forcing a failure.
[ 2512.750463][ T1158] name failslab, interval 1, probability 0, space 0, times 0
[ 2512.766898][ T1158] CPU: 0 PID: 1158 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2512.778452][ T1158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2512.788545][ T1158] Call Trace:
[ 2512.791831][ T1158]  dump_stack+0x1d8/0x241
[ 2512.796149][ T1158]  ? panic+0x73e/0x73e
[ 2512.800204][ T1158]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2512.805996][ T1158]  ? __lookup_slow+0x340/0x450
[ 2512.810745][ T1158]  should_fail+0x709/0x870
[ 2512.815153][ T1158]  ? setup_fault_attr+0x3d0/0x3d0
[ 2512.820165][ T1158]  ? lookup_one_len+0x426/0x680
[ 2512.825004][ T1158]  ? new_inode_pseudo+0x78/0x210
[ 2512.829924][ T1158]  should_failslab+0x5/0x20
[ 2512.834412][ T1158]  kmem_cache_alloc+0x24/0x210
[ 2512.839162][ T1158]  new_inode_pseudo+0x78/0x210
[ 2512.843908][ T1158]  new_inode+0x25/0x1d0
[ 2512.848047][ T1158]  ? start_creating+0x183/0x270
[ 2512.852884][ T1158]  __debugfs_create_file+0xb6/0x400
[ 2512.858068][ T1158]  ? debugfs_create_dir+0x2e6/0x380
[ 2512.863250][ T1158]  bdi_register_va+0x274/0x5e0
[ 2512.867999][ T1158]  bdi_register+0xd1/0x120
[ 2512.872402][ T1158]  ? __device_add_disk+0x539/0x1200
[ 2512.877587][ T1158]  ? bdi_register_va+0x5e0/0x5e0
[ 2512.882516][ T1158]  ? percpu_ref_resurrect+0x113/0x190
[ 2512.887877][ T1158]  bdi_register_owner+0x56/0xf0
[ 2512.892716][ T1158]  __device_add_disk+0x5b8/0x1200
[ 2512.897730][ T1158]  ? device_add_disk+0x30/0x30
[ 2512.902480][ T1158]  ? vsprintf+0x30/0x30
[ 2512.906618][ T1158]  ? device_initialize+0x1c7/0x3d0
[ 2512.911717][ T1158]  ? __alloc_disk_node+0x326/0x380
[ 2512.916815][ T1158]  loop_add+0x554/0x710
[ 2512.920954][ T1158]  loop_control_ioctl+0x564/0x740
[ 2512.925961][ T1158]  ? loop_remove+0xa0/0xa0
[ 2512.930365][ T1158]  ? __lru_cache_add+0x1bf/0x210
[ 2512.935287][ T1158]  ? memset+0x1f/0x40
[ 2512.939252][ T1158]  ? fsnotify+0x1332/0x13f0
[ 2512.943738][ T1158]  ? loop_remove+0xa0/0xa0
[ 2512.948141][ T1158]  do_vfs_ioctl+0x744/0x1730
[ 2512.952749][ T1158]  ? selinux_file_ioctl+0x723/0x970
[ 2512.957929][ T1158]  ? ioctl_preallocate+0x250/0x250
[ 2512.963024][ T1158]  ? __fget+0x40c/0x4a0
[ 2512.967169][ T1158]  ? fget_many+0x20/0x20
[ 2512.971393][ T1158]  ? check_preemption_disabled+0x154/0x330
[ 2512.977186][ T1158]  ? debug_smp_processor_id+0x20/0x20
[ 2512.982542][ T1158]  ? security_file_ioctl+0x9d/0xb0
[ 2512.987635][ T1158]  __x64_sys_ioctl+0xd4/0x110
[ 2512.992298][ T1158]  do_syscall_64+0xcb/0x1c0
14:09:51 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4300)

14:09:51 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 75)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(0x0, 0x0) (async)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x5c, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x2f}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_IPPROTO={0x5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @empty}, @FOU_ATTR_PEER_V4={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x20}}]}, 0x5c}}, 0x40000)
r3 = fsmount(r2, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000240), r3) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r3, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x11c, r4, 0x400, 0x70bd25, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8800) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 64)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 64)

[ 2512.996789][ T1158]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2513.005749][ T1158] debugfs: out of free dentries, can not create file 'stats'
14:09:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x1, 0x765c, @vifc_lcl_ifindex=r5, @loopback}, 0x10) (async)
r7 = syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r6, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000300)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000540)}}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r3, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r11=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001580)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000852000000200000095000000000000009500000000000000000000000e3756c595aadaad29906d91d03f4a7df5878263e552"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r11, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a40)={r3, 0xe0, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x1, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0], 0x0, 0x8, &(0x7f0000000840)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000880), &(0x7f00000008c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000900)}}, 0x10) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r3, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000a80)=[0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x5, 0x8, &(0x7f0000000ac0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000b00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000b40)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000b80), &(0x7f0000000bc0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000c00)}}, 0x10) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001040)={r4, 0xe0, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000d80)=[0x0, 0x0, 0x0], ""/16, <r14=>0x0, 0x0, 0x0, 0x0, 0x7, 0x4, &(0x7f0000000dc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000e00)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000e40)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000e80), &(0x7f0000000ec0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000f00)}}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001100)={r4, 0x58, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r15=>0x0}}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000011c0)={r1, 0x58, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r16=>0x0}}, 0x10) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000014c0)={r3, 0xe0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000001200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r17=>0x0, 0x0, 0x0, 0x0, 0x3, 0x9, &(0x7f0000001240)=[0x0, 0x0, 0x0], &(0x7f0000001280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000012c0)=[{}], 0x8, 0x10, &(0x7f0000001300), &(0x7f0000001340), 0x8, 0x10, 0x8, 0x8, &(0x7f0000001380)}}, 0x10)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000001540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001e40)={0x89c, r7, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x20c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x100}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3f}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}]}}, {{0x8, 0x1, r10}, {0x248, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x7fff, 0xff, 0xff, 0x6}, {0x800, 0x81, 0x8, 0x1}, {0x5, 0x6, 0x7b, 0x7f}, {0x81, 0x0, 0x6, 0x74c1be52}, {0x100, 0x7, 0x20, 0x374}, {0x7, 0x3, 0x0, 0x4}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3f, 0x40, 0x20, 0x800}, {0x0, 0x40, 0xe6, 0x8}, {0x3366, 0x2, 0x6, 0x950f}, {0x1, 0x8, 0x1}, {0x7, 0x0, 0x1, 0x10000}, {0x6, 0x3, 0x80, 0x1}, {0x9648, 0x4, 0x6, 0xffffff6d}]}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x1000, 0x6, 0x40, 0x4}, {0xff, 0x1f, 0x7, 0x40}, {0x5, 0x32, 0x8, 0x9360}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}]}}, {{0x8, 0x1, r11}, {0x170, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3c}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf0}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r14}}}]}}, {{0x8, 0x1, r15}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r16}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r17}, {0x160, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2328}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0x40, 0xd5, 0x4, 0xffff}, {0x0, 0x4, 0x2, 0x7bc}, {0xfeff, 0x3f, 0x0, 0x5}, {0x5c60, 0x5, 0x9, 0x5}, {0x7ff, 0x0, 0x5}, {0x6, 0xc7, 0x8, 0x7fff}, {0x9d97, 0x7f, 0x6, 0x9}, {0x2, 0x7f, 0xff}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8}}}]}}]}, 0x89c}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000804) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:51 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4800)

