last executing test programs:

1m0.722613467s ago: executing program 0 (id=1195):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0xa0000001})
epoll_wait(r3, &(0x7f00000000c0)=[{}], 0x1, 0x1fffc002)

59.82929447s ago: executing program 0 (id=1210):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x170, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x140, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x1c, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x49}]}]}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_ENC_OPTS_MASK={0xf4, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x3c, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x3000000}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xc00}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xff}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5ac}]}, @TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x24, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x86}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x34, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8c}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x10}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xe7}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x2c, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x5}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x46}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x1}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x24, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x7fffffff}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0xc, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xb5}]}]}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @local}]}}]}, 0x170}, 0x1, 0x0, 0x0, 0x80}, 0x0)

59.690803742s ago: executing program 0 (id=1216):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x204019, &(0x7f0000000240)=ANY=[@ANYBLOB="757466382c63727566742c6d6f64653d3078303030303030303030303030303037642c686964652c636865636b3d72656c617865642c757466382c757466382c007850bebd8d7d036618c1146a34cfd146c5861d8bd4466228f0bc2de3f77e11157c389fc315c06b7ba5db6a0be20cefe83f41117225bf80377cd9f3f8ce47ac8bf58ed6e8a5f46c37d64ff6e2fb871053a53f8747dada0e0a13c5a2c79eb2bada5d986d2d2899a7"], 0xfd, 0x564, &(0x7f0000001f80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
lremovexattr(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r4, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x6, @dev={0xfe, 0x80, '\x00', 0x37}, 0x2}], 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x10, 0x2, &(0x7f0000000380)=ANY=[@ANYBLOB="91103a000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a385000000700000"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x1204018, &(0x7f0000000140)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x1, 0x56a, &(0x7f0000000580)="$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")
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000300), 0x1001)
ioctl$SNDRV_TIMER_IOCTL_START(r5, 0x54a0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v2={0x2000000, [{0x14d, 0x5}, {0x10000, 0x1}]}, 0x14, 0x0)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)

59.583490534s ago: executing program 0 (id=1221):
shmget(0x3, 0x1000, 0x80, &(0x7f0000ffc000/0x1000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r0 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x38}}, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000580)='net/sockstat6\x00')
waitid$P_PIDFD(0x3, r2, &(0x7f00000005c0), 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x20, r5, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'ip6_vti0\x00', &(0x7f0000000340)={'ip6tnl0\x00', <r6=>0x0, 0x6, 0x3, 0xf, 0x1, 0x10, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000, 0x8, 0x0, 0x7}})
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000000540)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x38, r5, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x3}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x3}]}, 0x38}}, 0x20000000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=@newtaction={0x18c, 0x30, 0x301, 0x0, 0x0, {}, [{0x178, 0x1, [@m_bpf={0x174, 0x2, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x24, 0x4, [{0x0, 0x8, 0x1d}, {0x9, 0x4, 0xe, 0x869}, {0x6, 0x5, 0x0, 0x1}, {0x8, 0x3, 0x80, 0x1}]}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x8}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_OPS={0x24, 0x4, [{0x5, 0xf, 0x6, 0x9}, {0x2400, 0xc, 0xc, 0x7f}, {0x3fe0, 0x2, 0x7, 0x94f5}, {0x9, 0x5, 0x28, 0x3}]}]}, {0xf0, 0x6, "584b726d2d29ca6d058cf9aa9eb99d4007c7c20d62613acd6f77167c9a1ec10ceff4e1097b488030e1a6d737355359a7b070b41b237cc2a1175ed4890f743aa6b2df1f7838f80fd66bcbaecf9483e3799985640087847a39aba41cfa5a9d09b6d0bb8631aa0c0f07a2677cf04ffbff330c0341b87afbd7e6121a96ec91b6ca0d2089236b087e778b8a8a7417cd4a3bf876b55a9c81fa1eb9989950eeda667f9aa406a7a4388518d60984264e427a21a1d6cf5d21b453a1eb4c5f69a7f1d2586f75cfa941f5a2981b5f362e62fd5da04c8867c7f70cf4312101f35de9d0b40a559b35b9f8f33e975802a65082"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x18c}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000001a00010000000000000000000a00000000000000000c000008001900", @ANYRES32], 0x2c}}, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r8 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r8, 0xc0096616, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x40000000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r9}, 0x18)
statx(0xffffffffffffffff, 0x0, 0x400, 0x40, 0x0)
r10 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
splice(r10, 0x0, 0xffffffffffffffff, 0x0, 0x800000000ff, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r11}, 0x10)
alarm(0x7)

59.396616477s ago: executing program 0 (id=1226):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x170, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x140, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x1c, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x49}]}]}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_ENC_OPTS_MASK={0xf4, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x3c, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x3000000}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xc00}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xff}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5ac}]}, @TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x24, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x86}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x34, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8c}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x10}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xe7}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x2c, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x5}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x46}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x1}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x24, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x7fffffff}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0xc, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xb5}]}]}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @local}]}}]}, 0x170}, 0x1, 0x0, 0x0, 0x80}, 0x0)

57.903838199s ago: executing program 0 (id=1250):
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/18], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
r3 = syz_io_uring_setup(0x114, &(0x7f0000000340)={0x0, 0x24d6, 0x800, 0x2000000, 0x3a6}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r2, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000010000000100000009"], 0x18}, 0x0, 0x40000, 0x1})
io_uring_enter(r3, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)

57.903529419s ago: executing program 32 (id=1250):
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/18], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
r3 = syz_io_uring_setup(0x114, &(0x7f0000000340)={0x0, 0x24d6, 0x800, 0x2000000, 0x3a6}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r2, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000010000000100000009"], 0x18}, 0x0, 0x40000, 0x1})
io_uring_enter(r3, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)

2.955792856s ago: executing program 1 (id=2220):
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_int(r0, 0x1, 0xf, 0x0, &(0x7f0000000800))
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
r2 = socket$inet6(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1, 0x0, 0x9}, 0x18)
sendto$inet6(r2, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c50468d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cef2f8281d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c3939d7fbee9aa2c1731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0x16, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b00000007020000f8ffffffb703000008000000b7040000f5f22b029104dd465900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x40, 0x0, 0x0, 0x0, 0x55, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
unshare(0x68040200)
ftruncate(0xffffffffffffffff, 0x2007ffc)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000002, 0x42032, 0xffffffffffffffff, 0x80000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r7 = syz_io_uring_setup(0x10e, &(0x7f0000000380)={0x0, 0x5886, 0x8000, 0x0, 0x8b}, &(0x7f0000000400)=<r8=>0x0, &(0x7f0000000240)=<r9=>0x0)
mount(&(0x7f0000000000)=@md0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='bdev\x00', 0x11e00a, &(0x7f0000000280)=':\xb2}:\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r9, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x2, 0x0, r3, 0x0, r6, 0x2, 0x0, 0xb4f0f78e8cc5d533, {0x0, r10}})
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_buf(r11, 0x6, 0x21, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)

1.918128682s ago: executing program 5 (id=2229):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xc82, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r6)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)={0x2ec, r8, 0xb12, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xb}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_NODE={0x1ec, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xfffffffa}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "c1d0fe176972bf2ff6c25e2d5da61a18cca2c059c09180e889258dcbea59092cf339"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x4000000}, @TIPC_NLA_NODE_ID={0xea, 0x3, "77bd01a66caca32b42e451ec6419e7a64278297bc7f63eda26fcb0805d72c06b8161b0de787871dac96bcbc0d8ebd40ccc2a0ef437f145b943b4f2f7ff0f8c097165743f3d43aa71e6c02774071011d31279b34c07c88c4075bab54726c25b7d4c2b844bac625e3a72a306e7559d7f887a85836201d3ef181631137510e081d0991dfc4cb0429033c3d97b699cb02f150ca2857790063990cd1a814eb436381cb97a4bc779ede881ac67da68bbab4a41f3897534aa57aefa4bdb7732dd8d29aeaaf02ca74ae675831745fc8fbcb948f108491405ed7733594415cd5d449e612cd605ded909b5"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "fab8f27f7138d0d274210275744e62e37dcfd9f8dfacbb7f5f765703e6a811ae9eb83f95"}}, @TIPC_NLA_NODE_ID={0x42, 0x3, "ef055678b84dfcaa7055868352b75978c83ada7dbb3f6c09ae5926a2a2fa4aef46bce0b17512e00e55dcb605058691e68b83377ad96fa02cbc27614f2f7d"}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9d3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x20000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfd}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1b4}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}]}, @TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2ec}, 0x1, 0x0, 0x0, 0x24000800}, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r11}, 0x10)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0xfff7, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.917363602s ago: executing program 4 (id=2230):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>r0, @ANYBLOB], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000ac0)='kmem_cache_free\x00', r4, 0x0, 0x1}, 0x18)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x3, &(0x7f00000007c0)=ANY=[@ANYRES8=r3, @ANYRES64=r5, @ANYRES32=r2], &(0x7f0000000040)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x1e00, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40000, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r6}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r6, 0x0, 0xe, 0x0, &(0x7f0000000740)="6fd92f5c3fbecb0c72abdb6e3b92", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
unshare(0x24060400)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xa}, &(0x7f0000000000)={0x1f, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x4800, &(0x7f0000000340))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r8}, 0x10)
lsm_get_self_attr(0x64, 0xffffffffffffffff, &(0x7f0000000040)=0xfffffffffffffdb1, 0x0)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r10=>0xffffffffffffffff})
recvmmsg(r10, 0x0, 0x0, 0x2, 0x0)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r11, 0x8910, &(0x7f0000000000)={'ip6gretap0\x00', @ifru_mtu=0x6})
ioctl$sock_netdev_private(r11, 0x8914, &(0x7f0000000000))

1.844394643s ago: executing program 4 (id=2232):
r0 = socket(0x10, 0x803, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x94, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x5, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6fe2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xb380, 0x4, 0x0, 0xd87, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xab, 0x8e}}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.782866813s ago: executing program 5 (id=2233):
unshare(0x20000400)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
fallocate(r0, 0x20, 0xffffffffffff0b7b, 0xae)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0xfffffffffffffffc}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@bh}]}, 0x1, 0x50f, &(0x7f00000006c0)="$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")
pwritev2(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000200)="1b08898dd9bc5aa35cf21cc99810ec9b06e1a90750e32ce554dfffb29df5402308b198598a6d44", 0x27}, {&(0x7f0000000280)="db220284a4186e2385d57d", 0xb}], 0x2, 0xe7b, 0x0, 0x10)
socket$netlink(0x10, 0x3, 0x7)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000), 0x8)
r2 = syz_io_uring_setup(0x83b, &(0x7f0000000180)={0x0, 0x2b9a, 0x1000, 0x0, 0x3cf}, &(0x7f0000000680)=<r3=>0x0, &(0x7f00000005c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffffff, 0x1000})
io_uring_enter(r2, 0x3516, 0x8000000, 0x0, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="02130000"], 0x10}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c000780"], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x4000080)

1.733691794s ago: executing program 4 (id=2235):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r2, &(0x7f0000000080)='./file0\x00')
readlinkat(r2, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000780)=""/198, 0xc6)

1.675233165s ago: executing program 4 (id=2236):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240), 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x51, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES8=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095", @ANYRES8=r0], &(0x7f0000000780)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2, 0x0, 0x6}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x1, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r4, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40042409, 0x1)
r5 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
preadv2(r5, &(0x7f0000000300)=[{&(0x7f0000000380)=""/161, 0xa1}, {&(0x7f0000000240)=""/56, 0x38}], 0x2, 0xf, 0x3c, 0x1d)
bind$tipc(r3, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b000000000000000000000000807978ede1bb68739cac18f552cdc140f48c7e3d95b514aed810041b26f2317fd007554f06f365ef2aeeed978e79c99ee5bdbcbf19e7a7d2ba4e48a0ad0636d2ec4bc79bc4024ffb9dd574186b4837b1f7d62cf00ccdd047560a8619eb63108d7f84d07cfbe60ed487"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r8}, 0x18)
r9 = syz_io_uring_setup(0x83a, &(0x7f0000000180)={0x0, 0x2b94, 0x1000, 0x4, 0x3cf}, &(0x7f0000000040)=<r10=>0x0, &(0x7f0000000000)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x1000})
io_uring_enter(r9, 0x3516, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x18)
fsetxattr(r6, &(0x7f0000000440)=@known='com.apple.FinderInfo\x00', &(0x7f0000000480)='/dev/hwrng\x00', 0xb, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000e5987d28e9ce0dbd7c24e58b9ec89"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000005c0), 0x30c42, 0x3f)

1.302282521s ago: executing program 1 (id=2239):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000300000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0x8}, 0x18)
ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000240)={0x19, 0x3d00, 0x1575})

1.280910641s ago: executing program 1 (id=2240):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x6)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r2, &(0x7f0000000080)='./file0\x00')
readlinkat(r2, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000780)=""/198, 0xc6)

1.280027361s ago: executing program 4 (id=2241):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000340)=@req3={0xfffff800, 0xb1, 0xf, 0x0, 0x6, 0x800, 0x1af0}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
setsockopt$sock_void(0xffffffffffffffff, 0x1, 0x24, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x20}, 0x18)
kexec_load(0x4, 0xa, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ipv6_route\x00')
preadv(r5, &(0x7f0000001400)=[{0x0}, {0x0}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x3, 0x4099, 0x408001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x7, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000851000000200000020a00000100000009500007b00000000850000001300000095"], &(0x7f0000000300)='syzkaller\x00', 0x7, 0x92, &(0x7f0000000240)=""/146}, 0x94)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r7}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYRES16=r1], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r8)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)
socket$nl_route(0x10, 0x3, 0x0)

1.278207861s ago: executing program 5 (id=2242):
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xef, 0x7}, 0x2, 0xfc, 0x0, 0x1, 0x8, 0x3, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r0, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r2, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
time(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)="2400000064006bcd9e3fe3dc6e48aa31086b8703130000001f0000000000000004001400", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4044000)
sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r8, 0x24, &(0x7f00000000c0)={0x1, 0x0, 0xffffffff, 0x5a60})

1.150148063s ago: executing program 1 (id=2243):
prctl$PR_SET_NAME(0xf, &(0x7f0000000380)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0x40}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

