last executing test programs:

1m28.223376461s ago: executing program 3 (id=75):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
unshare(0x20040600)
syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0)

1m28.110414752s ago: executing program 3 (id=77):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$binfmt_script(r2, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1) (async)
write$binfmt_script(r2, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth0_virt_wifi\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth0_virt_wifi\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000480)=@newqdisc={0x90, 0x24, 0xf0b, 0xfffffffe, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0xb, 0x9}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x60, 0x2, {{0x3, 0x0, 0x2, 0x0, 0xfffffffd, 0xbfffffff}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x92, 0x0, 0x10, 0x0, 0x3}}, @TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x5, 0x30, 0x1, 0xade}}]}]}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x2004c084}, 0x40000d0)

1m27.881991583s ago: executing program 3 (id=78):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001040)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x0, 0x12, 0x600, 0x1c0, 0x202, 0x290, 0x2e8, 0x2e8, 0x290, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth1_to_bond\x00', 'geneve1\x00'}, 0x4000000, 0x190, 0x1c0, 0x4000000, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "0000000000000019b5115c2aee68d23a465cd431e150c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baeb8989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b500", 0x2}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)

1m27.867344603s ago: executing program 3 (id=80):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000), 0xa, 0xbb8, &(0x7f00000017c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x6000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, r1, 0x0)
mknod(&(0x7f0000000000)='./bus\x00', 0x1000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
gettid()
mount(&(0x7f00000000c0), &(0x7f0000000440)='./bus\x00', 0x0, 0x8c7c88, 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x42203, 0x13d)

1m27.266306047s ago: executing program 3 (id=84):
r0 = socket$inet6(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x1}, &(0x7f0000000080)={0x6, 0x0, 0x0, 0x0, 0x0, 0x90000}, 0x0, 0x0, &(0x7f00000001c0)={0x0})
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001040)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x0, 0x12, 0x600, 0x1c0, 0x202, 0x290, 0x2e8, 0x2e8, 0x290, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth1_to_bond\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x4000000, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "0000000000000019b5115c2aee68d23a465cd431e150c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baeb8989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b500", 0x2}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)

1m26.102223876s ago: executing program 3 (id=111):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x88)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r1 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x60ffffffffff, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1m26.090163876s ago: executing program 32 (id=111):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x88)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r1 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x60ffffffffff, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1m7.927924903s ago: executing program 0 (id=350):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
mmap(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x2, 0x11, r0, 0x0) (async)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) (async)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x201000, 0x1000}, 0x20) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000002280)=@generic={0x0, r5}, 0x18) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x10) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x6b, 0x60000000}, 0xf) (async)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000040000200280012800a0001007697010ca0359d6cf90002801400010000000000", @ANYRES32=0x0, @ANYBLOB="2502000000800200"], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000180)={<r8=>0x0, 0xfffd, 0xfff7, 0x6abdb293, 0x7, 0x80000000}, &(0x7f0000000200)=0x14)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000280)={r8}, 0x0) (async)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m7.851321594s ago: executing program 0 (id=351):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000200)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x6, 0x7ffc0005}]})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)

1m7.850823984s ago: executing program 0 (id=352):
r0 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet(r0, &(0x7f00000006c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0}}], 0x1, 0x80) (fail_nth: 2)

1m7.584515526s ago: executing program 0 (id=354):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)
mq_timedreceive(r0, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, &(0x7f0000000080), 0xfe, 0x25e, &(0x7f0000001000)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x6, 0x6, 0x5, 0x7, 0x8, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet(0x2, 0x80002, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0xb, 0x8, 0x40, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000480), 0x1000, r2}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r2, &(0x7f0000000100), &(0x7f0000000580)=""/4096}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xffffffff, 0x8, 0x1dd7, 0x20, 0xffffffffffffffff, 0xe, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x4, 0xb, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001a80)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000001a40)={0x4, &(0x7f0000001a00)=[{0x200000000006, 0x0, 0x0, 0x1}, {0x1, 0x2, 0xfa, 0x9}, {0x7, 0x0, 0x1, 0x7fffffff}, {0x9, 0x1, 0x0, 0xffffffff}]})
r4 = syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='nodots,errerrors=remount-rs,errors=continue,\x00'/70], 0x1, 0x30b, &(0x7f0000001640)="$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")
symlinkat(0x0, 0xffffffffffffffff, 0x0)
semop(0x0, &(0x7f00000000c0)=[{}, {}], 0x2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r4], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001580)={0x3, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180e000000000000000000000000000020000000000000009500000000000000"], &(0x7f0000000480)='GPL\x00', 0x4, 0x1000, &(0x7f00000004c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x21)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000300)='veth1_to_batadv\x00', 0x10)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r6, r6, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
sendfile(r1, r1, 0x0, 0x7a680000)

1m7.305167987s ago: executing program 0 (id=357):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000240)='sys_enter\x00', r4}, 0x18)
time(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
socket$inet6(0xa, 0x3, 0x3c)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000021c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x2}) (fail_nth: 12)

1m6.93301354s ago: executing program 0 (id=360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000500)='kmem_cache_free\x00'}, 0x18)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x4, 0x0, 0xe4, 0xe, 0x0, 0x8, 0xd610, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x4, @perf_bp={0x0, 0x3}, 0x2000, 0x44, 0x5, 0x8, 0x1, 0xc5e, 0x12, 0x0, 0x9, 0x0, 0x2}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x0)
socket(0x1e, 0x4, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000640)="c5", 0x1, 0xb, 0x0, 0x0)
recvfrom$inet(r3, 0x0, 0x0, 0xc9110063, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r4)
io_uring_setup(0x5f45, &(0x7f00000001c0)={0x0, 0x0, 0x2})