14:09:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2513.071773][ T1177] FAULT_INJECTION: forcing a failure.
[ 2513.071773][ T1177] name failslab, interval 1, probability 0, space 0, times 0
[ 2513.085997][ T1177] CPU: 1 PID: 1177 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2513.097532][ T1177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2513.107571][ T1177] Call Trace:
[ 2513.110854][ T1177]  dump_stack+0x1d8/0x241
[ 2513.115174][ T1177]  ? panic+0x73e/0x73e
[ 2513.119232][ T1177]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2513.125028][ T1177]  ? __lookup_slow+0x340/0x450
[ 2513.129781][ T1177]  should_fail+0x709/0x870
[ 2513.134187][ T1177]  ? setup_fault_attr+0x3d0/0x3d0
[ 2513.139202][ T1177]  ? lookup_one_len+0x426/0x680
[ 2513.144040][ T1177]  ? new_inode_pseudo+0x78/0x210
[ 2513.148966][ T1177]  should_failslab+0x5/0x20
[ 2513.153456][ T1177]  kmem_cache_alloc+0x24/0x210
[ 2513.158205][ T1177]  new_inode_pseudo+0x78/0x210
[ 2513.162959][ T1177]  new_inode+0x25/0x1d0
[ 2513.167104][ T1177]  ? start_creating+0x183/0x270
[ 2513.171940][ T1177]  __debugfs_create_file+0xb6/0x400
[ 2513.177138][ T1177]  ? debugfs_create_dir+0x2e6/0x380
[ 2513.182323][ T1177]  bdi_register_va+0x274/0x5e0
[ 2513.187075][ T1177]  bdi_register+0xd1/0x120
[ 2513.191476][ T1177]  ? __device_add_disk+0x539/0x1200
[ 2513.196658][ T1177]  ? bdi_register_va+0x5e0/0x5e0
[ 2513.201582][ T1177]  ? percpu_ref_resurrect+0x113/0x190
[ 2513.206946][ T1177]  bdi_register_owner+0x56/0xf0
[ 2513.211784][ T1177]  __device_add_disk+0x5b8/0x1200
[ 2513.216802][ T1177]  ? device_add_disk+0x30/0x30
[ 2513.221552][ T1177]  ? vsprintf+0x30/0x30
[ 2513.225699][ T1177]  ? device_initialize+0x1c7/0x3d0
[ 2513.230796][ T1177]  ? __alloc_disk_node+0x326/0x380
[ 2513.235896][ T1177]  loop_add+0x554/0x710
[ 2513.240045][ T1177]  loop_control_ioctl+0x564/0x740
[ 2513.245056][ T1177]  ? loop_remove+0xa0/0xa0
[ 2513.249459][ T1177]  ? __lru_cache_add+0x1bf/0x210
[ 2513.254382][ T1177]  ? memset+0x1f/0x40
[ 2513.258350][ T1177]  ? fsnotify+0x1332/0x13f0
[ 2513.262841][ T1177]  ? loop_remove+0xa0/0xa0
[ 2513.267247][ T1177]  do_vfs_ioctl+0x744/0x1730
[ 2513.271826][ T1177]  ? selinux_file_ioctl+0x723/0x970
[ 2513.277018][ T1177]  ? ioctl_preallocate+0x250/0x250
[ 2513.282116][ T1177]  ? __fget+0x40c/0x4a0
[ 2513.286258][ T1177]  ? fget_many+0x20/0x20
[ 2513.290487][ T1177]  ? check_preemption_disabled+0x154/0x330
[ 2513.296278][ T1177]  ? debug_smp_processor_id+0x20/0x20
[ 2513.301631][ T1177]  ? security_file_ioctl+0x9d/0xb0
[ 2513.306726][ T1177]  __x64_sys_ioctl+0xd4/0x110
[ 2513.311384][ T1177]  do_syscall_64+0xcb/0x1c0
[ 2513.315874][ T1177]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async, rerun: 64)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async, rerun: 64)
r1 = fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r2 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
r3 = fsmount(r2, 0x1, 0x6) (async, rerun: 64)
r4 = syz_open_dev$mouse(0x0, 0x0, 0x0) (rerun: 64)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0xfffffffffffffeb7)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000280)={0x0, 0x1, 0x1, 0x765c, @vifc_lcl_ifindex=r5, @loopback}, 0x10) (async, rerun: 32)
r7 = syz_genetlink_get_family_id$team(&(0x7f0000000200), r4) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async, rerun: 32)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r6, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000300)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000540)}}, 0x10) (rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r3, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r11=>0x0}}, 0x10) (rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001580)=ANY=[@ANYBLOB="180000000000000000000000020000001842000005000000000000000000000018450000fdffffff00000000852000000200000095000000000000009500000000000000000000000e3756c595aadaad29906d91d03f4a7df5878263e552"], &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r11, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a40)={r3, 0xe0, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x1, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0], 0x0, 0x8, &(0x7f0000000840)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000880), &(0x7f00000008c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000900)}}, 0x10) (async, rerun: 32)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r3, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000a80)=[0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x5, 0x8, &(0x7f0000000ac0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000b00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000b40)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000b80), &(0x7f0000000bc0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000c00)}}, 0x10) (async, rerun: 32)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001040)={r4, 0xe0, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000d80)=[0x0, 0x0, 0x0], ""/16, <r14=>0x0, 0x0, 0x0, 0x0, 0x7, 0x4, &(0x7f0000000dc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000e00)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000e40)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000e80), &(0x7f0000000ec0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000f00)}}, 0x10) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001100)={r4, 0x58, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r15=>0x0}}, 0x10) (async, rerun: 64)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000011c0)={r1, 0x58, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r16=>0x0}}, 0x10) (async, rerun: 64)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000014c0)={r3, 0xe0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000001200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r17=>0x0, 