971.256666ms ago: executing program 5 (id=2244):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xc82, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r6)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)={0x2ec, r8, 0xb12, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xb}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_NODE={0x1ec, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xfffffffa}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "c1d0fe176972bf2ff6c25e2d5da61a18cca2c059c09180e889258dcbea59092cf339"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x6}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x4000000}, @TIPC_NLA_NODE_ID={0xea, 0x3, "77bd01a66caca32b42e451ec6419e7a64278297bc7f63eda26fcb0805d72c06b8161b0de787871dac96bcbc0d8ebd40ccc2a0ef437f145b943b4f2f7ff0f8c097165743f3d43aa71e6c02774071011d31279b34c07c88c4075bab54726c25b7d4c2b844bac625e3a72a306e7559d7f887a85836201d3ef181631137510e081d0991dfc4cb0429033c3d97b699cb02f150ca2857790063990cd1a814eb436381cb97a4bc779ede881ac67da68bbab4a41f3897534aa57aefa4bdb7732dd8d29aeaaf02ca74ae675831745fc8fbcb948f108491405ed7733594415cd5d449e612cd605ded909b5"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "fab8f27f7138d0d274210275744e62e37dcfd9f8dfacbb7f5f765703e6a811ae9eb83f95"}}, @TIPC_NLA_NODE_ID={0x42, 0x3, "ef055678b84dfcaa7055868352b75978c83ada7dbb3f6c09ae5926a2a2fa4aef46bce0b17512e00e55dcb605058691e68b83377ad96fa02cbc27614f2f7d"}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9d3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x20000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfd}, @TIPC_NLA_PUBL_LOWER={0x8}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1b4}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}]}, @TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2ec}, 0x1, 0x0, 0x0, 0x24000800}, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0xfff7, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)

912.263927ms ago: executing program 2 (id=2245):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22, 0x5ccc6e75, @rand_addr, 0x3}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0}, 0x94)
listen(r1, 0x3)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
close_range(r1, r1, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r4, 0x3)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000180)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000480)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10, 0x3}}}}}}, 0x0)

863.131907ms ago: executing program 2 (id=2246):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r5, &(0x7f0000000140)={[{0x2b, 'cpu'}]}, 0x5)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4810, &(0x7f0000000400)={[{@sysvgroups}, {@max_batch_time}, {@data_journal}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@nolazytime}], [{@flag='async'}]}, 0x0, 0x4ec, &(0x7f0000000c40)="$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")
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r9 = dup(r8)
r10 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r9, r10, 0x0, 0x8000fffffffe)
getpid()
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)

823.763348ms ago: executing program 5 (id=2247):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @mcast2, 0x1}, 0x1c)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @remote, 0x1}, 0x1c)
syz_emit_ethernet(0x7e, &(0x7f0000000240)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, "331800", 0x48, 0x11, 0x0, @empty, @mcast2, {[], {0x4e22, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c088088f51e72eb2f7e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
truncate(&(0x7f0000000200)='./file1/../file0\x00', 0xfffffffffffff33a)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r5}, 0x38)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6, 0x0, 0x2}, 0x18)
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x7ff)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000040), r4, 0x0, 0x0, 0x1}}, 0x20)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")

487.742973ms ago: executing program 3 (id=2248):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x16c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x13c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}]}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_ENC_OPTS_MASK={0xfc, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x3c, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x3000000}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xc00}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xff}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5ac}]}, @TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x2c, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x86}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x6}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x8}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x34, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8c}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x10}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xe7}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x2c, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x5}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x46}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x1}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x24, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x7fffffff}]}, @TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0xc, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0xb5}]}]}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @local}]}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x80}, 0x0)

442.243793ms ago: executing program 1 (id=2249):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e85"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r5, &(0x7f0000000140)={[{0x2b, 'cpu'}]}, 0x5)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4810, &(0x7f0000000400)={[{@sysvgroups}, {@max_batch_time}, {@data_journal}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@nolazytime}], [{@flag='async'}]}, 0x0, 0x4ec, &(0x7f0000000c40)="$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")
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r9 = dup(r8)
r10 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r9, r10, 0x0, 0x8000fffffffe)
getpid()
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)

387.919954ms ago: executing program 5 (id=2250):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pivot_root(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$igmp(0x2, 0x3, 0x2)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7f}, 0x0, 0x6, 0x7, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu&0-\t&&')
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, 0x0, &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x100000001}, 0x18)

387.346594ms ago: executing program 4 (id=2251):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5}, 0x10)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
listen(r3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)=@phonet, 0x80, &(0x7f0000000180)=[{0x0, 0xea}], 0x8}, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

379.556025ms ago: executing program 3 (id=2252):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='kfree\x00', r2, 0x0, 0x4}, 0x18)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0x4}, {}, {0x8, 0x600}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x6, 0x7f, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x4004810)

291.866236ms ago: executing program 3 (id=2253):
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x20010, 0xffffffffffffffff, 0x94eb2000)
perf_event_open(&(0x7f0000000500)={0x2, 0x84, 0x53, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbef, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000000000)=""/231, 0xe7}, {&(0x7f0000000100)=""/179, 0xb3}, {&(0x7f00000001c0)=""/182, 0xb6}, {&(0x7f0000000280)=""/144, 0x90}, {&(0x7f0000001580)=""/4096, 0x1000}, {&(0x7f0000000340)=""/71, 0x47}, {&(0x7f00000003c0)=""/117, 0x75}], 0x8, 0x6, 0x5)
syz_open_dev$loop(&(0x7f00000004c0), 0x1, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
fsetxattr$security_selinux(r0, &(0x7f00000025c0), &(0x7f0000002600)='system_u:object_r:traceroute_exec_t:s0\x00', 0x27, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x9, 0x0, 0x7fff0000}]})
modify_ldt$write2(0x11, &(0x7f0000000000)={0x1, 0x20000000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0x100, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="00001000"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000200)={0x1, <r2=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{0x1, <r3=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x1a, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8280}, [@map_idx={0x18, 0xb, 0x5, 0x0, 0x5}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x101}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff8}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @map_fd={0x18, 0xa, 0x1, 0x0, r2}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x81}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_idx={0x18, 0xb, 0x5, 0x0, 0x4}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SURVEY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r8, 0x3a9, 0x3, 0x0, {{}, {@val={0x8, 0x140}, @void}}}, 0x1c}}, 0x4004050)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x2, &(0x7f0000002580)=[{0x803, 0x2, 0xfc, 0x2}, {0x3, 0x8, 0xa4, 0xff}]})
rseq(&(0x7f0000002640)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
futex(0x0, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000000240), &(0x7f0000000000)=0xfd71)

236.024787ms ago: executing program 2 (id=2254):
r0 = socket(0x10, 0x803, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x94, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x5, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6fe2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xb380, 0x4, 0x0, 0xd87, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xab, 0x8e}}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x0)

173.476257ms ago: executing program 3 (id=2255):
r0 = syz_io_uring_setup(0x83a, &(0x7f0000000180)={0x0, 0x2b94, 0x1000, 0x4, 0x3cf}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x1000})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

172.392478ms ago: executing program 2 (id=2256):
semget$private(0x0, 0x4000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r3 = dup(r1)
r4 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000840)=@newqdisc={0xd0, 0x24, 0xf0b, 0x70bd28, 0x0, {0x0, 0x0, 0x12, r5, {}, {0x8, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0xa0, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x9c, 0x2, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x6}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x81}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x8}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x1}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0xfc}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x7}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0xfffff2b1}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x9f}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x6c}]}, {0x24, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x1}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x509a}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0xe}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x3}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x5}]}]}]}}]}, 0xd0}}, 0x0)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @multicast2}}, 0x8003, 0x1, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e23, 0x805, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x20010}}, 0x4, 0x1, 0xf06, 0x0, 0xa4, 0x7e, 0x5}, 0x9c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000004c0)={0x3, &(0x7f0000000540)=[{0x7, 0x6, 0xfe, 0x4}, {0x95, 0x1, 0x20}, {0x8, 0xf9, 0x9, 0x7}]})
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x3}}, 0x1000000, 0x31, 0xffff1896, 0x3, 0x6, 0x0, 0x1b}, 0x9c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'veth1_to_team\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000000c0)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x49, r8})
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @loopback}, 0x3, r8})
r9 = syz_open_dev$vcsn(&(0x7f0000000200), 0x3, 0x20000)
getsockopt$CAN_RAW_RECV_OWN_MSGS(r9, 0x65, 0x4, &(0x7f0000000240), &(0x7f0000000340)=0x4)
write$selinux_load(0xffffffffffffffff, 0x0, 0x2000)
capset(&(0x7f0000000580)={0x20080522}, &(0x7f00000005c0)={0x9, 0x80000000, 0x5, 0xe, 0x42, 0xe})
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000100)={0x6, &(0x7f0000000040)=[{0x6, 0x4, 0x0, 0x5}, {0x8, 0x4, 0xfe, 0xfffffffe}, {0x4, 0x2, 0x1f, 0x9}, {0x7, 0x2, 0xd4, 0x6}, {0x3, 0xfb, 0x0, 0x28f}, {0x8, 0x1, 0x3, 0x2}]})
ioctl$BTRFS_IOC_DEFRAG_RANGE(r1, 0x40309410, &(0x7f0000000500)={0xfffffffffffffffe, 0x401, 0x2, 0x101, 0x0, [0x101, 0xff1b, 0x1, 0x10001]})

143.290248ms ago: executing program 2 (id=2257):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0}, 0x10024, 0x10000, 0x1, 0x1, 0xa, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00006e7000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{0xa128, 0x1}], 0x1, 0x0, 0x3, 0x0, 0x0, 0x2})
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = syz_io_uring_setup(0xbdc, &(0x7f0000000080)={0x0, 0xec21, 0x80, 0x1, 0x40000335}, &(0x7f0000000340)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4000, @fd=r4, 0x0, 0x0})
io_uring_enter(r5, 0x847ba, 0x2000, 0xe, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$inet6(0xa, 0x80002, 0x88)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000540)={@val={0x800e, 0x6002}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @empty}, {0x4e23, 0x0, 0x14, 0x0, @opaque="12bf81648a92d108504579ac"}}}}}}, 0x3a)

43.018079ms ago: executing program 1 (id=2258):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d80)={0x18, 0x20000000000000af, &(0x7f0000000900)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, 0x0, 0x24000890)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000008c0)={0x2, &(0x7f0000000880)=[{0xa, 0x1d, 0x6, 0xa35}, {0x7, 0x1, 0x1, 0x4672}]})
r2 = io_uring_setup(0x3eaf, &(0x7f0000000100)={0x0, 0x0, 0x400})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000040000000000a"], 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x22, &(0x7f0000000340)=[{&(0x7f0000000480)=""/233}], 0x1)
r3 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r3}, 0x8)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r5, 0x8983, &(0x7f0000000000)={0x6, 'veth0_vlan\x00', {}, 0x105})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="36400000260091"], 0xfe33)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454c9, 0xba98575a95aeb70d)

24.60355ms ago: executing program 3 (id=2259):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x97a3}, 0x18)
r1 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, 0x0)
r2 = add_key(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f0000000380)="d8", 0x1, r2)
keyctl$search(0xa, r2, &(0x7f0000000080)='user\x00', &(0x7f0000000180)={'syz', 0x3}, r1)

9.01213ms ago: executing program 3 (id=2260):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240), 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x51, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES8=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095", @ANYRES8=r0], &(0x7f0000000780)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2, 0x0, 0x6}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x1, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r4, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40042409, 0x1)
r5 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
preadv2(r5, &(0x7f0000000300)=[{&(0x7f0000000380)=""/161, 0xa1}, {&(0x7f0000000240)=""/56, 0x38}], 0x2, 0xf, 0x3c, 0x1d)
bind$tipc(r3, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b000000000000000000000000807978ede1bb68739cac18f552cdc140f48c7e3d95b514aed810041b26f2317fd007554f06f365ef2aeeed978e79c99ee5bdbcbf19e7a7d2ba4e48a0ad0636d2ec4bc79bc4024ffb9dd574186b4837b1f7d62cf00ccdd047560a8619eb63108d7f84d07cfbe60ed487"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r8}, 0x18)
r9 = syz_io_uring_setup(0x83a, &(0x7f0000000180)={0x0, 0x2b94, 0x1000, 0x4, 0x3cf}, &(0x7f0000000040)=<r10=>0x0, &(0x7f0000000000)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x1000})
io_uring_enter(r9, 0x3516, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x18)
fsetxattr(r6, &(0x7f0000000440)=@known='com.apple.FinderInfo\x00', &(0x7f0000000480)='/dev/hwrng\x00', 0xb, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000e5987d28e9ce0dbd7c24e58b9ec89"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000005c0), 0x30c42, 0x3f)

0s ago: executing program 2 (id=2261):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = socket(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000300)={[{@usrquota}, {@noquota}, {@nomblk_io_submit}], [{@subj_role={'subj_role', 0x3d, 'usrquota'}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@context={'context', 0x3d, 'user_u'}}, {@obj_type={'obj_type', 0x3d, '\\/$%#@'}}, {@smackfshat}]}, 0x1, 0x4c4, &(0x7f0000000a40)="$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")
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
setresuid(0xee00, 0xee01, 0xee01)
sendmsg$nl_xfrm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="04010000100007"], 0x104}}, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e21, 0x7, @mcast1, 0x4}, 0x1c)
connect$pppl2tp(r5, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x8, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000140), 0x3}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x41, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}, 0x10, 0x0, 0x0, 0x7, 0x10000, 0xf}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
writev(r5, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
write(r1, &(0x7f0000000100)="140000001a004f7fb3e45f2024d2f1c9fb470000", 0x14)
recvmmsg(r1, &(0x7f0000004e80)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x645}, {{&(0x7f0000000600)=@pppol2tp, 0x80, 0x0}, 0xffffff80}], 0x3, 0x10122, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'nicvf0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001240)=ANY=[@ANYBLOB="d2118ced9cb3668f69af568dbfcbf495b5e6dd543276ba11d1907e10ab333783738eb5746f778a061e2628ec465ad6b54db95042c2b58525f928f334522b942da785a4094e8e329e5299656eac7c7dbe7ad97e958b5ee1c8345bb79cdd3013cd18539dd01fe33a2cc22cfc7fd47082c3cc88d8dbfec7591f80bc9b44f79626a70e17", @ANYRES32], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x0, 0x0, 0xfffffffc}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0xffffffff}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x5}, {}, {0x0, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0xfffffffe, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {0x1}, {0x0, 0xfffffffd}, {0x6}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x2}, {0x0, 0x80000000, 0x0, 0x7dff800}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {0x4}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

kernel console output (not intermixed with test programs):