1m6.90665887s ago: executing program 33 (id=360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000500)='kmem_cache_free\x00'}, 0x18)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x4, 0x0, 0xe4, 0xe, 0x0, 0x8, 0xd610, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x4, @perf_bp={0x0, 0x3}, 0x2000, 0x44, 0x5, 0x8, 0x1, 0xc5e, 0x12, 0x0, 0x9, 0x0, 0x2}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x0)
socket(0x1e, 0x4, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000640)="c5", 0x1, 0xb, 0x0, 0x0)
recvfrom$inet(r3, 0x0, 0x0, 0xc9110063, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r4)
io_uring_setup(0x5f45, &(0x7f00000001c0)={0x0, 0x0, 0x2})

38.901582957s ago: executing program 1 (id=852):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000400000000000008000000180001801400020073797a5f74756e0000000000010000001c00028004000100140003800c"], 0x48}, 0x1, 0x0, 0x0, 0x20004084}, 0x0)

38.876963827s ago: executing program 1 (id=854):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000001e0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

38.796340108s ago: executing program 1 (id=857):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setscheduler(0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005", @ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000240)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x3, 0x8900c, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x6, 0x7ffffffc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x100, 0x0, 0x3}, 0x0, 0x6, 0xffffffffffffffff, 0x2)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x20000000, 0x1, 0x80000001}}, 0x120)
write$UHID_DESTROY(r5, &(0x7f0000000080), 0x4)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7, 0x0, 0xfffffffffffffffe}, 0x18)

38.43888361s ago: executing program 1 (id=865):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1e)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x31001, 0x0)
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000)=0xc, 0x4)
perf_event_open(&(0x7f0000000580)={0x2, 0x80, 0x3a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x3, 0x31a}, 0x98c4, 0x3, 0x10000, 0x9, 0x8, 0x3740, 0x0, 0x0, 0x0, 0x0, 0xce02}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000040000000000000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x337700, 0x0)
r3 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)) (async)
r4 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000080)=@l2tp6={0xa, 0xf5, 0x0, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x14, 0x2}, 0x80, 0x0}, 0x24000859)
sendmsg$inet(r4, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x4000040)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='hrtimer_init\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
getpid() (async)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x1041, 0x0) (async)
syz_open_procfs(0x0, &(0x7f00000015c0)='net/ip6_flowlabel\x00') (async)
r5 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r5, &(0x7f0000000300)={0x28, 0x0, 0x2711, @hyper}, 0x10)
listen(r5, 0x0)
r6 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r6, &(0x7f0000000080), 0x10)
accept4$unix(r5, 0x0, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)

38.340080501s ago: executing program 1 (id=867):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x2a382)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001880)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x30, 0xb3633ba76261d6ab, 0x400000, 0x8000, {}, [{0x4}]}, 0x18}}, 0x800)
sendfile(r1, r1, 0x0, 0x24002de8)
ioctl$LOOP_CLR_FD(r1, 0x4c01)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000b00)="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", 0x1000}, {&(0x7f0000000280)="052eacb733b9069e9c162f1f2106836674fedb0e8babe649e9571d05fdad1a1c43604e2ef3a1b28ac85f49d1e405c1bddecf8b15e87fe995eda2a2ac95c1f328b2c5103924f5a0d8420cec6aa04e46f0b831ce6262e031431f4e38337b60cd05577541a36b0154b3abc61f54b2fa1664bfdc8d50139f4f735010720cd4354c2bd1977cf117b169e962012d124559c4f98f3d2d918b9f02dc3da8e3c518", 0x9d}, {&(0x7f0000000600)="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", 0xfe}, {&(0x7f0000000040)="fe6fb30f576304ada435fccae70659517bbcd777567fc7623257e9db824edd", 0x1f}, {&(0x7f0000000700)="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", 0xff}], 0x5, &(0x7f0000000340)=[@txtime={{0x18, 0x1, 0x3d, 0x51}}, @timestamping={{0x14}}], 0x30}}], 0x1, 0x400c000)

37.968019324s ago: executing program 1 (id=871):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x8)
flock(r2, 0x1)
flock(r2, 0x2)
dup3(r2, r1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5c, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRES32=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000005304"], 0x14}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00007f830a670b2568fdd07900005ded5fa18f6e7f772f1cbcfffd923e924c54906dcef343e26e47506811937c65f1c94951e25af3a6f1e7a2bc99b97d3791f56a891ca0515e402e1b2c6136a402df4f1bfce174ad4209f377ed321f4cbb08afe4f06b49db50e203c2241ae23c6ea51687f5b8109ec06f5d3df8d2631fc076a219be692430d29945b3877a47b429ae24abab7e74ad5ea1dbfcb25ec63e838a9cd7ba86a733ff5e248d5a5cdbceda6f055362210f311d104b5ab74203bd6aee638bd59046", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000040000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x6e1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$qrtr(r4, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
close_range(r0, r4, 0x0)

37.926650214s ago: executing program 34 (id=871):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x8)
flock(r2, 0x1)
flock(r2, 0x2)
dup3(r2, r1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5c, &(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRES32=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000005304"], 0x14}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00007f830a670b2568fdd07900005ded5fa18f6e7f772f1cbcfffd923e924c54906dcef343e26e47506811937c65f1c94951e25af3a6f1e7a2bc99b97d3791f56a891ca0515e402e1b2c6136a402df4f1bfce174ad4209f377ed321f4cbb08afe4f06b49db50e203c2241ae23c6ea51687f5b8109ec06f5d3df8d2631fc076a219be692430d29945b3877a47b429ae24abab7e74ad5ea1dbfcb25ec63e838a9cd7ba86a733ff5e248d5a5cdbceda6f055362210f311d104b5ab74203bd6aee638bd59046", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000040000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x6e1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$qrtr(r4, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
close_range(r0, r4, 0x0)

890.009284ms ago: executing program 7 (id=1508):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x400200, 0xb0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r3, 0x0, 0xffffffffffffffff}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xf7ffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000bc0)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x40}}, 0x0)

838.089984ms ago: executing program 7 (id=1509):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0, 0x0, 0x6}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = getpid()
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x40000000)