0x0, 0x0, 0x0, 0x3, 0x9, &(0x7f0000001240)=[0x0, 0x0, 0x0], &(0x7f0000001280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000012c0)=[{}], 0x8, 0x10, &(0x7f0000001300), &(0x7f0000001340), 0x8, 0x10, 0x8, 0x8, &(0x7f0000001380)}}, 0x10)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000001540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001e40)={0x89c, r7, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x20c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x100}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3f}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}]}}, {{0x8, 0x1, r10}, {0x248, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x7fff, 0xff, 0xff, 0x6}, {0x800, 0x81, 0x8, 0x1}, {0x5, 0x6, 0x7b, 0x7f}, {0x81, 0x0, 0x6, 0x74c1be52}, {0x100, 0x7, 0x20, 0x374}, {0x7, 0x3, 0x0, 0x4}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3f, 0x40, 0x20, 0x800}, {0x0, 0x40, 0xe6, 0x8}, {0x3366, 0x2, 0x6, 0x950f}, {0x1, 0x8, 0x1}, {0x7, 0x0, 0x1, 0x10000}, {0x6, 0x3, 0x80, 0x1}, {0x9648, 0x4, 0x6, 0xffffff6d}]}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x1000, 0x6, 0x40, 0x4}, {0xff, 0x1f, 0x7, 0x40}, {0x5, 0x32, 0x8, 0x9360}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}]}}, {{0x8, 0x1, r11}, {0x170, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3c}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xf0}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r14}}}]}}, {{0x8, 0x1, r15}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r16}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r17}, {0x160, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2328}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0x40, 0xd5, 0x4, 0xffff}, {0x0, 0x4, 0x2, 0x7bc}, {0xfeff, 0x3f, 0x0, 0x5}, {0x5c60, 0x5, 0x9, 0x5}, {0x7ff, 0x0, 0x5}, {0x6, 0xc7, 0x8, 0x7fff}, {0x9d97, 0x7f, 0x6, 0x9}, {0x2, 0x7f, 0xff}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8}}}]}}]}, 0x89c}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000804)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 76)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2513.324705][ T1177] debugfs: out of free dentries, can not create file 'stats'
14:09:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@generic={0x5, 0x1, 0x0, 0x9, 0x401}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2513.397512][ T1215] FAULT_INJECTION: forcing a failure.
[ 2513.397512][ T1215] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2513.422491][ T1215] CPU: 0 PID: 1215 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2513.434036][ T1215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2513.444083][ T1215] Call Trace:
[ 2513.447368][ T1215]  dump_stack+0x1d8/0x241
[ 2513.451685][ T1215]  ? panic+0x73e/0x73e
[ 2513.455742][ T1215]  ? stack_trace_save+0x132/0x200
[ 2513.460753][ T1215]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2513.466549][ T1215]  ? stack_trace_snprint+0x170/0x170
[ 2513.471822][ T1215]  should_fail+0x709/0x870
[ 2513.476226][ T1215]  ? setup_fault_attr+0x3d0/0x3d0
[ 2513.481237][ T1215]  ? __kasan_kmalloc+0x131/0x1e0
[ 2513.486258][ T1215]  ? kmem_cache_alloc+0xd0/0x210
[ 2513.491186][ T1215]  ? inode_init_always+0x5db/0x800
[ 2513.496284][ T1215]  ? new_inode_pseudo+0x8f/0x210
[ 2513.501209][ T1215]  __alloc_pages_nodemask+0x1b6/0x860
[ 2513.506568][ T1215]  ? __x64_sys_ioctl+0xd4/0x110
[ 2513.511404][ T1215]  ? do_syscall_64+0xcb/0x1c0
[ 2513.516068][ T1215]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2513.521604][ T1215]  ? lockref_get+0x1b3/0x2a0
[ 2513.526182][ T1215]  ? asan.module_dtor+0x20/0x20
[ 2513.531018][ T1215]  __get_free_pages+0xa/0x30
[ 2513.535594][ T1215]  selinux_genfs_get_sid+0x55/0x250
[ 2513.540776][ T1215]  inode_doinit_with_dentry+0x87c/0x1020
[ 2513.546393][ T1215]  ? sb_finish_set_opts+0x7a0/0x7a0
[ 2513.551576][ T1215]  ? current_time+0x1c4/0x310
[ 2513.556323][ T1215]  ? atime_needs_update+0x580/0x580
[ 2513.561514][ T1215]  security_d_instantiate+0xa5/0x100
[ 2513.566788][ T1215]  d_instantiate+0x51/0x90
[ 2513.571196][ T1215]  __debugfs_create_file+0x256/0x400
[ 2513.576472][ T1215]  bdi_register_va+0x274/0x5e0
[ 2513.581235][ T1215]  bdi_register+0xd1/0x120
[ 2513.585651][ T1215]  ? __device_add_disk+0x539/0x1200
[ 2513.590841][ T1215]  ? bdi_register_va+0x5e0/0x5e0
[ 2513.595769][ T1215]  ? percpu_ref_resurrect+0x113/0x190
[ 2513.601128][ T1215]  bdi_register_owner+0x56/0xf0
[ 2513.606006][ T1215]  __device_add_disk+0x5b8/0x1200
[ 2513.611018][ T1215]  ? device_add_disk+0x30/0x30
[ 2513.615766][ T1215]  ? vsprintf+0x30/0x30
[ 2513.619908][ T1215]  ? device_initialize+0x1c7/0x3d0
[ 2513.625005][ T1215]  ? __alloc_disk_node+0x326/0x380
[ 2513.630112][ T1215]  loop_add+0x554/0x710
[ 2513.634258][ T1215]  loop_control_ioctl+0x564/0x740
[ 2513.639288][ T1215]  ? loop_remove+0xa0/0xa0
[ 2513.643698][ T1215]  ? __lru_cache_add+0x1bf/0x210
[ 2513.648629][ T1215]  ? memset+0x1f/0x40
[ 2513.652598][ T1215]  ? fsnotify+0x1332/0x13f0
[ 2513.657089][ T1215]  ? loop_remove+0xa0/0xa0
[ 2513.661498][ T1215]  do_vfs_ioctl+0x744/0x1730
[ 2513.666078][ T1215]  ? selinux_file_ioctl+0x723/0x970
[ 2513.671268][ T1215]  ? ioctl_preallocate+0x250/0x250
[ 2513.676374][ T1215]  ? __fget+0x40c/0x4a0
[ 2513.680521][ T1215]  ? fget_many+0x20/0x20
[ 2513.684754][ T1215]  ? check_preemption_disabled+0x154/0x330
[ 2513.690547][ T1215]  ? debug_smp_processor_id+0x20/0x20
14:09:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='nfsd\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@exit, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = openat$cgroup_ro(r2, &(0x7f00000002c0)='blkio.bfq.dequeue\x00', 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x85, 0x765c, @vifc_lcl_addr=@rand_addr=0x64010101, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