0: entered allmulticast mode
[   98.773452][ T8249] veth0_vlan: entered allmulticast mode
[   98.799562][ T8249] team0: Device ipvlan0 failed to register rx_handler
[   99.029987][ T8254] 9pnet_fd: Insufficient options for proto=fd
[   99.142551][ T8258] loop2: detected capacity change from 0 to 764
[   99.179915][ T8258] rock: directory entry would overflow storage
[   99.186097][ T8258] rock: sig=0x4654, size=5, remaining=4
[   99.199133][ T8258] rock: directory entry would overflow storage
[   99.205316][ T8258] rock: sig=0x4f50, size=4, remaining=3
[   99.211046][ T8258] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.234673][ T8258] ip6tnl1: entered promiscuous mode
[   99.255564][ T8258] netlink: 'syz.2.1463': attribute type 10 has an invalid length.
[   99.299243][ T8258] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.306356][ T8258] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.313714][ T8258] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.320867][ T8258] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.344001][ T8276] loop5: detected capacity change from 0 to 1024
[   99.346574][ T8278] netlink: 'syz.1.1468': attribute type 13 has an invalid length.
[   99.351951][ T8276] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.358308][ T8278] netlink: 'syz.1.1468': attribute type 17 has an invalid length.
[   99.364868][ T8276] ext4: Unknown parameter 'audit'
[   99.380813][ T8258] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   99.419759][ T8273] bridge_slave_1: left allmulticast mode
[   99.425464][ T8273] bridge_slave_1: left promiscuous mode
[   99.431234][ T8273] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.445337][ T8273] bridge_slave_0: left allmulticast mode
[   99.451111][ T8273] bridge_slave_0: left promiscuous mode
[   99.456787][ T8273] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.490986][ T8273] bond0: (slave bridge0): Releasing backup interface
[   99.498289][ T7624] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[   99.580994][ T8278] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   99.609225][ T8269] vxcan1 speed is unknown, defaulting to 1000
[   99.817947][ T8299] 9pnet_fd: Insufficient options for proto=fd
[   99.973828][ T8309] __nla_validate_parse: 3 callbacks suppressed
[   99.973842][ T8309] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1476'.
[   99.992185][ T8308] FAULT_INJECTION: forcing a failure.
[   99.992185][ T8308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.005315][ T8308] CPU: 0 UID: 0 PID: 8308 Comm: syz.1.1479 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  100.005339][ T8308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.005467][ T8308] Call Trace:
[  100.005473][ T8308]  <TASK>
[  100.005480][ T8308]  __dump_stack+0x1d/0x30
[  100.005501][ T8308]  dump_stack_lvl+0xe8/0x140
[  100.005521][ T8308]  dump_stack+0x15/0x1b
[  100.005611][ T8308]  should_fail_ex+0x265/0x280
[  100.005640][ T8308]  should_fail+0xb/0x20
[  100.005667][ T8308]  should_fail_usercopy+0x1a/0x20
[  100.005697][ T8308]  _copy_to_user+0x20/0xa0
[  100.005797][ T8308]  simple_read_from_buffer+0xb5/0x130
[  100.005858][ T8308]  proc_fail_nth_read+0x100/0x140
[  100.005890][ T8308]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  100.005997][ T8308]  vfs_read+0x19d/0x6f0
[  100.006023][ T8308]  ? __rcu_read_unlock+0x4f/0x70
[  100.006056][ T8308]  ? __fget_files+0x184/0x1c0
[  100.006077][ T8308]  ksys_read+0xda/0x1a0
[  100.006104][ T8308]  __x64_sys_read+0x40/0x50
[  100.006244][ T8308]  x64_sys_call+0x2d77/0x2fb0
[  100.006264][ T8308]  do_syscall_64+0xd2/0x200
[  100.006283][ T8308]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.006330][ T8308]  ? clear_bhb_loop+0x40/0x90
[  100.006349][ T8308]  ? clear_bhb_loop+0x40/0x90
[  100.006369][ T8308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.006461][ T8308] RIP: 0033:0x7f360c00d33c
[  100.006477][ T8308] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  100.006495][ T8308] RSP: 002b:00007f360a677030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  100.006515][ T8308] RAX: ffffffffffffffda RBX: 00007f360c235fa0 RCX: 00007f360c00d33c
[  100.006560][ T8308] RDX: 000000000000000f RSI: 00007f360a6770a0 RDI: 0000000000000008
[  100.006571][ T8308] RBP: 00007f360a677090 R08: 0000000000000000 R09: 0000000000000000
[  100.006582][ T8308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.006592][ T8308] R13: 0000000000000000 R14: 00007f360c235fa0 R15: 00007ffe2d77e2c8
[  100.006608][ T8308]  </TASK>
[  100.357796][ T8314] syzkaller0: entered promiscuous mode
[  100.366999][ T8312] loop5: detected capacity change from 0 to 512
[  100.375293][ T8312] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  100.399758][ T8312] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  100.489431][ T8326] vxcan1 speed is unknown, defaulting to 1000
[  100.509689][ T8334] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  100.514698][ T8336] netlink: 'syz.2.1484': attribute type 13 has an invalid length.
[  100.523371][ T8336] netlink: 'syz.2.1484': attribute type 17 has an invalid length.
[  100.592615][ T8346] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1487'.
[  100.608577][ T8336] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.711666][ T8364] FAULT_INJECTION: forcing a failure.
[  100.711666][ T8364] name failslab, interval 1, probability 0, space 0, times 0
[  100.724470][ T8364] CPU: 1 UID: 0 PID: 8364 Comm: syz.1.1490 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  100.724522][ T8364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.724533][ T8364] Call Trace:
[  100.724538][ T8364]  <TASK>
[  100.724546][ T8364]  __dump_stack+0x1d/0x30
[  100.724623][ T8364]  dump_stack_lvl+0xe8/0x140
[  100.724662][ T8364]  dump_stack+0x15/0x1b
[  100.724680][ T8364]  should_fail_ex+0x265/0x280
[  100.724709][ T8364]  should_failslab+0x8c/0xb0
[  100.724732][ T8364]  __kmalloc_cache_node_noprof+0x54/0x320
[  100.724759][ T8364]  ? __get_vm_area_node+0x106/0x1d0
[  100.724804][ T8364]  __get_vm_area_node+0x106/0x1d0
[  100.724829][ T8364]  __vmalloc_node_range_noprof+0x273/0xe00
[  100.724874][ T8364]  ? xt_counters_alloc+0x40/0x50
[  100.724906][ T8364]  ? strcmp+0x22/0x50
[  100.724922][ T8364]  ? strnlen+0x28/0x50
[  100.724974][ T8364]  ? translate_table+0xf5b/0x1100
[  100.724993][ T8364]  ? xt_counters_alloc+0x40/0x50
[  100.725082][ T8364]  vzalloc_noprof+0x82/0xc0
[  100.725106][ T8364]  ? xt_counters_alloc+0x40/0x50
[  100.725186][ T8364]  xt_counters_alloc+0x40/0x50
[  100.725319][ T8364]  __do_replace+0x51/0x620
[  100.725339][ T8364]  do_arpt_set_ctl+0x708/0x9a0
[  100.725358][ T8364]  ? kstrtoull+0x111/0x140
[  100.725387][ T8364]  ? _raw_spin_unlock_bh+0x36/0x40
[  100.725411][ T8364]  nf_setsockopt+0x196/0x1b0
[  100.725464][ T8364]  ip_setsockopt+0x102/0x110
[  100.725551][ T8364]  udp_setsockopt+0x99/0xb0
[  100.725573][ T8364]  sock_common_setsockopt+0x69/0x80
[  100.725595][ T8364]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  100.725693][ T8364]  __sys_setsockopt+0x184/0x200
[  100.725724][ T8364]  __x64_sys_setsockopt+0x64/0x80
[  100.725755][ T8364]  x64_sys_call+0x2bd5/0x2fb0
[  100.725778][ T8364]  do_syscall_64+0xd2/0x200
[  100.725838][ T8364]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.725866][ T8364]  ? clear_bhb_loop+0x40/0x90
[  100.725889][ T8364]  ? clear_bhb_loop+0x40/0x90
[  100.725952][ T8364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.725974][ T8364] RIP: 0033:0x7f360c00e929
[  100.726061][ T8364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.726079][ T8364] RSP: 002b:00007f360a677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  100.726100][ T8364] RAX: ffffffffffffffda RBX: 00007f360c235fa0 RCX: 00007f360c00e929
[  100.726113][ T8364] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[  100.726126][ T8364] RBP: 00007f360a677090 R08: 0000000000000418 R09: 0000000000000000
[  100.726138][ T8364] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[  100.726203][ T8364] R13: 0000000000000000 R14: 00007f360c235fa0 R15: 00007ffe2d77e2c8
[  100.726221][ T8364]  </TASK>
[  100.726229][ T8364] syz.1.1490: vmalloc error: size 64, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  100.883478][ T8374] loop5: detected capacity change from 0 to 512
[  100.886130][ T8364] ,cpuset=/,mems_allowed=0
[  100.886158][ T8364] CPU: 1 UID: 0 PID: 8364 Comm: syz.1.1490 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  100.886183][ T8364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.886195][ T8364] Call Trace:
[  100.886202][ T8364]  <TASK>
[  100.886238][ T8364]  __dump_stack+0x1d/0x30
[  100.886260][ T8364]  dump_stack_lvl+0xe8/0x140
[  100.886329][ T8364]  dump_stack+0x15/0x1b
[  100.886346][ T8364]  warn_alloc+0x12b/0x1a0
[  100.886476][ T8364]  __vmalloc_node_range_noprof+0x297/0xe00
[  100.886525][ T8364]  ? strcmp+0x22/0x50
[  100.886544][ T8364]  ? strnlen+0x28/0x50
[  100.886565][ T8364]  ? translate_table+0xf5b/0x1100
[  100.886585][ T8364]  ? xt_counters_alloc+0x40/0x50
[  100.886664][ T8364]  vzalloc_noprof+0x82/0xc0
[  100.886691][ T8364]  ? xt_counters_alloc+0x40/0x50
[  100.886721][ T8364]  xt_counters_alloc+0x40/0x50
[  100.886797][ T8364]  __do_replace+0x51/0x620
[  100.886820][ T8364]  do_arpt_set_ctl+0x708/0x9a0
[  100.886883][ T8364]  ? kstrtoull+0x111/0x140
[  100.886909][ T8364]  ? _raw_spin_unlock_bh+0x36/0x40
[  100.886936][ T8364]  nf_setsockopt+0x196/0x1b0
[  100.886956][ T8364]  ip_setsockopt+0x102/0x110
[  100.887024][ T8364]  udp_setsockopt+0x99/0xb0
[  100.887049][ T8364]  sock_common_setsockopt+0x69/0x80
[  100.887073][ T8364]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  100.887098][ T8364]  __sys_setsockopt+0x184/0x200
[  100.887137][ T8364]  __x64_sys_setsockopt+0x64/0x80
[  100.887166][ T8364]  x64_sys_call+0x2bd5/0x2fb0
[  100.887241][ T8364]  do_syscall_64+0xd2/0x200
[  100.887259][ T8364]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.887284][ T8364]  ? clear_bhb_loop+0x40/0x90
[  100.887356][ T8364]  ? clear_bhb_loop+0x40/0x90
[  100.887374][ T8364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.887398][ T8364] RIP: 0033:0x7f360c00e929
[  100.887448][ T8364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.887466][ T8364] RSP: 002b:00007f360a677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  100.887484][ T8364] RAX: ffffffffffffffda RBX: 00007f360c235fa0 RCX: 00007f360c00e929
[  100.887496][ T8364] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[  100.887508][ T8364] RBP: 00007f360a677090 R08: 0000000000000418 R09: 0000000000000000
[  100.887520][ T8364] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[  100.887533][ T8364] R13: 0000000000000000 R14: 00007f360c235fa0 R15: 00007ffe2d77e2c8
[  100.887615][ T8364]  </TASK>
[  100.887622][ T8364] Mem-Info:
[  100.915985][ T8374] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.921689][ T8364] active_anon:4315 inactive_anon:3 isolated_anon:0
[  100.921689][ T8364]  active_file:18948 inactive_file:2426 isolated_file:0
[  100.921689][ T8364]  unevictable:0 dirty:191 writeback:0
[  100.921689][ T8364]  slab_reclaimable:3263 slab_unreclaimable:74383
[  100.921689][ T8364]  mapped:29146 shmem:380 pagetables:1033
[  100.921689][ T8364]  sec_pagetables:0 bounce:0
[  100.921689][ T8364]  kernel_misc_reclaimable:0
[  100.921689][ T8364]  free:1810555 free_pcp:31251 free_cma:0
[  101.025764][ T8395] loop2: detected capacity change from 0 to 1024
[  101.032802][ T8364] Node 0 active_anon:17956kB inactive_anon:12kB active_file:75792kB inactive_file:9704kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:116584kB dirty:764kB writeback:0kB shmem:1984kB writeback_tmp:0kB kernel_stack:3808kB pagetables:4248kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  101.063805][ T8395] EXT4-fs: Ignoring removed bh option
[  101.066471][ T8364] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  101.083850][ T8395] EXT4-fs: inline encryption not supported
[  101.085492][ T8364] lowmem_reserve[]: 0 2882 7860
[  101.098438][ T8395] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  101.099929][ T8364]  7860
[  101.099941][ T8364] Node 0 DMA32 free:2947828kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951356kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  101.112799][ T8395] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  101.113854][ T8364] lowmem_reserve[]: 0 0 4978 4978
[  101.113881][ T8364] Node 0 Normal free:4279032kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18304kB inactive_anon:12kB active_file:75792kB inactive_file:9704kB unevictable:0kB writepending:764kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:120172kB local_pcp:1436kB free_cma:0kB
[  101.129303][ T8395] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.1492: lblock 2 mapped to illegal pblock 2 (length 1)
[  101.132661][ T8364] lowmem_reserve[]: 0 0 0 0
[  101.137341][ T8395] __quota_error: 98 callbacks suppressed
[  101.137354][ T8395] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  101.142381][ T8364] Node 0 DMA: 0*4kB 0*8kB 
[  101.150065][ T8395] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.1492: lblock 0 mapped to illegal pblock 48 (length 1)
[  101.153218][ T8364] 0*16kB 0*32kB 0*64kB 
[  101.158362][ T8395] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  101.162978][ T8364] 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB 
[  101.167483][ T8395] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1492: Failed to acquire dquot type 0
[  101.173546][ T8364] (M) 3*4096kB 
[  101.182900][ T8364] (M) = 15360kB
[  101.260298][ T8374] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.261345][ T8364] Node 0 
[  101.264440][ T8374] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.267424][ T8364] DMA32: 3*4kB 
[  101.304968][ T8374] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.320691][ T8364] (M) 1*8kB (M) 4*16kB (M) 3*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB 
[  101.327622][ T8395] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  101.355870][ T8364] (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947828kB
[  101.355933][ T8364] Node 0 Normal: 
[  101.378244][ T8374] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  101.389792][ T8364] 227*4kB 
[  101.396742][ T8374] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.400432][ T8364] (UME) 334*8kB 
[  101.411625][ T8387] 9pnet_fd: Insufficient options for proto=fd
[  101.413406][ T8364] (UME) 644*16kB 
[  101.445544][ T8401] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.451514][ T8364] (UME) 534*32kB 
[  101.456704][ T8374] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  101.488446][ T8364] (M) 332*64kB (UM) 55*128kB (M) 79*256kB (UME) 
[  101.564022][ T8374] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.569774][ T8364] 64*512kB 
[  101.600359][   T29] audit: type=1400 audit(1752598271.054:3886): avc:  denied  { setattr } for  pid=8361 comm="syz.5.1491" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  101.602341][ T8364] (UM) 
[  101.605933][ T8395] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.1492: mark_inode_dirty error
[  101.619416][ T8364] 31*1024kB 
[  101.630482][ T8395] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  101.636888][ T8364] (UM) 17*2048kB (UME) 
[  101.646576][ T8395] EXT4-fs (loop2): 1 orphan inode deleted
[  101.648789][ T8364] 1001*4096kB (UM) 
[  101.658121][ T8395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.660740][ T8364] = 4278908kB
[  101.674756][ T7102] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:27: lblock 1 mapped to illegal pblock 1 (length 1)
[  101.677876][ T8364] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  101.711506][ T7102] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  101.713792][ T8364] 21899 total pagecache pages
[  101.720171][ T7102] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 0
[  101.733733][ T8364] 3 pages in swap cache
[  101.733741][ T8364] Free swap  = 124984kB
[  101.733748][ T8364] Total swap = 124996kB
[  101.733755][ T8364] 2097051 pages RAM
[  101.747056][ T8401] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  101.759165][ T8364] 0 pages HighMem/MovableOnly
[  101.759175][ T8364] 80812 pages reserved
[  101.772311][ T8401] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.812169][   T29] audit: type=1400 audit(1752598271.254:3887): avc:  denied  { write } for  pid=8361 comm="syz.5.1491" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  101.855364][ T8407] capability: warning: `syz.4.1495' uses deprecated v2 capabilities in a way that may be insecure
[  101.870161][ T8401] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.1491: corrupted xattr block 19: overlapping e_value 
[  101.960342][   T29] audit: type=1400 audit(1752598271.384:3888): avc:  denied  { mount } for  pid=8408 comm="syz.1.1493" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  101.961005][ T8395] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.1492: lblock 0 mapped to illegal pblock 48 (length 1)
[  101.982745][   T29] audit: type=1400 audit(1752598271.384:3889): avc:  denied  { remount } for  pid=8408 comm="syz.1.1493" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  102.001905][ T8395] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=-117
[  102.042989][ T8412] ÿÿÿÿÿÿ: renamed from vlan1
[  102.052841][ T8401] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  102.055242][ T8418] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1497'.
[  102.073204][   T29] audit: type=1400 audit(1752598271.564:3890): avc:  denied  { open } for  pid=8361 comm="syz.5.1491" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  102.106396][ T8415] loop1: detected capacity change from 0 to 8192