807.522005ms ago: executing program 7 (id=1511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x7}}]}, 0x2c}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x24, 0x66, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

788.816914ms ago: executing program 7 (id=1513):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x3, 0x20000004, 0x0, 'queue0\x00', 0xcc57})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x2, 0x3, 0x200, 0x0, 0x80000}, 0x2})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000007000000000a60000000060a0b0400000000000000000200000034000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c617374000000000900010073797a30000000000900020073797a32"], 0x88}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xfffffffff7ffffe9}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000140), 0x12)
r7 = openat$cgroup(r5, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_procs(r7, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f0000000500), 0x12)

735.018665ms ago: executing program 7 (id=1515):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000400000000000008000000180001801400020073797a5f74756e0000000000010000001c00028004000100140003800c"], 0x48}, 0x1, 0x0, 0x0, 0x20004084}, 0x0)

700.247185ms ago: executing program 7 (id=1516):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
r1 = fspick(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x1)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x2, &(0x7f00000002c0)='\x00', &(0x7f0000000300)="799ae477c5dd2d3df14e87e1cbe8aa4d41b54153970eba0aab89d4413c2ab1921c61901c5c5735c96467a6931214edc1ed9669ed232a7bf344a4fbaa233d9b93f416eb2b18332fab1b1d2a9ada63ad486971f0583aca2744c32240d98ef916aa9b0d", 0x62)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write(r0, &(0x7f0000000000)='\"', 0xfdef)

578.502756ms ago: executing program 2 (id=1523):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x7}}]}, 0x2c}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x24, 0x66, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

551.920536ms ago: executing program 2 (id=1524):
openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x109c00, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000012140100000000000000000008004f000000000008004b001b00000008000300000700000800150000000000080001"], 0x38}}, 0x4000)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'geneve1\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6, 0x0, 0x3}, 0x18)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
process_vm_writev(0x0, &(0x7f0000000500)=[{0x0}, {0xffffffffffffffff}, {0xfffffffffffffffc}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x1e, r2})
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
sendto$inet6(r1, &(0x7f0000000280)="0503092c8f0b480301020d00c52cf7c25975e010b02f0800eb2b2ff0dac8897c6b118777faffffff3066100cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

522.834167ms ago: executing program 5 (id=1525):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x3, 0x20000004, 0x0, 'queue0\x00', 0xcc57})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x2, 0x3, 0x200, 0x0, 0x80000}, 0x2})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xfffffffff7ffffe9}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000140), 0x12)
r7 = openat$cgroup(r5, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_procs(r7, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f0000000500), 0x12)

473.062917ms ago: executing program 5 (id=1528):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20c006, &(0x7f0000000040), 0x41, 0x43d, &(0x7f0000000900)="$eJzs289rHFUcAPDv7Cap/aFdS/3RWDVaxeCPpElr7cGLouBBQdBDPcYkLbHbRpoItgSNIvUoBe/iUfAv8KQXUU+CV71LoUgurXpZmcxMsrvZTbtxk63u5wOTvDfzNu99d+btvnkvE0DfGkl/JBH7IuLXiNifZRsLjGS/bqwsTf+5sjSdRK32xh/JarnrK0vTRdHidXuLzEBE6ZMkHmhR78LFS2enqtXZC3l+fPHcu+MLFy89M3du6szsmdnzkydPHj828dyJyWe7Emca1/XhD+YPH3rlrSuvTZ+68vaPXydF/E1xdMnIZgcfr9W6XF1v3VmXTgZ62BA6Us66aQyu9v/9UY71k7c/Xv64p40DtlWtVqvd2/7wcg34H0ui1y0AeqP4ok/vf4tth4Yet4VrL2Q3QGncN/ItOzIQpbzMYNP9bTeNRMSp5b++SLfYnnkIAIAG36bjn6fz8V/Dwk8p6ueF7srXUCoRcXdEHIiIExFxMCLuiVgte19E3N9h/c2LJBvHP6WrHf7JjqTjv+fzta3G8V8x+otKOeLvYrhcicHk9Fx19mj+nozG4K40P7FJHd+99Mtn7Y7Vj//SLa2/GAvm7bg6sKvxNTNTi1P/JuZ61z6KGB5oFX+ythKQXhaHImJ4i3XMPfnV4XbHbh5/o6H6TBfWmWpfRjyRnf/laIq/kKbGl9uuT47fEdXZo+PFVbHRTz9ffr1d/Z3G323p+d/T8vpfi7+S1K/XLnRex+XfPm17T7PV638oebNh3/tTi4sXJiKGklezRtfvn2wqN7lePo1/9Ejr/n8gincia0B6ET8YEQ9FxMN52x+JiEcj4sgm8f/w4mPvNO5JOoh/e6Xxz3R0/tcTQ9G8p3WifPb7bxoqrUQH8afn//hqajTfcyuff7fSrq1dzQAAAPDfU4qIfZGUxtbSpdLYWPY//AdjT6k6v7D41On5987PZM8IVGKwVMx0ZfPB2XzoRH5bX+Qnm/LH8nnjz8u7V/Nj0/PVmV4HD31ub5v+n/q93OvWAdvO81rQv/R/6F/6P/Qv/R/6V4v+v7sX7QB2Xqvv/w970A5g5zX1f8t+0Efc/0P/0v+hf+n/0JcWdsfNH5KXkNiQiNJt0QyJbUr0+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgO/4JAAD//yzB6iM=")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x7a000}], 0x300, 0x33000, 0x0, 0x3)