14:09:52 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4900)

14:09:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 77)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2513.695906][ T1215]  ? security_file_ioctl+0x9d/0xb0
[ 2513.701005][ T1215]  __x64_sys_ioctl+0xd4/0x110
[ 2513.705668][ T1215]  do_syscall_64+0xcb/0x1c0
[ 2513.710158][ T1215]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@generic={0x5, 0x1, 0x0, 0x9, 0x401}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
fsopen(0x0, 0x0) (async)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)}, 0xfffffffffffffeb7) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@generic={0x5, 0x1, 0x0, 0x9, 0x401}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff) (async)

14:09:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r8, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

14:09:52 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4a00)

[ 2513.786928][ T1232] FAULT_INJECTION: forcing a failure.
[ 2513.786928][ T1232] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2513.810818][ T1232] CPU: 1 PID: 1232 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2513.822357][ T1232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2513.832481][ T1232] Call Trace:
[ 2513.835743][ T1232]  dump_stack+0x1d8/0x241
[ 2513.840040][ T1232]  ? panic+0x73e/0x73e
[ 2513.844077][ T1232]  ? stack_trace_save+0x132/0x200
[ 2513.849065][ T1232]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2513.854840][ T1232]  ? stack_trace_snprint+0x170/0x170
[ 2513.860111][ T1232]  should_fail+0x709/0x870
[ 2513.864504][ T1232]  ? setup_fault_attr+0x3d0/0x3d0
[ 2513.869495][ T1232]  ? __kasan_kmalloc+0x131/0x1e0
[ 2513.874409][ T1232]  ? kmem_cache_alloc+0xd0/0x210
[ 2513.879328][ T1232]  ? inode_init_always+0x5db/0x800
[ 2513.884403][ T1232]  ? new_inode_pseudo+0x8f/0x210
[ 2513.889316][ T1232]  __alloc_pages_nodemask+0x1b6/0x860
[ 2513.894654][ T1232]  ? __x64_sys_ioctl+0xd4/0x110
[ 2513.899469][ T1232]  ? do_syscall_64+0xcb/0x1c0
[ 2513.904111][ T1232]  ? gfp_pfmemalloc_allowed+0x120/0x120
[ 2513.909620][ T1232]  ? lockref_get+0x1b3/0x2a0
[ 2513.914182][ T1232]  ? asan.module_dtor+0x20/0x20
[ 2513.919009][ T1232]  __get_free_pages+0xa/0x30
[ 2513.923567][ T1232]  selinux_genfs_get_sid+0x55/0x250
[ 2513.928732][ T1232]  inode_doinit_with_dentry+0x87c/0x1020
[ 2513.934342][ T1232]  ? sb_finish_set_opts+0x7a0/0x7a0
[ 2513.939703][ T1232]  ? current_time+0x1c4/0x310
[ 2513.944354][ T1232]  ? atime_needs_update+0x580/0x580
[ 2513.949530][ T1232]  security_d_instantiate+0xa5/0x100
[ 2513.954782][ T1232]  d_instantiate+0x51/0x90
[ 2513.959176][ T1232]  __debugfs_create_file+0x256/0x400
[ 2513.964430][ T1232]  bdi_register_va+0x274/0x5e0
[ 2513.969250][ T1232]  bdi_register+0xd1/0x120
[ 2513.973634][ T1232]  ? __device_add_disk+0x539/0x1200
[ 2513.978808][ T1232]  ? bdi_register_va+0x5e0/0x5e0
[ 2513.983804][ T1232]  ? percpu_ref_resurrect+0x113/0x190
[ 2513.989157][ T1232]  bdi_register_owner+0x56/0xf0
[ 2513.993985][ T1232]  __device_add_disk+0x5b8/0x1200
[ 2513.998977][ T1232]  ? device_add_disk+0x30/0x30
[ 2514.003713][ T1232]  ? vsprintf+0x30/0x30
[ 2514.007928][ T1232]  ? device_initialize+0x1c7/0x3d0
[ 2514.013004][ T1232]  ? __alloc_disk_node+0x326/0x380
[ 2514.018601][ T1232]  loop_add+0x554/0x710
[ 2514.022726][ T1232]  loop_control_ioctl+0x564/0x740
[ 2514.027717][ T1232]  ? loop_remove+0xa0/0xa0
[ 2514.032103][ T1232]  ? __lru_cache_add+0x1bf/0x210
[ 2514.037006][ T1232]  ? memset+0x1f/0x40
[ 2514.040954][ T1232]  ? fsnotify+0x1332/0x13f0
[ 2514.045426][ T1232]  ? loop_remove+0xa0/0xa0
[ 2514.049807][ T1232]  do_vfs_ioctl+0x744/0x1730
[ 2514.054365][ T1232]  ? selinux_file_ioctl+0x723/0x970
[ 2514.059613][ T1232]  ? ioctl_preallocate+0x250/0x250
[ 2514.064693][ T1232]  ? __fget+0x40c/0x4a0
[ 2514.068813][ T1232]  ? fget_many+0x20/0x20
[ 2514.073021][ T1232]  ? check_preemption_disabled+0x154/0x330
[ 2514.078793][ T1232]  ? debug_smp_processor_id+0x20/0x20
14:09:52 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) (fail_nth: 78)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2514.084139][ T1232]  ? security_file_ioctl+0x9d/0xb0
[ 2514.089219][ T1232]  __x64_sys_ioctl+0xd4/0x110
[ 2514.093869][ T1232]  do_syscall_64+0xcb/0x1c0
[ 2514.098351][ T1232]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
14:09:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func, @exit]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)

14:09:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) (async)
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)) (async)
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='nfsd\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7) (rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@exit, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80) (async)
r5 = openat$cgroup_ro(r2, &(0x7f00000002c0)='blkio.bfq.dequeue\x00', 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x85, 0x765c, @vifc_lcl_addr=@rand_addr=0x64010101, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async, rerun: 32)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902) (rerun: 32)

14:09:52 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0), 0x200000cc, &(0x7f0000000100)={&(0x7f00000002c0)={0x54, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6}, {0x8}}]}, 0x54}}, 0x4c00)

14:09:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0) (async)
r1 = fsopen(0x0, 0x0)
fsmount(r1, 0x0, 0x6) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@generic={0x5, 0x1, 0x0, 0x9, 0x401}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