[  102.144661][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.192188][ T7598] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.230143][ T8435] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1501'.
[  102.269882][ T8441] siw: device registration error -23
[  102.292505][ T8433] loop2: detected capacity change from 0 to 512
[  102.299804][ T8433] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  102.316407][ T8433] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  102.405490][   T29] audit: type=1326 audit(1752598271.894:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8464 comm="syz.4.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  102.592293][ T8495] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1512'.
[  102.652172][ T8498] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1515'.
[  102.673250][ T8500] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.680773][ T8500] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.727259][ T8513] openvswitch: netlink: Message has 6 unknown bytes.
[  102.760478][ T8512] loop2: detected capacity change from 0 to 512
[  102.779728][ T8512] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  102.795271][ T8520] netlink: 'syz.4.1521': attribute type 2 has an invalid length.
[  102.803255][ T8520] netlink: 'syz.4.1521': attribute type 1 has an invalid length.
[  102.806260][ T8522] pim6reg1: entered promiscuous mode
[  102.811693][ T8520] netlink: 'syz.4.1521': attribute type 1 has an invalid length.
[  102.816298][ T8522] pim6reg1: entered allmulticast mode
[  102.841265][ T8520] 8021q: adding VLAN 0 to HW filter on device bond2
[  102.850798][ T8512] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.863607][ T8512] ext4 filesystem being mounted at /378/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  102.972530][ T8576] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[  102.979260][ T8576] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  102.986955][ T8576] vhci_hcd vhci_hcd.0: Device attached
[  102.997611][ T8576] loop1: detected capacity change from 0 to 512
[  103.015977][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.033725][ T8576] EXT4-fs (loop1): 1 orphan inode deleted
[  103.048603][ T8576] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.061195][ T7104] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 1
[  103.062480][ T8576] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.089859][ T8592] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65523 sclass=netlink_xfrm_socket pid=8592 comm=syz.4.1531
[  103.121779][ T8594] siw: device registration error -23
[  103.142481][ T8577] vhci_hcd: connection closed
[  103.142743][ T7108] vhci_hcd: stop threads
[  103.151816][ T7108] vhci_hcd: release socket
[  103.156286][ T7108] vhci_hcd: disconnect device
[  103.180514][ T8604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1534'.
[  103.189468][ T8604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1534'.
[  103.210934][ T8610] pim6reg1: entered promiscuous mode
[  103.216314][ T8610] pim6reg1: entered allmulticast mode
[  103.231793][ T8614] x_tables: ip6_tables: mh match: only valid for protocol 135
[  103.343509][ T8628] siw: device registration error -23
[  103.370157][ T8631] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1546'.
[  103.482967][ T8642] vxcan1 speed is unknown, defaulting to 1000
[  103.698336][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.725635][ T8667] loop1: detected capacity change from 0 to 1024
[  103.733038][ T8667] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  103.747684][ T8667] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1549'.
[  103.925993][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[  103.933820][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[  103.942979][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.950795][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.958505][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.966320][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.974081][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.981801][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.990001][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  103.998151][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.005801][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.013710][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.021447][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.029147][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.036910][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.044756][ T3379] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  104.053809][ T3379] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  104.157411][ T8703] loop1: detected capacity change from 0 to 1024
[  104.166041][ T8703] EXT4-fs (loop1): Can't support bigalloc feature without extents feature
[  104.166041][ T8703] 
[  104.176965][ T8703] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  104.255090][ T8717] loop2: detected capacity change from 0 to 128
[  104.289680][ T8717] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  104.297537][ T8717] FAT-fs (loop2): Filesystem has been set read-only
[  104.319947][ T8717] syz.2.1560: attempt to access beyond end of device
[  104.319947][ T8717] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  104.335095][ T8717] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  104.343052][ T8717] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  104.370238][ T8717] syz.2.1560: attempt to access beyond end of device
[  104.370238][ T8717] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.383990][ T8717] syz.2.1560: attempt to access beyond end of device
[  104.383990][ T8717] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.397278][ T8716] syz.2.1560: attempt to access beyond end of device
[  104.397278][ T8716] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.414112][ T8717] syz.2.1560: attempt to access beyond end of device
[  104.414112][ T8717] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.448978][ T8716] syz.2.1560: attempt to access beyond end of device
[  104.448978][ T8716] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.463731][ T8716] syz.2.1560: attempt to access beyond end of device
[  104.463731][ T8716] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.838942][ T8717] syz.2.1560: attempt to access beyond end of device
[  104.838942][ T8717] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.867859][ T8716] syz.2.1560: attempt to access beyond end of device
[  104.867859][ T8716] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.884488][ T8716] syz.2.1560: attempt to access beyond end of device
[  104.884488][ T8716] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  104.936900][ T8740] loop1: detected capacity change from 0 to 512
[  104.960894][ T8740] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #3: comm ’: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  105.028292][ T8740] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm ’: Bad quota inode: 3, type: 0
[  105.052940][ T8740] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  105.084933][ T8740] EXT4-fs (loop1): mount failed
[  105.164694][ T8750] FAULT_INJECTION: forcing a failure.
[  105.164694][ T8750] name failslab, interval 1, probability 0, space 0, times 0
[  105.177495][ T8750] CPU: 1 UID: 0 PID: 8750 Comm: syz.5.1566 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  105.177526][ T8750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  105.177540][ T8750] Call Trace:
[  105.177546][ T8750]  <TASK>
[  105.177554][ T8750]  __dump_stack+0x1d/0x30
[  105.177574][ T8750]  dump_stack_lvl+0xe8/0x140
[  105.177601][ T8750]  dump_stack+0x15/0x1b
[  105.177615][ T8750]  should_fail_ex+0x265/0x280
[  105.177645][ T8750]  ? legacy_init_fs_context+0x31/0x80
[  105.177679][ T8750]  should_failslab+0x8c/0xb0
[  105.177768][ T8750]  __kmalloc_cache_noprof+0x4c/0x320
[  105.177795][ T8750]  legacy_init_fs_context+0x31/0x80
[  105.177821][ T8750]  alloc_fs_context+0x3ec/0x4e0
[  105.177919][ T8750]  fs_context_for_mount+0x22/0x30
[  105.177958][ T8750]  do_new_mount+0xe9/0x680
[  105.177985][ T8750]  path_mount+0x4a4/0xb20
[  105.178046][ T8750]  ? user_path_at+0x109/0x130
[  105.178071][ T8750]  __se_sys_mount+0x28f/0x2e0
[  105.178102][ T8750]  __x64_sys_mount+0x67/0x80
[  105.178140][ T8750]  x64_sys_call+0xd36/0x2fb0
[  105.178167][ T8750]  do_syscall_64+0xd2/0x200
[  105.178185][ T8750]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  105.178208][ T8750]  ? clear_bhb_loop+0x40/0x90
[  105.178311][ T8750]  ? clear_bhb_loop+0x40/0x90
[  105.178334][ T8750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.178432][ T8750] RIP: 0033:0x7fb376e3e929
[  105.178466][ T8750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.178485][ T8750] RSP: 002b:00007fb3754a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  105.178504][ T8750] RAX: ffffffffffffffda RBX: 00007fb377065fa0 RCX: 00007fb376e3e929
[  105.178557][ T8750] RDX: 0000200000000280 RSI: 0000200000000300 RDI: 0000000000000000
[  105.178570][ T8750] RBP: 00007fb3754a7090 R08: 0000200000000600 R09: 0000000000000000
[  105.178580][ T8750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.178591][ T8750] R13: 0000000000000000 R14: 00007fb377065fa0 R15: 00007fff3125cf08
[  105.178607][ T8750]  </TASK>
[  105.415795][ T8754] __nla_validate_parse: 1 callbacks suppressed
[  105.415826][ T8754] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1568'.
[  105.434808][ T8752] Illegal XDP return value 4294967274 on prog  (id 967) dev N/A, expect packet loss!
[  105.475405][ T8752] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1567'.
[  105.603202][ T8777] 8021q: adding VLAN 0 to HW filter on device bond1
[  105.615944][ T8777] vlan2: entered allmulticast mode
[  105.621140][ T8777] bond1: entered allmulticast mode
[  105.642635][ T8775] loop5: detected capacity change from 0 to 512
[  105.651164][ T8775] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  105.667598][ T8775] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  105.745322][ T8830] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1580'.
[  105.824680][ T8837] vxcan1 speed is unknown, defaulting to 1000
[  105.911082][ T8860] netlink: 'syz.3.1582': attribute type 3 has an invalid length.
[  105.949779][ T8844] rdma_rxe: rxe_newlink: failed to add vxcan1
[  106.005390][ T8886] x_tables: ip6_tables: mh match: only valid for protocol 135
[  106.028895][ T8890] pim6reg1: entered promiscuous mode
[  106.034245][ T8890] pim6reg1: entered allmulticast mode
[  106.059386][ T8888] loop2: detected capacity change from 0 to 8192
[  106.178122][   T29] kauditd_printk_skb: 207 callbacks suppressed
[  106.178136][   T29] audit: type=1326 audit(1752598275.664:4098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.207736][   T29] audit: type=1326 audit(1752598275.664:4099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.231186][   T29] audit: type=1326 audit(1752598275.664:4100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.254584][   T29] audit: type=1326 audit(1752598275.664:4101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.278076][   T29] audit: type=1326 audit(1752598275.664:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.301522][   T29] audit: type=1326 audit(1752598275.664:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.324943][   T29] audit: type=1326 audit(1752598275.664:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.348378][   T29] audit: type=1326 audit(1752598275.664:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.371774][   T29] audit: type=1326 audit(1752598275.664:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.395370][   T29] audit: type=1326 audit(1752598275.664:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8899 comm="syz.5.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb376e3e929 code=0x7ffc0000
[  106.529051][ T8907] loop5: detected capacity change from 0 to 1024
[  106.538386][ T8907] EXT4-fs: Ignoring removed bh option
[  106.543795][ T8907] EXT4-fs: inline encryption not supported
[  106.568953][ T8907] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.584698][ T8907] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  106.605686][ T8913] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1596'.
[  106.615197][ T8907] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 2: comm syz.5.1594: lblock 2 mapped to illegal pblock 2 (length 1)
[  106.629562][ T8907] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1594: lblock 0 mapped to illegal pblock 48 (length 1)
[  106.645839][ T8907] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1594: Failed to acquire dquot type 0
[  106.660192][ T8907] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  106.689961][ T8907] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.1594: mark_inode_dirty error
[  106.708417][ T8907] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  106.738165][ T8907] EXT4-fs (loop5): 1 orphan inode deleted
[  106.744872][ T8907] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.758494][ T7103] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:28: lblock 1 mapped to illegal pblock 1 (length 1)
[  106.795205][ T8920] 9pnet_fd: Insufficient options for proto=fd
[  106.803833][ T7103] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:28: Failed to release dquot type 0
[  106.831857][ T8907] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1594: lblock 0 mapped to illegal pblock 48 (length 1)
[  106.911867][ T7598] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.938447][ T8933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  106.947428][ T8933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  106.957833][ T8933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  107.054130][ T8949] 9pnet_fd: Insufficient options for proto=fd
[  107.067971][ T8951] loop2: detected capacity change from 0 to 512
[  107.085682][ T8951] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  107.097185][ T8945] loop5: detected capacity change from 0 to 1024
[  107.099150][ T8951] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  107.128647][ T8945] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  107.139597][ T8945] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  107.156811][ T8945] JBD2: no valid journal superblock found
[  107.162620][ T8945] EXT4-fs (loop5): Could not load journal inode
[  107.176587][ T8945] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1607'.
[  107.349936][ T8992] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1619'.
[  107.358914][ T8992] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1619'.
[  107.389567][ T8996] loop5: detected capacity change from 0 to 128
[  107.422034][ T8996] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  107.430015][ T8996] FAT-fs (loop5): Filesystem has been set read-only
[  107.436997][ T8996] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  107.444921][ T8996] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  107.460583][ T9008] loop1: detected capacity change from 0 to 1024
[  107.467273][ T9008] EXT4-fs: Ignoring removed bh option
[  107.475519][ T9008] EXT4-fs: inline encryption not supported
[  107.482171][ T9008] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.534309][ T9008] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  107.544704][ T9008] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.1622: lblock 2 mapped to illegal pblock 2 (length 1)
[  107.560598][ T8975] tipc: Can't bind to reserved service type 0
[  107.582394][ T9008] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.1622: lblock 0 mapped to illegal pblock 48 (length 1)
[  107.601094][ T9008] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1622: Failed to acquire dquot type 0
[  107.612560][ T9008] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  107.639713][ T9008] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1622: mark_inode_dirty error
[  107.659471][ T9008] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  107.681529][ T9008] EXT4-fs (loop1): 1 orphan inode deleted
[  107.703441][ T7103] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:28: lblock 1 mapped to illegal pblock 1 (length 1)
[  107.724218][ T9008] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.737039][ T7103] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:28: Failed to release dquot type 0
[  107.745112][ T9027] loop2: detected capacity change from 0 to 1024
[  107.760134][ T9028] x_tables: ip6_tables: mh match: only valid for protocol 135
[  107.784119][ T9008] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.1622: lblock 0 mapped to illegal pblock 48 (length 1)
[  107.808780][ T9033] pim6reg1: entered promiscuous mode
[  107.814132][ T9033] pim6reg1: entered allmulticast mode
[  107.839948][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.942249][ T9049] syzkaller0: entered promiscuous mode
[  107.947834][ T9049] syzkaller0: entered allmulticast mode
[  107.948009][ T9050] loop2: detected capacity change from 0 to 512
[  107.981759][ T9050] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  108.001139][ T9050] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  108.001214][ T9049] SELinux:  policydb version 320 does not match my version range 15-34
[  108.023842][ T9049] SELinux: failed to load policy
[  108.028419][ T9064] SELinux:  Context u:r:untrusted_app:s0:c512,c768 is not valid (left unmapped).
[  108.219257][ T9090] x_tables: ip6_tables: mh match: only valid for protocol 135
[  108.305130][ T9097] pim6reg1: entered promiscuous mode