393.206577ms ago: executing program 2 (id=1530):
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = add_key(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f0000000140)="d8", 0x1, r2)
keyctl$search(0xb, r2, &(0x7f0000000240)='big_key\x00', &(0x7f0000000180)={'syz', 0x3}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES64=r1, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000800)=@newqdisc={0x60, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x5}]}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0xc, 0xc89f, 0xffff5ef5, 0x0, 0x19, 0x3}}, {0x4}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x3}, 0x20004004)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000240)={r1, &(0x7f0000000680)="6099a28175ba2b0988f5208b7440714a7f71616da6eaea4f889c57810ca4c87fb3a996d8e721a64945be47eddc17ece4570ceeede014b04ebb7db75cc5f42a87192f8b18cfa01273238d1779742824c48baf12a6af63aa3a0fc171f686641d7cae80c264c0d9909f91b1d8bd93e480df74d573dea74de0aa87759a6c62448b14cecab73202a6104fa2e12864511c68bb0f8ffe962bf866c0ef6ce094ccb533e3b52e7841c846c99e93d3b92c7797545bc1474e6e311ba7d4e76110ae7d05e512f7fbb9e45031472f974a8f319e80195c96a8aeae33"}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x40)
fcntl$notify(r7, 0x402, 0x8000003d)
sendmsg$MPTCP_PM_CMD_REMOVE(r7, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0052ba", @ANYRES16=0x0, @ANYBLOB="000226bd7000fcdbdf25090000000800040002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20048800}, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r8, 0x29, 0x4e, &(0x7f0000000080)=0x3, 0x4)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c)
getsockname$inet6(r8, 0x0, &(0x7f0000000300))
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c0001"], 0x118}}, 0x0)

392.806747ms ago: executing program 2 (id=1531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000140), 0x12)
r4 = openat$cgroup(r2, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000500), 0x12)

362.392208ms ago: executing program 5 (id=1532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket(0x11, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000300)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d206"], 0xdd12}], 0x1}, 0x10)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, 0x0, 0x2, 0x0, 0x0, 0x0)

355.429478ms ago: executing program 2 (id=1534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x7}}]}, 0x2c}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x24, 0x66, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

329.991028ms ago: executing program 2 (id=1535):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x884710b0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x1a9, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x20800000}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8)
perf_event_open(0x0, 0x0, 0x0, r3, 0xa)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRES32=r3, @ANYRESDEC=r1, @ANYRESHEX=0x0], &(0x7f0000000240)='GPL\x00', 0x100, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r4}, 0x10)
pause()
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x88002)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5], 0x0, 0x33, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$phonet(0x23, 0x2, 0x1)
socket$pppoe(0x18, 0x1, 0x0)
openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = fcntl$dupfd(r2, 0x406, 0xffffffffffffffff)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r4, 0x4040942c, &(0x7f0000000040)={0x0, 0x8, [0x6d3, 0x5, 0x8, 0x6, 0x0, 0x10]})
ioctl$SCSI_IOCTL_STOP_UNIT(r6, 0x6)

293.316678ms ago: executing program 4 (id=1536):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, r2, 0xffff0001, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000200)={'vxcan1\x00', <r6=>0x0})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x1000, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x17, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xa}, [@ldst={0x1, 0x1, 0x2, 0xb, 0x7, 0x40, 0xffffffffffffffff}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x9}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0x2, 0x1, 0x0, r5}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x49a8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', r6, @fallback=0x6, r3, 0x8, &(0x7f0000000380)={0x5, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x8, 0x3, 0x1}, 0x10, r7, r1, 0x0, &(0x7f00000004c0)=[r1], &(0x7f0000000500), 0x10, 0xfffffffc, @void, @value}, 0x94)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r9 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r9, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x3c, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x9}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xfc}]}, 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
r10 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r10, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x2}, 0x10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r11}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x10)
mmap(&(0x7f00005df000/0x2000)=nil, 0x2000, 0x200000b, 0x31, 0xffffffffffffffff, 0x3000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

292.967888ms ago: executing program 6 (id=1537):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000400000000000008000000180001801400020073797a5f74756e0000000000010000001c00028004000100140003800c"], 0x48}, 0x1, 0x0, 0x0, 0x20004084}, 0x0)

292.714078ms ago: executing program 5 (id=1538):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2ab}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f2, &(0x7f0000000080))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xbf7636be05288f61, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x101}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000001a0000000c00018008000100", @ANYRES32=r6], 0x20}}, 0x0)

269.934598ms ago: executing program 4 (id=1539):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
r2 = socket(0x1d, 0x2, 0x6)
pselect6(0x29, &(0x7f0000000040)={0x8}, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000600)="ec0811d2dc7b4b6e", 0x8}], 0x1}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r2)

269.445518ms ago: executing program 6 (id=1540):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
r2 = socket(0x1d, 0x2, 0x6)
pselect6(0x29, &(0x7f0000000040)={0x8}, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r3, 0x2, {0x1, 0x1}}, 0x18)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000600)="ec0811d2dc7b4b6e", 0x8}], 0x1}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r2)
r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000060000000800000009000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r6}, &(0x7f0000000400), &(0x7f0000000340)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x10)
flock(r5, 0x1)
flock(r5, 0x2)
dup3(r5, r1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x1204c, 0x7e, 0x7, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f0000000a00)={[{@rodir}, {@numtail}, {@shortname_winnt}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@fat=@tz_utc}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@shortname_mixed}, {@utf8no}, {@rodir}, {@utf8no}]}, 0x1, 0x26c, &(0x7f0000000340)="$eJzs3U9rU1kYB+A3bTpJC0OyGCgzDMwdZjOr0HaYfcrQgWECipKFriw2RWlqoYWCLtruit9Bv4Iu3QouxK1fQASpghvrqgshEm//JDWJjZpG7PNs+nLu++Ock17upYueXPl1eWlhZW1xd3cn8vlMZMtRjr1MFGMkRiO1FQDA92Sv0Yg3jdSw1wIAnA7vfwA4e3q9/zNbh2PnT39lAMCgfNHf/yMDWRIAMGAXL13+f7ZSmbuQJPmI5e316no1/Zlen12M61GPWkxFId5FNA6l9b//VeamkqaXxcgvb46k+c316mh7fjoKUeycn05SUW3mDvJjMbGffzYRtZiJQvzUOT/TMf9D/PlHy/ylKMTTq7ES9ViIZjbN5yJiYzpJ/jlXOZbPfegDAAAAAAAAAAAAAAAAAAAAAIBBKCWHiu3n36Tn95RK3a6n+dbzgcZ7nQ/U2Dx2vk42fskOd+8AAAAAAAAAAAAAAAAAAADwrVi7eWtpvl6vrfYqbjy592gnlwY+2dy7yOzP219qu2fP+Ml2caz48fcXdzpdykWu38/n84qxiGgdSfanfPjbACf9WsXjnWs//7U2+Xe3nsi2jtxubrWtp8uNlB3UB/66ENG1J9/3Ddla3D8oym8/6jm4lWqr48P+xU3eLc8/2Hj+6qSpHg+NxuggHkUAAAAAAAAAAAAAAAAAAHDmHf3T77BXAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADDc/T9//0WuWgbyXdt3hr2HgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4H0AAAD//7qXlSU=")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
r9 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r9, 0x7, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r9, 0x4008941a, &(0x7f0000000040)=0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