[ 2514.181622][ T1248] FAULT_INJECTION: forcing a failure.
[ 2514.181622][ T1248] name failslab, interval 1, probability 0, space 0, times 0
[ 2514.181937][ T1252] selinux_nlmsg_perm: 5 callbacks suppressed
[ 2514.181947][ T1252] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1252 comm=syz-executor.1
[ 2514.200044][ T1248] CPU: 1 PID: 1248 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2514.224390][ T1248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2514.234424][ T1248] Call Trace:
[ 2514.237686][ T1248]  dump_stack+0x1d8/0x241
[ 2514.241983][ T1248]  ? panic+0x73e/0x73e
[ 2514.246019][ T1248]  ? nf_ct_l4proto_log_invalid+0x26c/0x26c
[ 2514.251794][ T1248]  ? __kasan_kmalloc+0x1a5/0x1e0
[ 2514.256697][ T1248]  ? loop_add+0x554/0x710
[ 2514.261000][ T1248]  ? __kasan_kmalloc+0x131/0x1e0
[ 2514.265904][ T1248]  ? kobj_map+0x74/0x650
[ 2514.270115][ T1248]  ? __device_add_disk+0x63e/0x1200
[ 2514.275283][ T1248]  should_fail+0x709/0x870
[ 2514.279666][ T1248]  ? setup_fault_attr+0x3d0/0x3d0
[ 2514.284678][ T1248]  ? kobject_set_name_vargs+0x5d/0x110
[ 2514.290114][ T1248]  should_failslab+0x5/0x20
[ 2514.294588][ T1248]  __kmalloc_track_caller+0x4f/0x280
[ 2514.299848][ T1248]  kstrdup_const+0x51/0x90
[ 2514.304245][ T1248]  kobject_set_name_vargs+0x5d/0x110
[ 2514.309504][ T1248]  dev_set_name+0xd1/0x120
[ 2514.313899][ T1248]  ? get_device+0x30/0x30
[ 2514.318198][ T1248]  ? kobj_map+0x61f/0x650
[ 2514.322496][ T1248]  __device_add_disk+0x6c3/0x1200
[ 2514.327490][ T1248]  ? device_add_disk+0x30/0x30
[ 2514.332222][ T1248]  ? device_initialize+0x1c7/0x3d0
[ 2514.337300][ T1248]  ? __alloc_disk_node+0x326/0x380
[ 2514.342387][ T1248]  loop_add+0x554/0x710
[ 2514.346517][ T1248]  loop_control_ioctl+0x564/0x740
[ 2514.351507][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.355893][ T1248]  ? __lru_cache_add+0x1bf/0x210
[ 2514.360795][ T1248]  ? memset+0x1f/0x40
[ 2514.364744][ T1248]  ? fsnotify+0x1332/0x13f0
[ 2514.369217][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.373606][ T1248]  do_vfs_ioctl+0x744/0x1730
14:09:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='nfsd\x00', 0x0)
r2 = fsmount(r1, 0x1, 0x6) (async)
r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) (async)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x8, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@exit, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
r5 = openat$cgroup_ro(r2, &(0x7f00000002c0)='blkio.bfq.dequeue\x00', 0x0, 0x0)
setsockopt$MRT_DEL_VIF(r5, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x0, 0x85, 0x765c, @vifc_lcl_addr=@rand_addr=0x64010101, @multicast2}, 0x10) (async)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r3)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800) (async)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2514.378253][ T1248]  ? selinux_file_ioctl+0x723/0x970
[ 2514.383427][ T1248]  ? ioctl_preallocate+0x250/0x250
[ 2514.388509][ T1248]  ? __fget+0x40c/0x4a0
[ 2514.392633][ T1248]  ? fget_many+0x20/0x20
[ 2514.396848][ T1248]  ? check_preemption_disabled+0x154/0x330
[ 2514.402626][ T1248]  ? debug_smp_processor_id+0x20/0x20
[ 2514.407974][ T1248]  ? security_file_ioctl+0x9d/0xb0
[ 2514.413063][ T1248]  __x64_sys_ioctl+0xd4/0x110
[ 2514.417711][ T1248]  do_syscall_64+0xcb/0x1c0
[ 2514.422196][ T1248]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2514.432559][ T1248] kobject_add_internal failed for queue (error: -2 parent: (null))
[ 2514.440515][ T1248] ------------[ cut here ]------------
[ 2514.445954][ T1248] WARNING: CPU: 1 PID: 1248 at fs/sysfs/file.c:328 sysfs_create_files+0x215/0x4a0
[ 2514.455112][ T1248] Modules linked in:
[ 2514.459006][ T1248] CPU: 1 PID: 1248 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2514.470513][ T1248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2514.480545][ T1248] RIP: 0010:sysfs_create_files+0x215/0x4a0
[ 2514.486323][ T1248] Code: 24 04 48 b9 00 00 00 00 00 fc ff df 48 8b 54 24 08 4c 8b 74 24 20 eb 2b 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 e8 8b 1c ab ff <0f> 0b c7 44 24 04 ea ff ff ff 48 b9 00 00 00 00 00 fc ff df 48 8b
[ 2514.505907][ T1248] RSP: 0018:ffff8881e852f920 EFLAGS: 00010246
[ 2514.511944][ T1248] RAX: ffffffff81ba2f11 RBX: ffff8881d1bd20a0 RCX: 0000000000040000
[ 2514.520319][ T1248] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2514.528283][ T1248] RBP: ffff8881e852f9f0 R08: ffffffff843e6101 R09: ffffed103dec89ba
[ 2514.536230][ T1248] R10: ffffed103dec89ba R11: 1ffff1103dec89b9 R12: 0000000000000000
[ 2514.544173][ T1248] R13: ffffffff84fd7060 R14: ffff8881d1bd2070 R15: ffffffff85e45820
[ 2514.552138][ T1248] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2514.561045][ T1248] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2514.567609][ T1248] CR2: 00007fff51ae0828 CR3: 00000001e1be9000 CR4: 00000000003406e0
[ 2514.575556][ T1248] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2514.583505][ T1248] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2514.591441][ T1248] Call Trace:
[ 2514.594704][ T1248]  ? sysfs_create_file_ns+0x2a0/0x2a0
[ 2514.600042][ T1248]  ? kobject_get+0xca/0x110
[ 2514.604512][ T1248]  __device_add_disk+0x92b/0x1200
[ 2514.609508][ T1248]  ? device_add_disk+0x30/0x30
[ 2514.614240][ T1248]  ? device_initialize+0x1c7/0x3d0
[ 2514.619765][ T1248]  ? __alloc_disk_node+0x326/0x380
[ 2514.624843][ T1248]  loop_add+0x554/0x710
[ 2514.628966][ T1248]  loop_control_ioctl+0x564/0x740
14:09:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2514.633958][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.638341][ T1248]  ? __lru_cache_add+0x1bf/0x210
[ 2514.643244][ T1248]  ? memset+0x1f/0x40
[ 2514.647207][ T1248]  ? fsnotify+0x1332/0x13f0
[ 2514.651705][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.656104][ T1248]  do_vfs_ioctl+0x744/0x1730
[ 2514.660667][ T1248]  ? selinux_file_ioctl+0x723/0x970
[ 2514.665837][ T1248]  ? ioctl_preallocate+0x250/0x250
[ 2514.670916][ T1248]  ? __fget+0x40c/0x4a0
[ 2514.675047][ T1248]  ? fget_many+0x20/0x20
[ 2514.679261][ T1248]  ? check_preemption_disabled+0x154/0x330
[ 2514.685032][ T1248]  ? debug_smp_processor_id+0x20/0x20
[ 2514.690383][ T1248]  ? security_file_ioctl+0x9d/0xb0