[  108.310519][ T9097] pim6reg1: entered allmulticast mode
[  108.367101][ T9113] loop5: detected capacity change from 0 to 512
[  108.388500][ T9113] ext4: Bad value for 'mb_optimize_scan'
[  108.489750][ T9128] loop1: detected capacity change from 0 to 8192
[  108.524614][ T9135] loop5: detected capacity change from 0 to 512
[  108.571872][ T9135] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  108.628615][ T9135] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  108.732072][ T9142] vxcan1 speed is unknown, defaulting to 1000
[  109.450386][ T9202] vxcan1 speed is unknown, defaulting to 1000
[  109.472602][ T9217] netlink: 'syz.2.1658': attribute type 13 has an invalid length.
[  109.480527][ T9217] netlink: 'syz.2.1658': attribute type 17 has an invalid length.
[  109.509343][ T9219] x_tables: ip6_tables: mh match: only valid for protocol 135
[  109.509983][ T9210] loop5: detected capacity change from 0 to 512
[  109.537780][ T9217] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  109.558779][ T9210] ext4: Bad value for 'mb_optimize_scan'
[  109.630990][ T9224] vxcan1 speed is unknown, defaulting to 1000
[  109.845467][ T9281] loop2: detected capacity change from 0 to 512
[  109.857444][ T9281] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  109.868478][ T9281] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  109.878374][ T9266] vxcan1 speed is unknown, defaulting to 1000
[  110.480444][ T9350] loop1: detected capacity change from 0 to 512
[  110.487986][ T9350] ext4: Bad value for 'mb_optimize_scan'
[  110.497916][ T9350] __nla_validate_parse: 8 callbacks suppressed
[  110.497926][ T9350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1677'.
[  110.576592][ T9364] vxcan1 speed is unknown, defaulting to 1000
[  110.621530][ T9375] netlink: 'syz.2.1680': attribute type 13 has an invalid length.
[  110.629634][ T9375] netlink: 'syz.2.1680': attribute type 17 has an invalid length.
[  110.667508][ T9375] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  110.723986][ T9380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1684'.
[  110.735669][ T9384] loop5: detected capacity change from 0 to 2048
[  110.865786][ T9411] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1688'.
[  110.887190][ T9404] loop5: detected capacity change from 0 to 1024
[  110.905507][ T9404] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  110.916493][ T9404] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  110.962630][ T9413] loop2: detected capacity change from 0 to 8192
[  110.976053][ T9404] JBD2: no valid journal superblock found
[  110.982031][ T9404] EXT4-fs (loop5): Could not load journal inode
[  111.025463][ T9404] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1687'.
[  111.116129][ T9437] loop9: detected capacity change from 0 to 7
[  111.129345][ T9438] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1696'.
[  111.148413][ T9437] Buffer I/O error on dev loop9, logical block 0, async page read
[  111.156265][ T9437] Buffer I/O error on dev loop9, logical block 0, async page read
[  111.164132][ T9437]  loop9: unable to read partition table
[  111.175771][ T9437] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  111.175771][ T9437] 
) failed (rc=-5)
[  111.200380][ T9437] loop5: detected capacity change from 0 to 1024
[  111.242339][ T9437] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.256388][ T9447] vxcan1 speed is unknown, defaulting to 1000
[  111.274502][ T9457] netlink: 'syz.3.1699': attribute type 13 has an invalid length.
[  111.282447][ T9457] netlink: 'syz.3.1699': attribute type 17 has an invalid length.
[  111.369114][   T29] kauditd_printk_skb: 644 callbacks suppressed
[  111.369129][   T29] audit: type=1400 audit(1752598280.864:4744): avc:  denied  { unlink } for  pid=7598 comm="syz-executor" name="file1" dev="loop5" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  111.403957][ T9457] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  111.436847][ T9440] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.671263][ T7104] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.730706][ T7104] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.780818][ T7104] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.850464][ T7104] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.910078][ T7104] bridge_slave_1: left allmulticast mode
[  111.915820][ T7104] bridge_slave_1: left promiscuous mode
[  111.921509][ T7104] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.929335][ T7104] bridge_slave_0: left allmulticast mode
[  111.934964][ T7104] bridge_slave_0: left promiscuous mode
[  111.940662][ T7104] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.977564][ T7104] dvmrp1 (unregistering): left allmulticast mode
[  112.049908][ T7104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.059606][ T7104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.069033][ T7104] bond0 (unregistering): Released all slaves
[  112.125161][ T7104] hsr_slave_0: left promiscuous mode
[  112.130853][ T7104] hsr_slave_1: left promiscuous mode
[  112.136470][ T7104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.143899][ T7104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.152835][ T7104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.160358][ T7104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.170143][ T7104] veth1_macvtap: left promiscuous mode
[  112.175601][ T7104] veth0_macvtap: left promiscuous mode
[  112.181273][ T7104] veth1_vlan: left promiscuous mode
[  112.186465][ T7104] veth0_vlan: left promiscuous mode
[  112.239520][ T7104] team0 (unregistering): Port device team_slave_1 removed
[  112.248976][ T7104] team0 (unregistering): Port device team_slave_0 removed
[  112.774632][ T9504] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1704'.
[  112.777379][ T9507] netlink: 'syz.4.1706': attribute type 27 has an invalid length.
[  112.868728][   T29] audit: type=1400 audit(1752598282.354:4745): avc:  denied  { mounton } for  pid=9513 comm="syz.4.1709" path="/file0" dev="rootfs" ino=22021 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  112.929923][ T9515] vxcan1 speed is unknown, defaulting to 1000
[  112.978943][   T29] audit: type=1326 audit(1752598282.474:4746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.002491][   T29] audit: type=1326 audit(1752598282.474:4747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.027295][   T29] audit: type=1326 audit(1752598282.514:4748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.050828][   T29] audit: type=1326 audit(1752598282.514:4749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.074288][   T29] audit: type=1326 audit(1752598282.514:4750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.097779][   T29] audit: type=1326 audit(1752598282.514:4751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.121175][   T29] audit: type=1326 audit(1752598282.514:4752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.144675][   T29] audit: type=1326 audit(1752598282.514:4753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9535 comm="syz.2.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  113.172255][ T9536] loop2: detected capacity change from 0 to 1024
[  113.181746][ T9636] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1716'.
[  113.191549][ T9515] chnl_net:caif_netlink_parms(): no params data found
[  113.204065][ T9536] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  113.215034][ T9536] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  113.239410][ T9536] JBD2: no valid journal superblock found
[  113.245176][ T9536] EXT4-fs (loop2): Could not load journal inode
[  113.259990][ T9536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1713'.
[  113.287982][ T9515] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.295186][ T9515] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.304825][ T9515] bridge_slave_0: entered allmulticast mode
[  113.311337][ T9515] bridge_slave_0: entered promiscuous mode
[  113.319479][ T9515] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.326561][ T9515] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.334061][ T9515] bridge_slave_1: entered allmulticast mode
[  113.350431][ T9515] bridge_slave_1: entered promiscuous mode
[  113.376975][ T9515] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.387946][ T9515] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.415617][ T9515] team0: Port device team_slave_0 added
[  113.421656][ T9717] loop2: detected capacity change from 0 to 512
[  113.423854][ T9515] team0: Port device team_slave_1 added
[  113.429517][ T9717] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  113.444248][ T9717] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  113.461724][ T9515] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.468783][ T9515] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.494963][ T9515] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  113.506703][ T9515] batman_adv: batadv0: Adding interface: batadv_slave_1
[  113.513750][ T9515] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.539934][ T9515] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.586817][ T9515] hsr_slave_0: entered promiscuous mode
[  113.591683][ T9829] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1727'.
[  113.595381][ T9515] hsr_slave_1: entered promiscuous mode
[  113.623522][ T9515] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  113.631841][ T9515] Cannot create hsr debugfs directory
[  113.644929][ T9835] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1730'.
[  113.710622][ T9842] netlink: 'syz.4.1734': attribute type 1 has an invalid length.
[  113.736951][ T9842] 8021q: adding VLAN 0 to HW filter on device bond3
[  113.977617][ T9980] loop2: detected capacity change from 0 to 128
[  113.986121][ T9980] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  113.994073][ T9980] FAT-fs (loop2): Filesystem has been set read-only
[  114.001380][ T9980] bio_check_eod: 23289 callbacks suppressed
[  114.001394][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.001394][ T9980] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  114.021262][ T9980] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  114.029245][ T9980] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  114.040400][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.040400][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.054722][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.054722][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.068829][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.068829][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.082429][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.082429][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.096231][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.096231][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.109898][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.109898][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.123379][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.123379][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.136794][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.136794][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.154343][ T9988] loop1: detected capacity change from 0 to 512
[  114.161232][ T9988] ext4: Bad value for 'mb_optimize_scan'
[  114.166965][ T9980] syz.2.1742: attempt to access beyond end of device
[  114.166965][ T9980] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  114.252403][ T9515] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  114.289947][ T9990] vxcan1 speed is unknown, defaulting to 1000
[  114.364376][ T9515] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  114.399075][ T9515] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  114.409682][ T9515] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  114.424870][T10032] loop1: detected capacity change from 0 to 512
[  114.432453][T10032] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  114.445989][T10032] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  114.454157][T10032] EXT4-fs (loop1): orphan cleanup on readonly fs
[  114.461896][T10032] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 33619980: comm syz.1.1745: invalid block
[  114.474038][T10032] EXT4-fs (loop1): Remounting filesystem read-only
[  114.486180][T10032] EXT4-fs (loop1): 1 truncate cleaned up
[  114.494472][T10032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  114.499763][ T9515] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.510091][T10032] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  114.551333][ T9515] 8021q: adding VLAN 0 to HW filter on device team0
[  114.572334][ T7105] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.579436][ T7105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.605481][ T7105] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.612589][ T7105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.677921][ T9515] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.765331][ T9515] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.919174][T10091] 9pnet_fd: Insufficient options for proto=fd
[  114.981616][ T9515] veth0_vlan: entered promiscuous mode
[  115.005797][ T9515] veth1_vlan: entered promiscuous mode
[  115.018910][T10081] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.026527][T10081] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.037538][T10081] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.045066][T10081] batman_adv: batadv0: Removing interface: batadv_slave_1
[  115.072767][ T9515] veth0_macvtap: entered promiscuous mode
[  115.093547][T10088] loop2: detected capacity change from 0 to 1024
[  115.101313][T10088] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  115.112318][T10088] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  115.122677][T10088] JBD2: no valid journal superblock found
[  115.128561][T10088] EXT4-fs (loop2): Could not load journal inode
[  115.159921][ T9515] veth1_macvtap: entered promiscuous mode
[  115.181044][ T9515] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.209199][ T9515] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.217464][ T9515] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.226308][ T9515] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.235045][ T9515] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.243758][ T9515] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.410836][T10137] loop5: detected capacity change from 0 to 512
[  115.427862][T10137] ext4: Bad value for 'mb_optimize_scan'
[  115.454180][T10146] loop2: detected capacity change from 0 to 512
[  115.462687][T10146] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.486156][T10146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.505948][T10146] ext4 filesystem being mounted at /423/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.512159][T10149] __nla_validate_parse: 11 callbacks suppressed
[  115.512173][T10149] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1767'.
[  115.559733][T10149] loop1: detected capacity change from 0 to 1024
[  115.561125][T10163] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  115.576523][T10163] SELinux: failed to load policy
[  115.600119][T10149] loop1: detected capacity change from 0 to 2048
[  115.608688][T10171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1768'.
[  115.639843][T10149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  115.808870][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  115.832025][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.841956][T10195] loop1: detected capacity change from 0 to 512
[  115.863907][T10195] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.876960][T10195] ext4 filesystem being mounted at /319/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.894729][T10195] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.1774: iget: bad i_size value: 2533274857506816
[  115.915589][T10195] ext4: Unknown parameter './file0/../file0'
[  115.933085][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.063119][T10219] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1776'.
[  116.134815][T10227] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1781'.
[  116.267235][T10244] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  116.293923][T10244] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  116.321427][T10239] loop1: detected capacity change from 0 to 8192
[  116.484402][T10256] loop5: detected capacity change from 0 to 512
[  116.515893][T10256] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  116.535428][T10256] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  116.572003][T10267] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1795'.
[  116.587000][T10267] 8021q: adding VLAN 0 to HW filter on device bond1
[  116.672651][T10313] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  116.841008][T10329] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1798'.
[  117.005268][T10334] vxcan1 speed is unknown, defaulting to 1000
[  117.068287][   T29] kauditd_printk_skb: 596 callbacks suppressed
[  117.068300][   T29] audit: type=1400 audit(1752598286.564:5350): avc:  denied  { setopt } for  pid=10345 comm="syz.3.1805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  117.322738][T10383] pim6reg1: entered promiscuous mode
[  117.328181][T10383] pim6reg1: entered allmulticast mode
[  117.493079][   T29] audit: type=1326 audit(1752598286.984:5351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.532253][T10392] loop2: detected capacity change from 0 to 2048
[  117.557477][T10392] EXT4-fs: Ignoring removed mblk_io_submit option