254.907928ms ago: executing program 4 (id=1541):
openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x109c00, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000012140100000000000000000008004f000000000008004b001b00000008000300000700000800150000000000080001"], 0x38}}, 0x4000)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'geneve1\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5, 0x0, 0x3}, 0x18)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
process_vm_writev(0x0, &(0x7f0000000500)=[{0x0}, {0xffffffffffffffff}, {0xfffffffffffffffc}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x1e, r2})
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
sendto$inet6(r1, &(0x7f0000000280)="0503092c8f0b480301020d00c52cf7c25975e010b02f0800eb2b2ff0dac8897c6b118777faffffff3066100cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

231.557648ms ago: executing program 4 (id=1542):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xe}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x7f, 0x491, 0x0, 0x0, 0x0, 0x4, 0x2}}, {0x8, 0x1b, [0x0, 0x2]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000a00)={0x0, 0xfff4, 0x70, 0x4, 0x5}, &(0x7f0000000a40)=0x18)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
syz_open_dev$vcsa(&(0x7f0000000500), 0x0, 0x4c0040)
r4 = gettid()
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_bp={0x0}, 0x0, 0xfffffffffffffffa, 0x800000, 0x0, 0x9a, 0x2, 0x5, 0x0, 0x0, 0x0, 0xc0}, r4, 0xffffffffffffffff, r3, 0x2)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4002, &(0x7f0000000040)=0xa632, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0)

185.391459ms ago: executing program 5 (id=1543):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20c006, &(0x7f0000000040), 0x41, 0x43d, &(0x7f0000000900)="$eJzs289rHFUcAPDv7Cap/aFdS/3RWDVaxeCPpElr7cGLouBBQdBDPcYkLbHbRpoItgSNIvUoBe/iUfAv8KQXUU+CV71LoUgurXpZmcxMsrvZTbtxk63u5wOTvDfzNu99d+btvnkvE0DfGkl/JBH7IuLXiNifZRsLjGS/bqwsTf+5sjSdRK32xh/JarnrK0vTRdHidXuLzEBE6ZMkHmhR78LFS2enqtXZC3l+fPHcu+MLFy89M3du6szsmdnzkydPHj828dyJyWe7Emca1/XhD+YPH3rlrSuvTZ+68vaPXydF/E1xdMnIZgcfr9W6XF1v3VmXTgZ62BA6Us66aQyu9v/9UY71k7c/Xv64p40DtlWtVqvd2/7wcg34H0ui1y0AeqP4ok/vf4tth4Yet4VrL2Q3QGncN/ItOzIQpbzMYNP9bTeNRMSp5b++SLfYnnkIAIAG36bjn6fz8V/Dwk8p6ueF7srXUCoRcXdEHIiIExFxMCLuiVgte19E3N9h/c2LJBvHP6WrHf7JjqTjv+fzta3G8V8x+otKOeLvYrhcicHk9Fx19mj+nozG4K40P7FJHd+99Mtn7Y7Vj//SLa2/GAvm7bg6sKvxNTNTi1P/JuZ61z6KGB5oFX+ythKQXhaHImJ4i3XMPfnV4XbHbh5/o6H6TBfWmWpfRjyRnf/laIq/kKbGl9uuT47fEdXZo+PFVbHRTz9ffr1d/Z3G323p+d/T8vpfi7+S1K/XLnRex+XfPm17T7PV638oebNh3/tTi4sXJiKGklezRtfvn2wqN7lePo1/9Ejr/n8gincia0B6ET8YEQ9FxMN52x+JiEcj4sgm8f/w4mPvNO5JOoh/e6Xxz3R0/tcTQ9G8p3WifPb7bxoqrUQH8afn//hqajTfcyuff7fSrq1dzQAAAPDfU4qIfZGUxtbSpdLYWPY//AdjT6k6v7D41On5987PZM8IVGKwVMx0ZfPB2XzoRH5bX+Qnm/LH8nnjz8u7V/Nj0/PVmV4HD31ub5v+n/q93OvWAdvO81rQv/R/6F/6P/Qv/R/6V4v+v7sX7QB2Xqvv/w970A5g5zX1f8t+0Efc/0P/0v+hf+n/0JcWdsfNH5KXkNiQiNJt0QyJbUr0+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgO/4JAAD//yzB6iM=")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x7a000}], 0x300, 0x33000, 0x0, 0x3)

158.472609ms ago: executing program 5 (id=1544):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @local, 'veth0\x00'}}, 0x1e)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x1}, 0x1320, 0xffffffff, 0x3, 0x5, 0x0, 0x1088f109, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
close(r0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x1, 0x0, 0xff, r4}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000006c0)={{{@in=@initdev, @in=@initdev}}, {{@in6=@private0}, 0x0, @in=@initdev}}, &(0x7f0000000140)=0xe8)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)

108.07054ms ago: executing program 4 (id=1545):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x7}}]}, 0x2c}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x24, 0x66, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

91.8578ms ago: executing program 6 (id=1546):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000140), 0x12)
r3 = openat$cgroup(r1, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000500), 0x12)