[ 2514.695472][ T1248]  __x64_sys_ioctl+0xd4/0x110
[ 2514.700122][ T1248]  do_syscall_64+0xcb/0x1c0
[ 2514.704600][ T1248]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2514.710475][ T1248] ---[ end trace 7583e5513725d286 ]---
[ 2514.716232][ T1248] ------------[ cut here ]------------
[ 2514.721857][ T1248] kernfs: can not remove 'events', no directory
[ 2514.728111][ T1248] WARNING: CPU: 1 PID: 1248 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90
[ 2514.737699][ T1248] Modules linked in:
[ 2514.741564][ T1248] CPU: 1 PID: 1248 Comm: syz-executor.0 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2514.753065][ T1248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2514.763107][ T1248] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 2514.769231][ T1248] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 00 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7
[ 2514.788803][ T1248] RSP: 0018:ffff8881e852f900 EFLAGS: 00010246
[ 2514.794834][ T1248] RAX: 92353e4afa1b5200 RBX: 0000000000000000 RCX: 0000000000040000
[ 2514.802770][ T1248] RDX: ffffc90000948000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2514.810712][ T1248] RBP: ffff8881e852f9f0 R08: ffffffff814e3a77 R09: ffffed103ede52b2
[ 2514.818658][ T1248] R10: ffffed103ede52b2 R11: 1ffff1103ede52b1 R12: ffffffff85e45820
[ 2514.826603][ T1248] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff84fd7120
[ 2514.834543][ T1248] FS:  00007fc99aad9700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2514.843436][ T1248] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2514.849989][ T1248] CR2: 00007fff51ae0828 CR3: 00000001e1be9000 CR4: 00000000003406e0
[ 2514.857937][ T1248] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2514.865890][ T1248] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2514.873835][ T1248] Call Trace:
[ 2514.877099][ T1248]  sysfs_create_files+0x40a/0x4a0
[ 2514.882098][ T1248]  ? sysfs_create_file_ns+0x2a0/0x2a0
[ 2514.887446][ T1248]  ? kobject_get+0xca/0x110
[ 2514.891930][ T1248]  __device_add_disk+0x92b/0x1200
[ 2514.896929][ T1248]  ? device_add_disk+0x30/0x30
[ 2514.901661][ T1248]  ? device_initialize+0x1c7/0x3d0
[ 2514.906741][ T1248]  ? __alloc_disk_node+0x326/0x380
[ 2514.911825][ T1248]  loop_add+0x554/0x710
[ 2514.915951][ T1248]  loop_control_ioctl+0x564/0x740
[ 2514.920948][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.925331][ T1248]  ? __lru_cache_add+0x1bf/0x210
[ 2514.930267][ T1248]  ? memset+0x1f/0x40
[ 2514.934226][ T1248]  ? fsnotify+0x1332/0x13f0
[ 2514.938696][ T1248]  ? loop_remove+0xa0/0xa0
[ 2514.943098][ T1248]  do_vfs_ioctl+0x744/0x1730
[ 2514.947658][ T1248]  ? selinux_file_ioctl+0x723/0x970
[ 2514.952822][ T1248]  ? ioctl_preallocate+0x250/0x250
[ 2514.957904][ T1248]  ? __fget+0x40c/0x4a0
[ 2514.962031][ T1248]  ? fget_many+0x20/0x20
[ 2514.966242][ T1248]  ? check_preemption_disabled+0x154/0x330
[ 2514.972018][ T1248]  ? debug_smp_processor_id+0x20/0x20
[ 2514.977356][ T1248]  ? security_file_ioctl+0x9d/0xb0
14:09:53 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2514.982432][ T1248]  __x64_sys_ioctl+0xd4/0x110
[ 2514.987081][ T1248]  do_syscall_64+0xcb/0x1c0
[ 2514.991552][ T1248]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2514.997408][ T1248] ---[ end trace 7583e5513725d287 ]---
[ 2515.003066][ T1248] loop0: failed to create sysfs files for events
[ 2515.009445][ T1262] ------------[ cut here ]------------
[ 2515.018686][ T1262] kernfs: can not remove 'events', no directory
[ 2515.025093][ T1262] WARNING: CPU: 0 PID: 1262 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90
[ 2515.034693][ T1262] Modules linked in:
[ 2515.038563][ T1262] CPU: 0 PID: 1262 Comm: syz-executor.2 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2515.050068][ T1262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2515.060104][ T1262] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 2515.066227][ T1262] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 00 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7
[ 2515.085821][ T1262] RSP: 0018:ffff8881ca317a20 EFLAGS: 00010246
[ 2515.091859][ T1262] RAX: 9d22cc4896101a00 RBX: 0000000000000000 RCX: 0000000000040000
[ 2515.099806][ T1262] RDX: ffffc90000144000 RSI: 000000000001a022 RDI: 000000000001a023
[ 2515.107745][ T1262] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: 0000000000000003
[ 2515.115683][ T1262] R10: ffffed1039462ebd R11: 1ffff11039462ebc R12: 0000000000000000
[ 2515.123966][ T1262] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd7120
[ 2515.131906][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2515.140799][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2515.147351][ T1262] CR2: 00007ffee3c1e9d8 CR3: 00000001e80a7000 CR4: 00000000003406f0
[ 2515.155330][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2515.163275][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2515.171214][ T1262] Call Trace:
[ 2515.174475][ T1262]  sysfs_remove_files+0x99/0xf0
[ 2515.179295][ T1262]  del_gendisk+0x26e/0xbf0
[ 2515.183679][ T1262]  ? device_add_disk_no_queue_reg+0x20/0x20
[ 2515.189546][ T1262]  loop_remove+0x42/0xa0
[ 2515.193759][ T1262]  loop_control_ioctl+0x67f/0x740
[ 2515.198753][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.203140][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.207523][ T1262]  do_vfs_ioctl+0x744/0x1730
[ 2515.212082][ T1262]  ? selinux_file_ioctl+0x723/0x970
[ 2515.217258][ T1262]  ? ioctl_preallocate+0x250/0x250
[ 2515.222341][ T1262]  ? __fget+0x40c/0x4a0
[ 2515.226467][ T1262]  ? fget_many+0x20/0x20
[ 2515.230679][ T1262]  ? __fpregs_load_activate+0x1d7/0x3c0
14:09:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x1, 0x2)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x0, 0x8, 0x70bd27, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x53fb0ed1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x10000}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x48}, 0x1)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(0x0, &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x6)
r3 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xa)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