[  117.594826][T10392] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.622205][   T29] audit: type=1326 audit(1752598287.014:5352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.645978][   T29] audit: type=1326 audit(1752598287.014:5353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.669492][   T29] audit: type=1326 audit(1752598287.014:5354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.692948][   T29] audit: type=1326 audit(1752598287.014:5355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.716460][   T29] audit: type=1326 audit(1752598287.014:5356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.739931][   T29] audit: type=1326 audit(1752598287.014:5357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.763459][   T29] audit: type=1326 audit(1752598287.014:5358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.786966][   T29] audit: type=1326 audit(1752598287.014:5359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.4.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f837ffae929 code=0x7ffc0000
[  117.818232][T10392] FAULT_INJECTION: forcing a failure.
[  117.818232][T10392] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.831357][T10392] CPU: 0 UID: 0 PID: 10392 Comm: syz.2.1812 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  117.831454][T10392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.831465][T10392] Call Trace:
[  117.831472][T10392]  <TASK>
[  117.831480][T10392]  __dump_stack+0x1d/0x30
[  117.831503][T10392]  dump_stack_lvl+0xe8/0x140
[  117.831522][T10392]  dump_stack+0x15/0x1b
[  117.831536][T10392]  should_fail_ex+0x265/0x280
[  117.831626][T10392]  should_fail+0xb/0x20
[  117.831697][T10392]  should_fail_usercopy+0x1a/0x20
[  117.831722][T10392]  strncpy_from_user+0x25/0x230
[  117.831806][T10392]  ? kmem_cache_alloc_noprof+0x186/0x310
[  117.831833][T10392]  ? getname_flags+0x80/0x3b0
[  117.831852][T10392]  getname_flags+0xae/0x3b0
[  117.831943][T10392]  user_path_at+0x28/0x130
[  117.831964][T10392]  do_faccessat+0x380/0x800
[  117.832065][T10392]  __x64_sys_faccessat+0x41/0x50
[  117.832086][T10392]  x64_sys_call+0x2802/0x2fb0
[  117.832163][T10392]  do_syscall_64+0xd2/0x200
[  117.832181][T10392]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.832259][T10392]  ? clear_bhb_loop+0x40/0x90
[  117.832299][T10392]  ? clear_bhb_loop+0x40/0x90
[  117.832322][T10392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.832344][T10392] RIP: 0033:0x7f9fb0f6e929
[  117.832357][T10392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.832375][T10392] RSP: 002b:00007f9faf5d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000010d
[  117.832474][T10392] RAX: ffffffffffffffda RBX: 00007f9fb1195fa0 RCX: 00007f9fb0f6e929
[  117.832487][T10392] RDX: 0000000000000004 RSI: 0000200000000000 RDI: 0000000000000005
[  117.832501][T10392] RBP: 00007f9faf5d7090 R08: 0000000000000000 R09: 0000000000000000
[  117.832511][T10392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.832569][T10392] R13: 0000000000000000 R14: 00007f9fb1195fa0 R15: 00007ffd2949ff68
[  117.832589][T10392]  </TASK>
[  118.091113][T10406] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.098663][T10406] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.106756][T10406] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.114220][T10406] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.182488][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.282739][T10422] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  118.316959][T10419] loop1: detected capacity change from 0 to 512
[  118.324745][T10419] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  118.335594][T10419] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  118.374667][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1816'.
[  118.516208][T10453] vxcan1 speed is unknown, defaulting to 1000
[  119.041128][T10494] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1833'.
[  119.216528][T10504] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  119.232334][T10504] syzkaller0: entered promiscuous mode
[  119.237888][T10504] syzkaller0: entered allmulticast mode
[  119.390457][T10504] tipc: Resetting bearer <eth:syzkaller0>
[  119.400190][T10503] tipc: Resetting bearer <eth:syzkaller0>
[  119.408964][T10503] tipc: Disabling bearer <eth:syzkaller0>
[  119.433815][T10515] vxcan1 speed is unknown, defaulting to 1000
[  119.466134][T10521] loop2: detected capacity change from 0 to 128
[  119.477064][T10521] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  119.485031][T10521] FAT-fs (loop2): Filesystem has been set read-only
[  119.494706][T10521] bio_check_eod: 19201 callbacks suppressed
[  119.494718][T10521] syz.2.1840: attempt to access beyond end of device
[  119.494718][T10521] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  119.546721][T10521] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  119.554692][T10521] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  119.571586][T10521] syz.2.1840: attempt to access beyond end of device
[  119.571586][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.585003][T10521] syz.2.1840: attempt to access beyond end of device
[  119.585003][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.598620][T10521] syz.2.1840: attempt to access beyond end of device
[  119.598620][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.612272][T10521] syz.2.1840: attempt to access beyond end of device
[  119.612272][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.625656][T10521] syz.2.1840: attempt to access beyond end of device
[  119.625656][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.639133][T10521] syz.2.1840: attempt to access beyond end of device
[  119.639133][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.652554][T10521] syz.2.1840: attempt to access beyond end of device
[  119.652554][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.689983][T10521] syz.2.1840: attempt to access beyond end of device
[  119.689983][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.721494][T10521] syz.2.1840: attempt to access beyond end of device
[  119.721494][T10521] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  119.803856][T10557] lo speed is unknown, defaulting to 1000
[  119.810540][T10557] lo speed is unknown, defaulting to 1000
[  119.819474][T10557] lo speed is unknown, defaulting to 1000
[  119.827227][T10557] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  119.840110][T10557] lo speed is unknown, defaulting to 1000
[  119.846403][T10557] lo speed is unknown, defaulting to 1000
[  119.853193][T10557] lo speed is unknown, defaulting to 1000
[  119.861815][T10557] lo speed is unknown, defaulting to 1000
[  119.867908][T10557] lo speed is unknown, defaulting to 1000
[  119.874213][T10557] lo speed is unknown, defaulting to 1000
[  119.930538][T10567] tipc: Started in network mode
[  119.935449][T10567] tipc: Node identity 367dd6ece90e, cluster identity 4711
[  119.942650][T10567] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  119.955407][T10567] syzkaller0: entered promiscuous mode
[  119.961015][T10567] syzkaller0: entered allmulticast mode
[  119.974536][T10567] tipc: Resetting bearer <eth:syzkaller0>
[  119.981117][T10566] tipc: Resetting bearer <eth:syzkaller0>
[  119.990690][T10566] tipc: Disabling bearer <eth:syzkaller0>
[  120.059085][T10575] loop5: detected capacity change from 0 to 1024
[  120.066212][T10575] EXT4-fs: Ignoring removed bh option
[  120.072591][T10575] EXT4-fs: inline encryption not supported
[  120.079524][T10575] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  120.158352][T10575] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  120.183559][T10581] netlink: 'syz.3.1851': attribute type 10 has an invalid length.
[  120.199117][T10575] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 2: comm syz.5.1849: lblock 2 mapped to illegal pblock 2 (length 1)
[  120.239690][T10575] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1849: lblock 0 mapped to illegal pblock 48 (length 1)
[  120.291327][T10575] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1849: Failed to acquire dquot type 0
[  120.315412][T10575] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  120.327039][T10575] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.1849: mark_inode_dirty error
[  120.347027][T10575] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  120.357592][T10575] EXT4-fs (loop5): 1 orphan inode deleted
[  120.365130][T10575] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.379660][ T7102] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:27: lblock 1 mapped to illegal pblock 1 (length 1)
[  120.399293][ T7102] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 0
[  120.425416][T10575] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1849: lblock 0 mapped to illegal pblock 48 (length 1)
[  120.467624][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.583972][T10607] loop1: detected capacity change from 0 to 8192
[  120.599276][T10616] __nla_validate_parse: 3 callbacks suppressed
[  120.599290][T10616] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1861'.
[  120.630130][T10616] loop5: detected capacity change from 0 to 1024
[  120.653089][T10616] loop5: detected capacity change from 0 to 2048
[  120.670139][T10616] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  120.757098][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  120.932966][T10640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1863'.
[  120.941920][T10640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1863'.
[  120.951767][T10640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1863'.
[  121.010648][T10647] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1864'.
[  121.037209][T10650] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1867'.
[  121.068343][T10652] loop5: detected capacity change from 0 to 1024
[  121.075875][T10652] EXT4-fs: Ignoring removed bh option
[  121.081562][T10652] EXT4-fs: inline encryption not supported
[  121.088199][T10652] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  121.107473][T10652] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  121.184064][T10652] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 2: comm syz.5.1868: lblock 2 mapped to illegal pblock 2 (length 1)
[  121.209695][T10652] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1868: lblock 0 mapped to illegal pblock 48 (length 1)
[  121.227527][T10652] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1868: Failed to acquire dquot type 0
[  121.248501][T10652] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  121.268746][T10652] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.1868: mark_inode_dirty error
[  121.280647][T10652] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  121.291023][T10652] EXT4-fs (loop5): 1 orphan inode deleted
[  121.297228][T10652] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.309936][ T7105] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:30: lblock 1 mapped to illegal pblock 1 (length 1)
[  121.328181][ T7105] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 0
[  121.350090][T10662] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1869'.
[  121.369022][T10652] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 48: comm syz.5.1868: lblock 0 mapped to illegal pblock 48 (length 1)
[  121.411784][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.432845][T10665] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  121.483590][T10680] loop5: detected capacity change from 0 to 128
[  121.491797][T10680] FAT-fs (loop5): Directory bread(block 162) failed
[  121.498677][T10680] FAT-fs (loop5): Directory bread(block 163) failed
[  121.505410][T10680] FAT-fs (loop5): Directory bread(block 164) failed
[  121.512562][T10680] FAT-fs (loop5): Directory bread(block 165) failed
[  121.525937][T10680] FAT-fs (loop5): Directory bread(block 166) failed
[  121.534620][T10680] FAT-fs (loop5): Directory bread(block 167) failed
[  121.541374][T10680] FAT-fs (loop5): Directory bread(block 168) failed
[  121.550983][T10680] FAT-fs (loop5): Directory bread(block 169) failed
[  121.584145][T10680] vxcan1 speed is unknown, defaulting to 1000
[  121.595139][T10689] 9pnet_fd: p9_fd_create_tcp (10689): problem connecting socket to 127.0.0.1
[  121.636076][T10680] lo speed is unknown, defaulting to 1000
[  121.683188][T10715] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  121.690376][T10715] syzkaller0: entered promiscuous mode
[  121.695862][T10715] syzkaller0: entered allmulticast mode
[  121.705138][T10715] tipc: Resetting bearer <eth:syzkaller0>
[  121.711410][T10714] tipc: Resetting bearer <eth:syzkaller0>
[  121.719130][T10714] tipc: Disabling bearer <eth:syzkaller0>
[  121.944019][T10733] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1879'.
[  122.040282][T10739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1881'.
[  122.182171][T10751] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1880'.
[  122.241242][T10665] tipc: Disabling bearer <eth:syzkaller0>
[  122.264979][T10758] loop5: detected capacity change from 0 to 512
[  122.272336][T10758] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2)!
[  122.282489][T10758] EXT4-fs (loop5): group descriptors corrupted!
[  122.299138][   T29] kauditd_printk_skb: 271 callbacks suppressed
[  122.299154][   T29] audit: type=1326 audit(1752598291.794:5623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.330880][   T29] audit: type=1326 audit(1752598291.794:5624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.354561][   T29] audit: type=1326 audit(1752598291.794:5625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.378350][   T29] audit: type=1326 audit(1752598291.794:5626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.402092][   T29] audit: type=1326 audit(1752598291.794:5627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.425664][   T29] audit: type=1326 audit(1752598291.794:5628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.449323][   T29] audit: type=1326 audit(1752598291.794:5629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.472895][   T29] audit: type=1326 audit(1752598291.794:5630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.496466][   T29] audit: type=1326 audit(1752598291.794:5631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.520123][   T29] audit: type=1326 audit(1752598291.794:5632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  122.630679][T10775] loop1: detected capacity change from 0 to 1024
[  122.637314][T10773] loop2: detected capacity change from 0 to 8192
[  122.697090][T10775] loop1: detected capacity change from 0 to 2048
[  122.730197][T10775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  122.801297][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  122.952517][T10748] 9pnet_fd: p9_fd_create_tcp (10748): problem connecting socket to 127.0.0.1
[  123.030925][T10819] loop1: detected capacity change from 0 to 1024
[  123.060292][T10819] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.088817][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.519794][T10848] loop2: detected capacity change from 0 to 256
[  123.527672][T10848] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  123.731545][T10857] 9pnet_fd: p9_fd_create_tcp (10857): problem connecting socket to 127.0.0.1
[  124.212333][T10918] loop1: detected capacity change from 0 to 1024
[  124.220416][T10918] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  124.231401][T10918] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  124.241699][T10918] JBD2: no valid journal superblock found
[  124.247490][T10918] EXT4-fs (loop1): Could not load journal inode
[  124.300750][T10930] loop1: detected capacity change from 0 to 512
[  124.307432][T10930] ext4: Bad value for 'mb_optimize_scan'
[  124.793619][T10968] vxcan1 speed is unknown, defaulting to 1000
[  124.888904][T10968] lo speed is unknown, defaulting to 1000
[  125.153772][T11005] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  125.160986][T11005] syzkaller0: entered promiscuous mode
[  125.166638][T11005] syzkaller0: entered allmulticast mode
[  125.207656][T11005] tipc: Resetting bearer <eth:syzkaller0>
[  125.218933][T11004] tipc: Resetting bearer <eth:syzkaller0>
[  125.234842][T11004] tipc: Disabling bearer <eth:syzkaller0>
[  125.346542][T11023] 9pnet: Could not find request transport: f0x000000000000000a
[  125.381887][T11018] loop5: detected capacity change from 0 to 1024
[  125.385493][T11025] 9pnet_fd: Insufficient options for proto=fd
[  125.399958][T11018] EXT4-fs: Ignoring removed nobh option
[  125.405622][T11018] EXT4-fs: inline encryption not supported
[  125.435254][T11013] x_tables: duplicate underflow at hook 1
[  125.498902][T11018] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.517579][T11036] pim6reg1: entered promiscuous mode
[  125.522956][T11036] pim6reg1: entered allmulticast mode
[  125.530225][T11018] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.1957: Allocating blocks 385-513 which overlap fs metadata
[  125.590434][T11026] EXT4-fs (loop5): pa ffff8881050878c0: logic 16, phys. 129, len 24
[  125.598508][T11026] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  125.662539][T11026] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  125.674982][T11026] EXT4-fs (loop5): This should not happen!! Data will be lost
[  125.674982][T11026] 
[  125.684853][T11026] EXT4-fs (loop5): Total free blocks count 0
[  125.691009][T11026] EXT4-fs (loop5): Free/Dirty block details
[  125.696914][T11026] EXT4-fs (loop5): free_blocks=128
[  125.702114][T11026] EXT4-fs (loop5): dirty_blocks=0