76.53864ms ago: executing program 6 (id=1547):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000140), 0x12)
r3 = openat$cgroup(r1, 0x0, 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000500), 0x12)

45.2035ms ago: executing program 6 (id=1548):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xce871aef}, [@call={0x85, 0x0, 0x0, 0x23}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0xc, 0x10003, '\x00', [{}, {0xffffffff}]})

44.72751ms ago: executing program 4 (id=1549):
r0 = syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x100800a, &(0x7f0000000c00)={[{@discard}, {@bsdgroups}, {@resuid}, {@resgid}, {@minixdf}, {@errors_remount}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@data_err_abort}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@mblk_io_submit}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0xffff}}]}, 0xff, 0x5d8, &(0x7f0000000600)="$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")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
pwrite64(r1, &(0x7f0000000040)="2666e4766350c7f78365250c8750b82ba42fa4e15a1d613e4480f323c7e06948a05c90442c73b4577cf8f370eaaf453dbdb770ec08e5382c96ae30bf1dbcd9394e65c289d04d05b20d4fad4ac7d6382de5017f11da40a5de8c1999ebfaadc52ed33ab3f71766b61d5d6128ca8a8dcfae90ff1be78320ce4bc69c1f1f7d02135c943a03", 0x83, 0x9)

0s ago: executing program 6 (id=1550):
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000340)={{{@in6=@private1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, &(0x7f0000000040)=0xe8)
syz_mount_image$ext4(&(0x7f00000004c0)='ext2\x00', &(0x7f00000000c0)='./file1\x00', 0x4d, &(0x7f0000000180)={[], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@fowner_gt={'fowner>', r0}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@smackfshat={'smackfshat', 0x3d, '-#%\x8d(+'}}]}, 0x1, 0x500, &(0x7f0000000500)="$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") (async)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}, @IPSET_ATTR_MAXELEM={0x8}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x60}}, 0x0) (async)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000500)=@updpolicy={0xcc, 0x19, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@XFRMA_IF_ID={0x8, 0x1f, 0x6}, @mark={0xc, 0x15, {0x35075a, 0x7f}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4000010}, 0x4010)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r4, 0x29, 0x19, &(0x7f0000000400)=0xa4, 0x4)
syz_emit_ethernet(0x6e, &(0x7f0000000300)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @dest_unreach={0x1, 0xc8ff9f55e8dc000f, 0x0, 0x0, '\x00', {0x0, 0x6, "00b295", 0x0, 0x3a, 0x0, @dev={0xfe, 0x80, '\x00', 0x1d}, @ipv4={'\x00', '\xff\xff', @local}, [], "caa7c1b7f4c336af"}}}}}}}, 0x0) (async)
recvmmsg(r4, &(0x7f0000002780)=[{{0x0, 0xfffffffffffffde1, 0x0}}], 0x1, 0x2140, 0x0) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYRESDEC, @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r6}, 0x10) (async)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x80000f1, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000020}, {0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x58}}, 0x0) (async)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

kernel console output (not intermixed with test programs):