14:09:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
fsmount(0xffffffffffffffff, 0x0, 0xdeee1d44beef5f0)
r1 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0)
fsmount(r1, 0x1, 0x6)
r2 = syz_open_dev$mouse(0x0, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={0x1, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0xfffffffffffffeb7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000280)={0x1, 0x1, 0x9, 0x765c, @vifc_lcl_ifindex=r3, @multicast2}, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), r2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x2800)
ioctl$LOOP_CTL_GET_FREE(r0, 0x8902)

[ 2515.236201][ T1262]  ? security_file_ioctl+0x9d/0xb0
[ 2515.241278][ T1262]  __x64_sys_ioctl+0xd4/0x110
[ 2515.245927][ T1262]  do_syscall_64+0xcb/0x1c0
[ 2515.250399][ T1262]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2515.256255][ T1262] ---[ end trace 7583e5513725d288 ]---
[ 2515.262021][ T1262] ------------[ cut here ]------------
[ 2515.267793][ T1262] kernfs: can not remove 'events_async', no directory
[ 2515.277910][ T1262] WARNING: CPU: 0 PID: 1262 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90
[ 2515.287612][ T1262] Modules linked in:
[ 2515.291487][ T1262] CPU: 0 PID: 1262 Comm: syz-executor.2 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2515.302993][ T1262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2515.313030][ T1262] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 2515.319641][ T1262] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 00 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7
[ 2515.339214][ T1262] RSP: 0018:ffff8881ca317a20 EFLAGS: 00010246
[ 2515.345257][ T1262] RAX: 9d22cc4896101a00 RBX: 0000000000000000 RCX: 0000000000040000
[ 2515.353201][ T1262] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2515.361144][ T1262] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: ffffed103edcaa08
[ 2515.369087][ T1262] R10: ffffed103edcaa08 R11: 1ffff1103edcaa07 R12: 0000000000000000
[ 2515.377029][ T1262] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd71c0
[ 2515.384975][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2515.393888][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2515.400453][ T1262] CR2: 00007ffee3c1e9d8 CR3: 00000001e80a7000 CR4: 00000000003406f0
[ 2515.408399][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2515.416342][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2515.424283][ T1262] Call Trace:
[ 2515.427555][ T1262]  sysfs_remove_files+0x99/0xf0
[ 2515.432381][ T1262]  del_gendisk+0x26e/0xbf0
[ 2515.436765][ T1262]  ? device_add_disk_no_queue_reg+0x20/0x20
[ 2515.442626][ T1262]  loop_remove+0x42/0xa0
[ 2515.446836][ T1262]  loop_control_ioctl+0x67f/0x740
[ 2515.451832][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.456228][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.460614][ T1262]  do_vfs_ioctl+0x744/0x1730
[ 2515.465173][ T1262]  ? selinux_file_ioctl+0x723/0x970
[ 2515.470347][ T1262]  ? ioctl_preallocate+0x250/0x250
[ 2515.475432][ T1262]  ? __fget+0x40c/0x4a0
[ 2515.479556][ T1262]  ? fget_many+0x20/0x20
14:09:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x189200, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0xa)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="00f800000a9f3acbd7cf369b6f6e184509e0d9c45c3bb97f1773f7ca64706fa6bbbc58e7e2110d4f9cd9fca176b07d9d6ad8bd3813743f13ec4955c0c428c7c915b2abf0e152ebdcda23a148a8c2824a7c8131c8cc84d74e1f60b2641b077181630ebae728fcc00c9a1555b4d2fd27f7854260e8208c90774d8262", @ANYRES16=r4, @ANYBLOB="04007ffae3e70e3596ea46c51a27bd7000fbdbdf250100000008000300010100000f000200010000000500050004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8080)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x8902)
r5 = syz_open_dev$mouse(&(0x7f00000001c0), 0x6, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x9, &(0x7f0000001c40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit]}, &(0x7f0000001cc0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000001d80)={0x5, 0xa, 0xffffffff, 0xfffffff8}, 0x10}, 0x80)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x6c, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x17}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000040)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x2)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r7, 0x10e, 0x5, &(0x7f0000000440)=0x81, 0x4)

[ 2515.483769][ T1262]  ? __fpregs_load_activate+0x1d7/0x3c0
[ 2515.489305][ T1262]  ? security_file_ioctl+0x9d/0xb0
[ 2515.494412][ T1262]  __x64_sys_ioctl+0xd4/0x110
[ 2515.499077][ T1262]  do_syscall_64+0xcb/0x1c0
[ 2515.503561][ T1262]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2515.509420][ T1262] ---[ end trace 7583e5513725d289 ]---
[ 2515.516483][ T1262] ------------[ cut here ]------------
[ 2515.522065][ T1262] kernfs: can not remove 'events_poll_msecs', no directory
[ 2515.529333][ T1262] WARNING: CPU: 0 PID: 1262 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90
[ 2515.538922][ T1262] Modules linked in:
[ 2515.542790][ T1262] CPU: 0 PID: 1262 Comm: syz-executor.2 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2515.554295][ T1262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2515.564333][ T1262] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 2515.570454][ T1262] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 00 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7
[ 2515.590027][ T1262] RSP: 0018:ffff8881ca317a20 EFLAGS: 00010246
[ 2515.596074][ T1262] RAX: 9d22cc4896101a00 RBX: 0000000000000000 RCX: 0000000000040000
[ 2515.604015][ T1262] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2515.611955][ T1262] RBP: ffffffff85e45820 R08: ffffffff814e3a77 R09: ffffed103edc52b2
[ 2515.619893][ T1262] R10: ffffed103edc52b2 R11: 1ffff1103edc52b1 R12: 0000000000000000
[ 2515.627837][ T1262] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffffff84fd71e0
[ 2515.635777][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 2515.644674][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2515.651229][ T1262] CR2: 00007ffee3c1e9d8 CR3: 00000001e80a7000 CR4: 00000000003406f0
[ 2515.659182][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2515.667208][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2515.675148][ T1262] Call Trace:
[ 2515.678437][ T1262]  sysfs_remove_files+0x99/0xf0
[ 2515.683274][ T1262]  del_gendisk+0x26e/0xbf0
[ 2515.687682][ T1262]  ? device_add_disk_no_queue_reg+0x20/0x20
[ 2515.693548][ T1262]  loop_remove+0x42/0xa0
[ 2515.697765][ T1262]  loop_control_ioctl+0x67f/0x740
[ 2515.702760][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.707166][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.711560][ T1262]  do_vfs_ioctl+0x744/0x1730
[ 2515.716124][ T1262]  ? selinux_file_ioctl+0x723/0x970
[ 2515.721291][ T1262]  ? ioctl_preallocate+0x250/0x250
[ 2515.726371][ T1262]  ? __fget+0x40c/0x4a0
[ 2515.730491][ T1262]  ? fget_many+0x20/0x20
[ 2515.734707][ T1262]  ? __fpregs_load_activate+0x1d7/0x3c0
[ 2515.740221][ T1262]  ? security_file_ioctl+0x9d/0xb0
[ 2515.745302][ T1262]  __x64_sys_ioctl+0xd4/0x110
[ 2515.749966][ T1262]  do_syscall_64+0xcb/0x1c0
[ 2515.754451][ T1262]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2515.760319][ T1262] ---[ end trace 7583e5513725d28a ]---
[ 2515.765885][ T1262] ------------[ cut here ]------------
[ 2515.771360][ T1262] kernfs: can not remove 'bdi', no directory
[ 2515.777442][ T1262] WARNING: CPU: 1 PID: 1262 at fs/kernfs/dir.c:1511 kernfs_remove_by_name_ns+0x61/0x90
[ 2515.787027][ T1262] Modules linked in:
[ 2515.790892][ T1262] CPU: 1 PID: 1262 Comm: syz-executor.2 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2515.802387][ T1262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2515.812415][ T1262] RIP: 0010:kernfs_remove_by_name_ns+0x61/0x90
[ 2515.818532][ T1262] Code: 48 89 c3 e8 61 79 ab ff 48 89 df e8 e9 ee ff ff 31 db eb 29 e8 50 79 ab ff 48 c7 c7 00 0d e8 84 4c 89 fe 31 c0 e8 4f 52 82 ff <0f> 0b bb fe ff ff ff eb 16 e8 31 79 ab ff bb fe ff ff ff 48 c7 c7
[ 2515.838121][ T1262] RSP: 0018:ffff8881ca317a60 EFLAGS: 00010246
[ 2515.844153][ T1262] RAX: 9d22cc4896101a00 RBX: 0000000000000000 RCX: 0000000000040000
[ 2515.852091][ T1262] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000040000
[ 2515.860032][ T1262] RBP: ffff8881ca317b68 R08: ffffffff814e3a77 R09: ffffed103ede52b2
[ 2515.867969][ T1262] R10: ffffed103ede52b2 R11: 1ffff1103ede52b1 R12: ffff8881d1bd2000
[ 2515.875908][ T1262] R13: ffff8881d1bd24e8 R14: 0000000000000000 R15: ffffffff84fd6c80
[ 2515.883847][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2515.892737][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2515.899288][ T1262] CR2: 00007f5a1ef9c210 CR3: 00000001e80a7000 CR4: 00000000003406e0
[ 2515.907230][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2515.915171][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2515.923109][ T1262] Call Trace:
[ 2515.926369][ T1262]  del_gendisk+0x593/0xbf0
[ 2515.930761][ T1262]  ? device_add_disk_no_queue_reg+0x20/0x20
[ 2515.936627][ T1262]  loop_remove+0x42/0xa0
[ 2515.940837][ T1262]  loop_control_ioctl+0x67f/0x740
[ 2515.945827][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.950209][ T1262]  ? loop_remove+0xa0/0xa0
[ 2515.954677][ T1262]  do_vfs_ioctl+0x744/0x1730
[ 2515.959234][ T1262]  ? selinux_file_ioctl+0x723/0x970
[ 2515.964405][ T1262]  ? ioctl_preallocate+0x250/0x250
[ 2515.969486][ T1262]  ? __fget+0x40c/0x4a0
[ 2515.973608][ T1262]  ? fget_many+0x20/0x20
[ 2515.977819][ T1262]  ? __fpregs_load_activate+0x1d7/0x3c0
[ 2515.983332][ T1262]  ? security_file_ioctl+0x9d/0xb0
14:09:54 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x2, 0x0)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