[  125.707155][T11026] EXT4-fs (loop5): Block reservation details
[  125.713360][T11026] EXT4-fs (loop5): i_reserved_data_blocks=0
[  125.714445][T11050] __nla_validate_parse: 20 callbacks suppressed
[  125.714458][T11050] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1964'.
[  125.758230][T11050] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.766057][T11050] batman_adv: batadv0: Removing interface: batadv_slave_0
[  125.796951][T11050] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.804449][T11050] batman_adv: batadv0: Removing interface: batadv_slave_1
[  125.847651][T11066] loop1: detected capacity change from 0 to 8192
[  126.003253][T11090] loop5: detected capacity change from 0 to 512
[  126.021768][T11094] loop2: detected capacity change from 0 to 512
[  126.029528][T11090] EXT4-fs: Ignoring removed mblk_io_submit option
[  126.036919][T11090] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  126.054080][T11094] ext4: Bad value for 'mb_optimize_scan'
[  126.074060][T11093] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1975'.
[  126.086733][T11090] EXT4-fs (loop5): 1 truncate cleaned up
[  126.098516][T11090] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.353892][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.467511][T11129] loop5: detected capacity change from 0 to 512
[  126.474291][T11129] EXT4-fs: Ignoring removed bh option
[  126.480180][T11129] EXT4-fs: Mount option(s) incompatible with ext3
[  126.504185][T11133] vxcan1 speed is unknown, defaulting to 1000
[  126.542751][T11137] netlink: 16278 bytes leftover after parsing attributes in process `syz.5.1982'.
[  126.579789][T11137] loop5: detected capacity change from 0 to 1024
[  126.595622][T11133] lo speed is unknown, defaulting to 1000
[  126.602799][T11137] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  126.613770][T11137] EXT4-fs (loop5): group descriptors corrupted!
[  126.660005][T11137] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  126.784994][T11170] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  126.805802][T11170] ref_ctr_offset mismatch. inode: 0x844 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  126.810268][T11172] loop5: detected capacity change from 0 to 256
[  126.823962][T11170] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  126.873186][T11178] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  126.883652][T11176] tipc: Resetting bearer <eth:syzkaller0>
[  126.905780][T11176] tipc: Disabling bearer <eth:syzkaller0>
[  126.927217][T11182] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1989'.
[  126.972943][T11190] loop5: detected capacity change from 0 to 512
[  126.980724][T11190] ext4: Bad value for 'mb_optimize_scan'
[  127.102357][T11217] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  127.129974][T11219] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  127.159414][T11216] loop1: detected capacity change from 0 to 1024
[  127.169481][T11216] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  127.180465][T11216] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  127.197860][T11216] JBD2: no valid journal superblock found
[  127.203713][T11216] EXT4-fs (loop1): Could not load journal inode
[  127.212590][T11219] ref_ctr_offset mismatch. inode: 0x865 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  127.224989][T11219] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  127.257178][T11216] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1997'.
[  127.342738][   T29] kauditd_printk_skb: 557 callbacks suppressed
[  127.342754][   T29] audit: type=1326 audit(1752598296.834:6190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.386897][T11240] 9pnet_fd: Insufficient options for proto=fd
[  127.394664][   T29] audit: type=1326 audit(1752598296.864:6191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.418354][   T29] audit: type=1326 audit(1752598296.864:6192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.441880][   T29] audit: type=1326 audit(1752598296.864:6193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.465457][   T29] audit: type=1326 audit(1752598296.874:6194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.488964][   T29] audit: type=1326 audit(1752598296.874:6195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.512579][   T29] audit: type=1326 audit(1752598296.874:6196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.536150][   T29] audit: type=1326 audit(1752598296.874:6197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.559815][   T29] audit: type=1326 audit(1752598296.874:6198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.561372][T11255] netlink: 'syz.5.2004': attribute type 13 has an invalid length.
[  127.583409][   T29] audit: type=1326 audit(1752598296.874:6199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11239 comm="syz.2.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb0f6e929 code=0x7ffc0000
[  127.639130][T11256] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2005'.
[  127.697389][T11255] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.704661][T11255] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.777498][T11255] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.786703][T11255] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.795910][T11255] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.805172][T11255] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.851197][T11279] Falling back ldisc for ptm0.
[  127.871540][T11280] loop5: detected capacity change from 0 to 1024
[  127.939724][T11298] loop2: detected capacity change from 0 to 512
[  127.947477][T11298] ext4: Bad value for 'mb_optimize_scan'
[  127.954961][T11302] ref_ctr_offset mismatch. inode: 0x106 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  128.419339][T11315] 9pnet_fd: Insufficient options for proto=fd
[  128.894888][T11348] vxcan1 speed is unknown, defaulting to 1000
[  129.019586][T11348] lo speed is unknown, defaulting to 1000
[  129.344860][T11373] loop2: detected capacity change from 0 to 1024
[  129.373843][T11373] EXT4-fs: Ignoring removed bh option
[  129.386949][T11373] EXT4-fs: inline encryption not supported
[  129.399297][T11373] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  129.459054][T11373] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  129.478753][T11373] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.2029: lblock 2 mapped to illegal pblock 2 (length 1)
[  129.518907][T11373] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.2029: lblock 0 mapped to illegal pblock 48 (length 1)
[  129.600085][T11373] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2029: Failed to acquire dquot type 0
[  129.620617][T11383] 9pnet_fd: Insufficient options for proto=fd
[  129.626727][T11373] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  129.650199][T11373] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.2029: mark_inode_dirty error
[  129.678711][T11373] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  129.698952][T11373] EXT4-fs (loop2): 1 orphan inode deleted
[  129.707312][T11373] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.720647][ T7101] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:26: lblock 1 mapped to illegal pblock 1 (length 1)
[  129.745516][ T7101] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 0
[  129.776200][T11373] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.2029: lblock 0 mapped to illegal pblock 48 (length 1)
[  129.858654][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.039300][T11409] loop1: detected capacity change from 0 to 512
[  130.047371][T11409] ext4: Bad value for 'mb_optimize_scan'
[  130.054758][T11405] loop2: detected capacity change from 0 to 512
[  130.069330][T11405] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  130.088579][T11405] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  130.419515][T11439] 9pnet_fd: p9_fd_create_tcp (11439): problem connecting socket to 127.0.0.1
[  130.472538][T11443] loop1: detected capacity change from 0 to 2048
[  130.520169][T11443]  loop1: p1 < > p4
[  130.524698][T11443] loop1: p4 size 8388608 extends beyond EOD, truncated
[  130.603994][T11443] loop1: detected capacity change from 0 to 512
[  130.611471][T11443] ext4: Unknown parameter 'fowner<00000000000000000000'
[  130.671487][T11461] loop1: detected capacity change from 0 to 1024
[  130.690691][T11461] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  130.701703][T11461] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  130.718914][T11461] JBD2: no valid journal superblock found
[  130.724689][T11461] EXT4-fs (loop1): Could not load journal inode
[  130.739557][T11466] __nla_validate_parse: 6 callbacks suppressed
[  130.739572][T11466] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  130.741386][T11461] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2043'.
[  130.813921][T11403] 9pnet_fd: p9_fd_create_tcp (11403): problem connecting socket to 127.0.0.1
[  130.823027][T11466] ref_ctr_offset mismatch. inode: 0x914 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  130.823585][T11471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2045'.
[  130.913032][T11475] loop1: detected capacity change from 0 to 128
[  130.967675][T11481] loop5: detected capacity change from 0 to 2048
[  131.020378][T11481] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.050208][T11488] loop1: detected capacity change from 0 to 1024
[  131.056987][T11488] EXT4-fs: Ignoring removed orlov option
[  131.064986][T11488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.074806][T11481] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  131.101930][T11481] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 17 with error 28
[  131.109535][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.114348][T11481] EXT4-fs (loop5): This should not happen!! Data will be lost
[  131.114348][T11481] 
[  131.132988][T11481] EXT4-fs (loop5): Total free blocks count 0
[  131.139032][T11481] EXT4-fs (loop5): Free/Dirty block details
[  131.145100][T11481] EXT4-fs (loop5): free_blocks=2415919104
[  131.150962][T11481] EXT4-fs (loop5): dirty_blocks=32
[  131.156265][T11481] EXT4-fs (loop5): Block reservation details
[  131.162270][T11481] EXT4-fs (loop5): i_reserved_data_blocks=2
[  131.184403][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.302555][T11510] can0: slcan on ttyS3.
[  131.337980][T11505] vxcan1 speed is unknown, defaulting to 1000
[  131.463264][T11527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2057'.
[  131.480281][T11529] loop2: detected capacity change from 0 to 1024
[  131.488290][T11529] EXT4-fs: Ignoring removed bh option
[  131.494239][T11529] EXT4-fs: inline encryption not supported
[  131.500756][T11529] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  131.501937][T11505] lo speed is unknown, defaulting to 1000
[  131.513020][T11529] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  131.542579][T11529] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.2058: lblock 2 mapped to illegal pblock 2 (length 1)
[  131.562626][T11529] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.2058: lblock 0 mapped to illegal pblock 48 (length 1)
[  131.587090][T11529] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2058: Failed to acquire dquot type 0
[  131.608840][T11529] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  131.619415][T11529] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.2058: mark_inode_dirty error
[  131.631560][T11529] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  131.674423][T11529] EXT4-fs (loop2): 1 orphan inode deleted
[  131.680960][T11529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.694654][ T7102] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:27: lblock 1 mapped to illegal pblock 1 (length 1)
[  131.723659][ T7102] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 0
[  131.746245][T11529] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.2058: lblock 0 mapped to illegal pblock 48 (length 1)
[  131.781021][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.800844][T11569] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2067'.
[  131.846214][T11574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2069'.
[  131.855277][T11574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2069'.
[  131.867117][T11574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2069'.
[  131.879785][T11574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2069'.
[  131.888744][T11574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2069'.
[  132.004668][T11589] loop2: detected capacity change from 0 to 1024
[  132.012825][T11589] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  132.023802][T11589] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  132.034802][T11589] JBD2: no valid journal superblock found
[  132.040641][T11589] EXT4-fs (loop2): Could not load journal inode
[  132.098256][T11501] can0 (unregistered): slcan off ttyS3.
[  132.135004][T11599] loop1: detected capacity change from 0 to 1024
[  132.149622][T11599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.162882][T11599] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.220535][T11607] loop5: detected capacity change from 0 to 512
[  132.227992][T11607] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  132.239036][T11607] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  132.256459][T11614] loop1: detected capacity change from 0 to 512
[  132.264327][T11614] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  132.275147][T11614] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  132.468891][   T29] kauditd_printk_skb: 720 callbacks suppressed
[  132.468908][   T29] audit: type=1400 audit(1752598301.964:6912): avc:  denied  { listen } for  pid=11671 comm="syz.3.2091" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  132.527461][T11670] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11670 comm=syz.2.2090
[  132.669524][T11701] netlink: 'syz.5.2097': attribute type 9 has an invalid length.
[  132.677296][T11701] netlink: 'syz.5.2097': attribute type 6 has an invalid length.
[  132.685163][T11701] netlink: 'syz.5.2097': attribute type 7 has an invalid length.
[  132.692957][T11701] netlink: 'syz.5.2097': attribute type 8 has an invalid length.
[  132.700784][   T29] audit: type=1326 audit(1752598302.174:6913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.724334][   T29] audit: type=1326 audit(1752598302.174:6914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.747954][   T29] audit: type=1326 audit(1752598302.174:6915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.771446][   T29] audit: type=1326 audit(1752598302.174:6916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.794973][   T29] audit: type=1326 audit(1752598302.174:6917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.818522][   T29] audit: type=1326 audit(1752598302.174:6918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.842050][   T29] audit: type=1326 audit(1752598302.174:6919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11705 comm="syz.1.2098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c00e929 code=0x7ffc0000
[  132.866014][T11584] 9pnet_fd: p9_fd_create_tcp (11584): problem connecting socket to 127.0.0.1
[  132.900544][   T29] audit: type=1326 audit(1752598302.394:6920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11717 comm="syz.5.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  132.924114][   T29] audit: type=1326 audit(1752598302.394:6921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11717 comm="syz.5.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  132.953132][T11719] netlink: 'syz.1.2100': attribute type 39 has an invalid length.
[  133.790318][T11788] ipvlan2: entered promiscuous mode
[  133.795795][T11788] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  133.803576][T11788] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  133.829344][T11787] loop1: detected capacity change from 0 to 1024
[  133.839285][T11787] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  133.850254][T11787] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  134.053030][T11787] JBD2: no valid journal superblock found
[  134.058852][T11787] EXT4-fs (loop1): Could not load journal inode
[  134.242834][T11810] loop2: detected capacity change from 0 to 512
[  134.260677][T11810] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.273551][T11810] ext4 filesystem being mounted at /499/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.286329][T11810] EXT4-fs error (device loop2): ext4_empty_dir:3075: inode #12: comm syz.2.2126: invalid size
[  134.310173][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.340053][T11816] vxcan1 speed is unknown, defaulting to 1000
[  134.482043][T11816] lo speed is unknown, defaulting to 1000
[  134.590189][T11844] loop1: detected capacity change from 0 to 128
[  134.654875][T11816] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.663669][T11816] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.672600][T11816] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.681405][T11816] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.719981][T11816] geneve2: entered promiscuous mode
[  134.725240][T11816] geneve2: entered allmulticast mode
[  134.976496][T11904] loop5: detected capacity change from 0 to 1024
[  135.056804][T11911] loop2: detected capacity change from 0 to 1024
[  135.112909][T11923] netlink: 'syz.2.2144': attribute type 9 has an invalid length.
[  135.120743][T11923] netlink: 'syz.2.2144': attribute type 6 has an invalid length.
[  135.120766][T11923] netlink: 'syz.2.2144': attribute type 7 has an invalid length.