al. Quota mode: none.
[   99.976340][ T6850] ext4 filesystem being mounted at /263/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   99.999143][ T3305] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.016895][ T6854] FAULT_INJECTION: forcing a failure.
[  100.016895][ T6854] name failslab, interval 1, probability 0, space 0, times 0
[  100.029762][ T6854] CPU: 1 UID: 0 PID: 6854 Comm: syz.4.1100 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  100.029793][ T6854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.029810][ T6854] Call Trace:
[  100.029818][ T6854]  <TASK>
[  100.029826][ T6854]  dump_stack_lvl+0xf2/0x150
[  100.029854][ T6854]  dump_stack+0x15/0x1a
[  100.029934][ T6854]  should_fail_ex+0x24a/0x260
[  100.029968][ T6854]  should_failslab+0x8f/0xb0
[  100.030029][ T6854]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  100.030062][ T6854]  ? security_netlbl_sid_to_secattr+0xc1/0x160
[  100.030110][ T6854]  kstrdup+0x3d/0xd0
[  100.030142][ T6854]  security_netlbl_sid_to_secattr+0xc1/0x160
[  100.030205][ T6854]  selinux_netlbl_sock_genattr+0xa3/0x260
[  100.030244][ T6854]  selinux_netlbl_socket_post_create+0x69/0x100
[  100.030324][ T6854]  selinux_mptcp_add_subflow+0xb7/0xd0
[  100.030358][ T6854]  security_mptcp_add_subflow+0x3d/0x80
[  100.030445][ T6854]  mptcp_subflow_create_socket+0xe8/0x630
[  100.030475][ T6854]  ? cgroup_rstat_updated+0x9f/0x570
[  100.030541][ T6854]  __mptcp_nmpc_sk+0xb4/0x3c0
[  100.030566][ T6854]  mptcp_getsockopt+0x979/0x1230
[  100.030589][ T6854]  ? __rcu_read_unlock+0x4e/0x70
[  100.030611][ T6854]  ? cgroup_rstat_updated+0x9f/0x570
[  100.030682][ T6854]  ? __lruvec_stat_mod_folio+0xdb/0x120
[  100.030779][ T6854]  ? __count_memcg_events+0xd7/0x220
[  100.030835][ T6854]  ? __rcu_read_unlock+0x4e/0x70
[  100.030857][ T6854]  ? handle_mm_fault+0x1723/0x2ac0
[  100.030884][ T6854]  ? exc_page_fault+0x32e/0x650
[  100.030946][ T6854]  sock_common_getsockopt+0x5b/0x70
[  100.031062][ T6854]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  100.031097][ T6854]  do_sock_getsockopt+0x1ca/0x260
[  100.031129][ T6854]  __x64_sys_getsockopt+0x18c/0x200
[  100.031168][ T6854]  x64_sys_call+0x1288/0x2dc0
[  100.031205][ T6854]  do_syscall_64+0xc9/0x1c0
[  100.031236][ T6854]  ? clear_bhb_loop+0x55/0xb0
[  100.031332][ T6854]  ? clear_bhb_loop+0x55/0xb0
[  100.031365][ T6854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.031393][ T6854] RIP: 0033:0x7f3b5addd169
[  100.031408][ T6854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.031427][ T6854] RSP: 002b:00007f3b59447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  100.031449][ T6854] RAX: ffffffffffffffda RBX: 00007f3b5aff5fa0 RCX: 00007f3b5addd169
[  100.031497][ T6854] RDX: 000000000000000b RSI: 0000000000000006 RDI: 0000000000000003
[  100.031511][ T6854] RBP: 00007f3b59447090 R08: 00004000000013c0 R09: 0000000000000000
[  100.031523][ T6854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  100.031535][ T6854] R13: 0000000000000000 R14: 00007f3b5aff5fa0 R15: 00007ffc555dba28
[  100.031608][ T6854]  </TASK>
[  100.322219][ T6655] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.334933][ T6655] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.350373][ T6655] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.367961][ T6655] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.410921][   T30] kauditd_printk_skb: 319 callbacks suppressed
[  100.410954][   T30] audit: type=1326 audit(1742146564.201:3522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feb489c4127 code=0x7ffc0000
[  100.452464][   T30] audit: type=1326 audit(1742146564.231:3523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feb48969359 code=0x7ffc0000
[  100.475870][   T30] audit: type=1326 audit(1742146564.231:3524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feb489c4127 code=0x7ffc0000
[  100.499218][   T30] audit: type=1326 audit(1742146564.231:3525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feb48969359 code=0x7ffc0000
[  100.499472][ T6866] loop2: detected capacity change from 0 to 512
[  100.522908][   T30] audit: type=1326 audit(1742146564.231:3526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  100.552902][   T30] audit: type=1326 audit(1742146564.241:3527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feb489c4127 code=0x7ffc0000
[  100.576397][   T30] audit: type=1326 audit(1742146564.241:3528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feb48969359 code=0x7ffc0000
[  100.599968][   T30] audit: type=1326 audit(1742146564.241:3529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  100.601562][ T6866] ext4: Unknown parameter 'euid>00000000000000000000'
[  100.625933][   T30] audit: type=1326 audit(1742146564.291:3530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feb489c4127 code=0x7ffc0000
[  100.653645][   T30] audit: type=1326 audit(1742146564.291:3531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6857 comm="syz.2.1102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feb48969359 code=0x7ffc0000
[  100.746864][ T6877] netlink: 'syz.6.1111': attribute type 13 has an invalid length.
[  100.793757][ T6877] loop6: detected capacity change from 0 to 2048
[  100.917023][ T6877]  loop6: p1 < > p4
[  100.921845][ T6877] loop6: p4 size 8388608 extends beyond EOD, truncated
[  100.946686][ T3001]  loop6: p1 < > p4
[  100.951453][ T3001] loop6: p4 size 8388608 extends beyond EOD, truncated
[  100.971355][ T3552] udevd[3552]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  100.993701][ T3551] udevd[3551]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  101.017861][ T3552] udevd[3552]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  101.019188][ T3551] udevd[3551]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  101.178130][ T6917] __nla_validate_parse: 2 callbacks suppressed
[  101.178149][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1128'.
[  101.200535][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1128'.
[  101.254436][ T6922] netlink: 'syz.2.1130': attribute type 13 has an invalid length.
[  101.285128][ T6922] loop2: detected capacity change from 0 to 2048
[  101.316637][ T6922]  loop2: p1 < > p4
[  101.322303][ T6922] loop2: p4 size 8388608 extends beyond EOD, truncated
[  101.402381][ T3552] udevd[3552]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  101.421367][ T3551] udevd[3551]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  101.449676][ T6930] FAULT_INJECTION: forcing a failure.
[  101.449676][ T6930] name failslab, interval 1, probability 0, space 0, times 0
[  101.462417][ T6930] CPU: 0 UID: 0 PID: 6930 Comm: syz.6.1131 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  101.462448][ T6930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.462463][ T6930] Call Trace:
[  101.462472][ T6930]  <TASK>
[  101.462482][ T6930]  dump_stack_lvl+0xf2/0x150
[  101.462510][ T6930]  dump_stack+0x15/0x1a
[  101.462571][ T6930]  should_fail_ex+0x24a/0x260
[  101.462606][ T6930]  should_failslab+0x8f/0xb0
[  101.462644][ T6930]  __kmalloc_node_noprof+0xad/0x410
[  101.462740][ T6930]  ? __kvmalloc_node_noprof+0x72/0x170
[  101.462780][ T6930]  __kvmalloc_node_noprof+0x72/0x170
[  101.462832][ T6930]  map_get_next_key+0x194/0x310
[  101.462863][ T6930]  ? __sys_bpf+0x6c1/0x7a0
[  101.462898][ T6930]  __sys_bpf+0x6cb/0x7a0
[  101.462941][ T6930]  __x64_sys_bpf+0x43/0x50
[  101.462972][ T6930]  x64_sys_call+0x2914/0x2dc0
[  101.463051][ T6930]  do_syscall_64+0xc9/0x1c0
[  101.463087][ T6930]  ? clear_bhb_loop+0x55/0xb0
[  101.463138][ T6930]  ? clear_bhb_loop+0x55/0xb0