14:09:54 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4b47, 0x0)
fstat(0xffffffffffffffff, &(0x7f00000000c0))
r1 = syz_open_dev$mouse(&(0x7f0000000d40), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 2515.988409][ T1262]  __x64_sys_ioctl+0xd4/0x110
[ 2515.993050][ T1262]  do_syscall_64+0xcb/0x1c0
[ 2515.997519][ T1262]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2516.003375][ T1262] ---[ end trace 7583e5513725d28b ]---
[ 2516.009189][ T1262] kasan: CONFIG_KASAN_INLINE enabled
[ 2516.014500][ T1262] kasan: GPF could be caused by NULL-ptr deref or user memory access
[ 2516.022615][ T1262] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[ 2516.029538][ T1262] CPU: 1 PID: 1262 Comm: syz-executor.2 Tainted: G        W         5.4.219-syzkaller-00013-g4a947285bcca #0
[ 2516.041048][ T1262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 2516.051083][ T1262] RIP: 0010:strlen+0x2a/0x60
[ 2516.055645][ T1262] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01
[ 2516.075228][ T1262] RSP: 0018:ffff8881ca3179c0 EFLAGS: 00010246
[ 2516.081293][ T1262] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000040000
[ 2516.089243][ T1262] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000000000
[ 2516.097190][ T1262] RBP: 0000000000000000 R08: ffffffff81b9a329 R09: ffffed1039462f3d
[ 2516.105136][ T1262] R10: ffffed1039462f3d R11: 1ffff11039462f3c R12: ffffffffffffffff
[ 2516.113075][ T1262] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[ 2516.121027][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2516.129937][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2516.136497][ T1262] CR2: 00007f5a1ef9c210 CR3: 00000001e80a7000 CR4: 00000000003406e0
[ 2516.144438][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2516.152380][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2516.160316][ T1262] Call Trace:
[ 2516.163580][ T1262]  kernfs_name_hash+0x1e/0x220
[ 2516.168311][ T1262]  kernfs_find_ns+0x6b/0x260
[ 2516.172878][ T1262]  kernfs_remove_by_name_ns+0x32/0x90
[ 2516.178225][ T1262]  del_gendisk+0x98a/0xbf0
[ 2516.182612][ T1262]  ? device_add_disk_no_queue_reg+0x20/0x20
[ 2516.188475][ T1262]  loop_remove+0x42/0xa0
[ 2516.192688][ T1262]  loop_control_ioctl+0x67f/0x740
[ 2516.197682][ T1262]  ? loop_remove+0xa0/0xa0
[ 2516.202071][ T1262]  ? loop_remove+0xa0/0xa0
[ 2516.206456][ T1262]  do_vfs_ioctl+0x744/0x1730
[ 2516.211029][ T1262]  ? selinux_file_ioctl+0x723/0x970
[ 2516.216220][ T1262]  ? ioctl_preallocate+0x250/0x250
[ 2516.221299][ T1262]  ? __fget+0x40c/0x4a0
[ 2516.225512][ T1262]  ? fget_many+0x20/0x20
[ 2516.229722][ T1262]  ? __fpregs_load_activate+0x1d7/0x3c0
[ 2516.235252][ T1262]  ? security_file_ioctl+0x9d/0xb0
[ 2516.240331][ T1262]  __x64_sys_ioctl+0xd4/0x110
[ 2516.244975][ T1262]  do_syscall_64+0xcb/0x1c0
[ 2516.249449][ T1262]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[ 2516.255476][ T1262] Modules linked in:
[ 2516.259483][ T1262] ---[ end trace 7583e5513725d28c ]---
[ 2516.265108][ T1262] RIP: 0010:strlen+0x2a/0x60
[ 2516.269679][ T1262] Code: 41 57 41 56 41 54 53 49 89 fe 48 c7 c0 ff ff ff ff 49 bf 00 00 00 00 00 fc ff df 48 89 fb 66 90 49 89 c4 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 12 48 ff c3 49 8d 44 24 01 43 80 7c 26 01
[ 2516.289425][ T1262] RSP: 0018:ffff8881ca3179c0 EFLAGS: 00010246
[ 2516.295575][ T1262] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000040000
[ 2516.303558][ T1262] RDX: ffffc90000144000 RSI: 000000000003ffff RDI: 0000000000000000
[ 2516.311528][ T1262] RBP: 0000000000000000 R08: ffffffff81b9a329 R09: ffffed1039462f3d
[ 2516.319467][ T1262] R10: ffffed1039462f3d R11: 1ffff11039462f3c R12: ffffffffffffffff
[ 2516.327441][ T1262] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[ 2516.335520][ T1262] FS:  00007ff7be792700(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2516.344477][ T1262] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2516.351082][ T1262] CR2: 00007f5a1ef9c210 CR3: 00000001e80a7000 CR4: 00000000003406e0
[ 2516.359118][ T1262] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2516.367093][ T1262] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2516.375100][ T1262] Kernel panic - not syncing: Fatal exception
[ 2516.381300][ T1262] Kernel Offset: disabled
[ 2516.385611][ T1262] Rebooting in 86400 seconds..