[  135.120835][T11923] netlink: 'syz.2.2144': attribute type 8 has an invalid length.
[  135.930562][T11954] FAULT_INJECTION: forcing a failure.
[  135.930562][T11954] name failslab, interval 1, probability 0, space 0, times 0
[  135.930590][T11954] CPU: 1 UID: 0 PID: 11954 Comm: syz.2.2157 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  135.930617][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.930628][T11954] Call Trace:
[  135.930639][T11954]  <TASK>
[  135.930645][T11954]  __dump_stack+0x1d/0x30
[  135.930686][T11954]  dump_stack_lvl+0xe8/0x140
[  135.930707][T11954]  dump_stack+0x15/0x1b
[  135.930725][T11954]  should_fail_ex+0x265/0x280
[  135.930755][T11954]  should_failslab+0x8c/0xb0
[  135.930808][T11954]  kmem_cache_alloc_noprof+0x50/0x310
[  135.930852][T11954]  ? dst_alloc+0xbd/0x100
[  135.930884][T11954]  dst_alloc+0xbd/0x100
[  135.930910][T11954]  ip_route_input_rcu+0x177d/0x1d00
[  135.930960][T11954]  ip_route_input_noref+0x5f/0x90
[  135.930984][T11954]  ip_rcv_finish_core+0x315/0xb40
[  135.931011][T11954]  ? iptable_mangle_hook+0x119/0x260
[  135.931101][T11954]  ip_rcv_finish+0x100/0x1a0
[  135.931131][T11954]  ip_rcv+0x62/0x140
[  135.931184][T11954]  ? __pfx_ip_rcv_finish+0x10/0x10
[  135.931216][T11954]  ? __pfx_ip_rcv+0x10/0x10
[  135.931246][T11954]  __netif_receive_skb+0xff/0x270
[  135.931273][T11954]  ? tun_rx_batched+0xc7/0x430
[  135.931335][T11954]  netif_receive_skb+0x4b/0x2e0
[  135.931354][T11954]  ? tun_rx_batched+0xc7/0x430
[  135.931374][T11954]  tun_rx_batched+0xfc/0x430
[  135.931456][T11954]  tun_get_user+0x1e5a/0x2500
[  135.931559][T11954]  ? ref_tracker_alloc+0x1f2/0x2f0
[  135.931659][T11954]  tun_chr_write_iter+0x15e/0x210
[  135.931684][T11954]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  135.931710][T11954]  vfs_write+0x49d/0x8e0
[  135.931747][T11954]  ksys_write+0xda/0x1a0
[  135.931790][T11954]  __x64_sys_write+0x40/0x50
[  135.931867][T11954]  x64_sys_call+0x2cdd/0x2fb0
[  135.931889][T11954]  do_syscall_64+0xd2/0x200
[  135.931908][T11954]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  135.931936][T11954]  ? clear_bhb_loop+0x40/0x90
[  135.932002][T11954]  ? clear_bhb_loop+0x40/0x90
[  135.932025][T11954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.932074][T11954] RIP: 0033:0x7f9fb0f6d3df
[  135.932087][T11954] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  135.932102][T11954] RSP: 002b:00007f9faf5d7000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  135.932118][T11954] RAX: ffffffffffffffda RBX: 00007f9fb1195fa0 RCX: 00007f9fb0f6d3df
[  135.932185][T11954] RDX: 0000000000000086 RSI: 0000200000000380 RDI: 00000000000000c8
[  135.932198][T11954] RBP: 00007f9faf5d7090 R08: 0000000000000000 R09: 0000000000000000
[  135.932211][T11954] R10: 0000000000000086 R11: 0000000000000293 R12: 0000000000000001
[  135.932225][T11954] R13: 0000000000000000 R14: 00007f9fb1195fa0 R15: 00007ffd2949ff68
[  135.932245][T11954]  </TASK>
[  136.048915][T11960] __nla_validate_parse: 29 callbacks suppressed
[  136.048928][T11960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2160'.
[  136.292257][T11966] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2162'.
[  136.327696][T11973] loop1: detected capacity change from 0 to 512
[  136.334593][T11973] ext4: Bad value for 'mb_optimize_scan'
[  136.394599][T11981] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2164'.
[  136.415854][T11983] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2166'.
[  136.444116][T11985] loop5: detected capacity change from 0 to 512
[  136.471048][T11985] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.483781][T11985] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.566818][T11990] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2167'.
[  136.582815][T11990] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #18: comm syz.5.2167: corrupted inode contents
[  136.595851][T11990] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #18: comm syz.5.2167: mark_inode_dirty error
[  136.608863][T11990] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #18: comm syz.5.2167: corrupted inode contents
[  136.621498][T11990] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2991: inode #18: comm syz.5.2167: mark_inode_dirty error
[  136.635315][T11990] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2994: inode #18: comm syz.5.2167: mark inode dirty (error -117)
[  136.654149][T11990] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  136.680380][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.701414][T11998] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11998 comm=syz.1.2171
[  136.801039][T12009] vxcan1 speed is unknown, defaulting to 1000
[  136.840726][T12013] program syz.1.2172 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.915403][T12009] lo speed is unknown, defaulting to 1000
[  137.119542][T12085] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2177'.
[  137.137335][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2178'.
[  137.146293][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2178'.
[  137.171709][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2178'.
[  137.224498][T12093] loop5: detected capacity change from 0 to 512
[  137.231983][T12093] ext4: Bad value for 'mb_optimize_scan'
[  137.352809][T12104] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2179'.
[  138.146063][T12135] loop2: detected capacity change from 0 to 2048
[  138.202313][T12142] loop5: detected capacity change from 0 to 1024
[  138.239407][T12135] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.359885][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.373060][T12157] ref_ctr_offset mismatch. inode: 0x84a offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  138.385927][T12161] loop5: detected capacity change from 0 to 2048
[  138.414550][T12161] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.460697][   T29] kauditd_printk_skb: 1099 callbacks suppressed
[  138.460709][   T29] audit: type=1400 audit(1752598307.954:8021): avc:  denied  { getopt } for  pid=12172 comm="syz.3.2189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  138.576221][   T29] audit: type=1326 audit(1752598308.064:8022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.610274][   T29] audit: type=1326 audit(1752598308.094:8023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.633850][   T29] audit: type=1326 audit(1752598308.094:8024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.657399][   T29] audit: type=1326 audit(1752598308.094:8025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.680941][   T29] audit: type=1326 audit(1752598308.094:8026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.704941][   T29] audit: type=1326 audit(1752598308.094:8027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.728480][   T29] audit: type=1326 audit(1752598308.094:8028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.752247][   T29] audit: type=1326 audit(1752598308.094:8029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.775753][   T29] audit: type=1326 audit(1752598308.094:8030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12182 comm="syz.3.2192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b5c1e929 code=0x7ffc0000
[  138.825427][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.842218][T12194] 9pnet_fd: p9_fd_create_tcp (12194): problem connecting socket to 127.0.0.1
[  138.927114][T12202] loop5: detected capacity change from 0 to 512
[  138.934214][T12202] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  138.945930][T12202] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  138.981156][T12213] 9pnet_fd: Insufficient options for proto=fd
[  139.140947][T12225] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  139.356912][T12228] vxcan1 speed is unknown, defaulting to 1000
[  139.463378][T12228] lo speed is unknown, defaulting to 1000
[  139.619547][T12228] loop1: detected capacity change from 0 to 1024
[  139.626579][T12228] EXT4-fs: Ignoring removed nobh option
[  139.638335][T12228] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  139.649287][T12228] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  139.662504][T12228] JBD2: no valid journal superblock found
[  139.668333][T12228] EXT4-fs (loop1): Could not load journal inode
[  140.562790][T12279] ref_ctr_offset mismatch. inode: 0x933 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  141.049253][T12293] vxcan1 speed is unknown, defaulting to 1000
[  141.170348][T12293] lo speed is unknown, defaulting to 1000
[  141.486639][T12335] __nla_validate_parse: 13 callbacks suppressed
[  141.486655][T12335] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2220'.
[  141.539354][T12337] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2221'.
[  141.562693][T12337] batadv1: left allmulticast mode
[  141.567763][T12337] batadv1: left promiscuous mode
[  141.572945][T12337] bridge0: port 3(batadv1) entered disabled state
[  141.601884][T12337] bridge_slave_1: left allmulticast mode
[  141.607570][T12337] bridge_slave_1: left promiscuous mode
[  141.613304][T12337] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.649173][T12337] bridge_slave_0: left allmulticast mode
[  141.654897][T12337] bridge_slave_0: left promiscuous mode
[  141.660611][T12337] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.863621][T12345] netlink: 'syz.3.2222': attribute type 6 has an invalid length.
[  141.936941][T12353] vxcan1 speed is unknown, defaulting to 1000
[  142.239819][T12369] netlink: 16278 bytes leftover after parsing attributes in process `syz.3.2225'.
[  142.290469][T12366] loop2: detected capacity change from 0 to 1024
[  142.313160][T12366] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  142.324127][T12366] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  142.354243][T12353] lo speed is unknown, defaulting to 1000
[  142.392646][T12366] JBD2: no valid journal superblock found
[  142.398439][T12366] EXT4-fs (loop2): Could not load journal inode
[  142.446413][T12366] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2226'.
[  142.541461][T12386] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12386 comm=syz.5.2229
[  142.543294][T12398] 9pnet_fd: Insufficient options for proto=fd
[  142.673377][T12414] loop5: detected capacity change from 0 to 512
[  142.705791][T12414] ext4: Bad value for 'mb_optimize_scan'
[  142.784777][T12430] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2233'.
[  142.946118][T12436] loop2: detected capacity change from 0 to 512
[  142.970932][T12436] EXT4-fs: Ignoring removed bh option
[  142.982183][T12436] EXT4-fs: Mount option(s) incompatible with ext3
[  143.085939][T12444] netlink: 16278 bytes leftover after parsing attributes in process `syz.2.2238'.
[  143.127862][T12444] loop2: detected capacity change from 0 to 1024
[  143.225313][T12452] loop5: detected capacity change from 0 to 1024
[  143.234289][T12444] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  143.244276][T12452] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  143.245288][T12444] EXT4-fs (loop2): group descriptors corrupted!
[  143.256221][T12452] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  143.273146][T12452] JBD2: no valid journal superblock found
[  143.278951][T12452] EXT4-fs (loop5): Could not load journal inode
[  143.285128][T12459] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  143.301403][T12459] ref_ctr_offset mismatch. inode: 0x86f offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  143.305273][T12452] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2242'.
[  143.325833][T12459] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  143.402513][T12466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2241'.
[  143.476239][T12470] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12470 comm=syz.5.2244
[  143.526964][T12474] 9pnet_fd: p9_fd_create_tcp (12474): problem connecting socket to 127.0.0.1
[  143.620323][   T29] kauditd_printk_skb: 436 callbacks suppressed
[  143.620338][   T29] audit: type=1400 audit(1752598313.114:8467): avc:  denied  { read write } for  pid=12479 comm="syz.5.2247" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  143.650850][   T29] audit: type=1400 audit(1752598313.114:8468): avc:  denied  { open } for  pid=12479 comm="syz.5.2247" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  143.691997][T12480] loop5: detected capacity change from 0 to 512
[  143.701472][T12480] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  143.710621][   T29] audit: type=1326 audit(1752598313.174:8469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.734272][   T29] audit: type=1326 audit(1752598313.174:8470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.757762][   T29] audit: type=1326 audit(1752598313.174:8471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.781241][   T29] audit: type=1326 audit(1752598313.174:8472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.804786][   T29] audit: type=1326 audit(1752598313.174:8473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.828420][   T29] audit: type=1326 audit(1752598313.174:8474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.851976][   T29] audit: type=1326 audit(1752598313.174:8475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.875537][   T29] audit: type=1326 audit(1752598313.174:8476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12479 comm="syz.5.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f917fc4e929 code=0x7ffc0000
[  143.913227][T12478] loop2: detected capacity change from 0 to 512
[  143.921149][T12478] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  143.932055][T12478] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  143.942316][T12480] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.955994][T12480] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.052960][ T9515] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.091226][T12498] loop1: detected capacity change from 0 to 512
[  144.094734][T12517] netlink: 'syz.5.2250': attribute type 10 has an invalid length.
[  144.106940][T12498] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  144.117461][T12498] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  144.122588][T12517] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  144.147948][T12527] SELinux:  Context system_u:object_r:traceroute_exec_t:s0 is not valid (left unmapped).
[  144.167398][T12527] openvswitch: netlink: Message has 6 unknown bytes.
[  144.397149][T12565] loop1: detected capacity change from 0 to 512
[  144.404380][T12565] EXT4-fs: Ignoring removed bh option
[  144.410142][T12565] EXT4-fs: Mount option(s) incompatible with ext3
[  144.449659][T12572] ==================================================================
[  144.457779][T12572] BUG: KCSAN: data-race in __bpf_get_stackid / __bpf_get_stackid
[  144.465513][T12572] 
[  144.467831][T12572] write to 0xffff888114cd9f74 of 4 bytes by interrupt on cpu 1:
[  144.475454][T12572]  __bpf_get_stackid+0x77a/0x800
[  144.480389][T12572]  bpf_get_stackid+0xee/0x120
[  144.485058][T12572]  bpf_get_stackid_raw_tp+0xf6/0x120
[  144.490336][T12572]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[  144.495781][T12572]  bpf_trace_run3+0x10f/0x1d0
[  144.500450][T12572]  __traceiter_kmem_cache_free+0x35/0x60
[  144.506074][T12572]  kmem_cache_free+0x257/0x300
[  144.510832][T12572]  put_cred_rcu+0x1a4/0x210
[  144.515330][T12572]  rcu_core+0x5a5/0xc00
[  144.519481][T12572]  rcu_core_si+0xd/0x20
[  144.523622][T12572]  handle_softirqs+0xb7/0x290
[  144.528291][T12572]  do_softirq+0x5d/0x90
[  144.532438][T12572]  __local_bh_enable_ip+0x70/0x80
[  144.537456][T12572]  bpf_test_run_xdp_live+0xe74/0xfe0
[  144.542743][T12572]  bpf_prog_test_run_xdp+0x4f5/0x910
[  144.548028][T12572]  bpf_prog_test_run+0x22a/0x390
[  144.552968][T12572]  __sys_bpf+0x3dc/0x790
[  144.557214][T12572]  __x64_sys_bpf+0x41/0x50
[  144.561626][T12572]  x64_sys_call+0x2478/0x2fb0
[  144.566296][T12572]  do_syscall_64+0xd2/0x200
[  144.570791][T12572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.576676][T12572] 
[  144.578986][T12572] read to 0xffff888114cd9f74 of 4 bytes by task 12572 on cpu 0:
[  144.586605][T12572]  __bpf_get_stackid+0x33a/0x800
[  144.591540][T12572]  bpf_get_stackid+0xee/0x120
[  144.596207][T12572]  bpf_get_stackid_raw_tp+0xf6/0x120
[  144.601487][T12572]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[  144.606935][T12572]  bpf_trace_run3+0x10f/0x1d0
[  144.611608][T12572]  __traceiter_kmem_cache_free+0x35/0x60
[  144.617229][T12572]  kmem_cache_free+0x257/0x300
[  144.621989][T12572]  __io_req_caches_free+0x69/0x170
[  144.627093][T12572]  io_queue_deferred+0x1e/0x220
[  144.631939][T12572]  io_drain_req+0x24c/0x350
[  144.636435][T12572]  io_queue_sqe_fallback+0xbb/0xc0
[  144.641551][T12572]  io_submit_sqes+0xbad/0xfd0
[  144.646223][T12572]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  144.651764][T12572]  __x64_sys_io_uring_enter+0x78/0x90
[  144.657131][T12572]  x64_sys_call+0x28c8/0x2fb0
[  144.661804][T12572]  do_syscall_64+0xd2/0x200
[  144.666298][T12572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.672184][T12572] 
[  144.674492][T12572] value changed: 0x0000000f -> 0x00000013
[  144.680194][T12572] 
[  144.682503][T12572] Reported by Kernel Concurrency Sanitizer on:
[  144.688642][T12572] CPU: 0 UID: 0 PID: 12572 Comm: syz.3.2260 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[  144.701130][T12572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.711181][T12572] ==================================================================
[  144.722261][T12574] loop2: detected capacity change from 0 to 512
[  144.733413][T12574] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22