[  101.463239][ T6930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.463266][ T6930] RIP: 0033:0x7f428191d169
[  101.463282][ T6930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.463299][ T6930] RSP: 002b:00007f427ff87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  101.463333][ T6930] RAX: ffffffffffffffda RBX: 00007f4281b35fa0 RCX: 00007f428191d169
[  101.463351][ T6930] RDX: 0000000000000020 RSI: 00004000000001c0 RDI: 0000000000000004
[  101.463422][ T6930] RBP: 00007f427ff87090 R08: 0000000000000000 R09: 0000000000000000
[  101.463433][ T6930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.463445][ T6930] R13: 0000000000000000 R14: 00007f4281b35fa0 R15: 00007ffec6872048
[  101.463463][ T6930]  </TASK>
[  101.689320][ T6938] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1138'.
[  101.722886][ T3001] udevd[3001]: worker [3290] terminated by signal 33 (Unknown signal 33)
[  101.762351][ T6949] netlink: 'syz.2.1143': attribute type 13 has an invalid length.
[  101.772953][ T3292] printk: udevd: 3 output lines suppressed due to ratelimiting
[  101.785469][ T6950] FAULT_INJECTION: forcing a failure.
[  101.785469][ T6950] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.798692][ T6950] CPU: 0 UID: 0 PID: 6950 Comm: syz.4.1140 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  101.798743][ T6950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.798767][ T6950] Call Trace:
[  101.798856][ T6950]  <TASK>
[  101.798863][ T6950]  dump_stack_lvl+0xf2/0x150
[  101.798891][ T6950]  dump_stack+0x15/0x1a
[  101.798926][ T6950]  should_fail_ex+0x24a/0x260
[  101.798974][ T6950]  should_fail+0xb/0x10
[  101.799001][ T6950]  should_fail_usercopy+0x1a/0x20
[  101.799095][ T6950]  fpu__restore_sig+0x11d/0xb00
[  101.799160][ T6950]  ? copy_fpstate_to_sigframe+0x6e6/0x7e0
[  101.799196][ T6950]  restore_sigcontext+0x1b5/0x220
[  101.799289][ T6950]  __do_sys_rt_sigreturn+0xfd/0x160
[  101.799340][ T6950]  x64_sys_call+0x2982/0x2dc0
[  101.799373][ T6950]  do_syscall_64+0xc9/0x1c0
[  101.799478][ T6950]  ? clear_bhb_loop+0x55/0xb0
[  101.799589][ T6950]  ? clear_bhb_loop+0x55/0xb0
[  101.799622][ T6950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.799650][ T6950] RIP: 0033:0x7f3b5addd169
[  101.799665][ T6950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.799684][ T6950] RSP: 002b:00007f3b59426038 EFLAGS: 00000246
[  101.799702][ T6950] RAX: 0000000000000005 RBX: 00007f3b5aff6080 RCX: 00007f3b5addd169
[  101.799717][ T6950] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006
[  101.799775][ T6950] RBP: 00007f3b59426090 R08: 0000000000000000 R09: 0000000000000000
[  101.799786][ T6950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  101.799797][ T6950] R13: 0000000000000001 R14: 00007f3b5aff6080 R15: 00007ffc555dba28
[  101.799815][ T6950]  </TASK>
[  101.972778][ T6945] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.995031][ T6957] loop5: detected capacity change from 0 to 128
[  102.019924][ T6953] loop2: detected capacity change from 0 to 2048
[  102.031294][ T6961] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.048441][ T6964] loop4: detected capacity change from 0 to 1024
[  102.055489][ T6964] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.056814][ T6957] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.079416][ T6957] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.084292][ T6953]  loop2: p1 < > p4
[  102.091233][ T6945] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.103563][ T6964] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  102.111827][ T6964] EXT4-fs (loop4): orphan cleanup on readonly fs
[  102.118731][ T6953] loop2: p4 size 8388608 extends beyond EOD, truncated
[  102.120592][ T6964] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5838: Corrupt filesystem
[  102.135403][ T6964] EXT4-fs (loop4): Remounting filesystem read-only
[  102.142300][ T6964] EXT4-fs (loop4): 1 orphan inode deleted
[  102.150088][ T6964] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  102.162618][ T6964] SELinux: (dev loop4, type ext4) getxattr errno 5
[  102.166435][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.170876][ T6964] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.179436][ T6961] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.203307][ T6945] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.259834][ T6961] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.260377][ T6980] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1153'.
[  102.270860][ T6977] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1154'.
[  102.293627][ T6945] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.295193][ T6977] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1154'.
[  102.349493][ T6961] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.361047][ T6981] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1153'.
[  102.370891][ T6980] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1153'.
[  102.393028][ T6945] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.406908][ T6945] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.420134][ T6945] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.436555][ T6985] loop2: detected capacity change from 0 to 128
[  102.439468][ T6945] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.455210][ T6985] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.456104][ T6961] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.475045][ T6985] ext4 filesystem being mounted at /229/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.479051][ T6961] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.503489][ T3310] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.505724][ T6961] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.524493][ T6961] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.543742][ T6989] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  102.596442][ T6995] loop7: detected capacity change from 0 to 16384
[  102.681768][ T7004] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1165'.
[  102.708072][ T7004] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1165'.
[  102.784747][ T7006] loop2: detected capacity change from 0 to 256
[  102.799703][ T7006] FAT-fs (loop2): codepage cp869 not found
[  102.844915][ T7010] loop6: detected capacity change from 0 to 1024
[  102.852378][ T7010] EXT4-fs: Ignoring removed nobh option
[  102.858185][ T7010] EXT4-fs: Ignoring removed bh option
[  102.867800][ T7010] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.161704][ T7027] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.227423][ T7027] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.277513][ T7027] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.337678][ T7027] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.394824][ T7027] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.406722][ T7027] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.418522][ T7027] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.429893][ T7027] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.472641][ T7036] FAULT_INJECTION: forcing a failure.
[  103.472641][ T7036] name failslab, interval 1, probability 0, space 0, times 0
[  103.485350][ T7036] CPU: 1 UID: 0 PID: 7036 Comm: syz.2.1185 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  103.485377][ T7036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.485389][ T7036] Call Trace:
[  103.485396][ T7036]  <TASK>
[  103.485403][ T7036]  dump_stack_lvl+0xf2/0x150
[  103.485431][ T7036]  dump_stack+0x15/0x1a
[  103.485530][ T7036]  should_fail_ex+0x24a/0x260
[  103.485570][ T7036]  ? audit_log_d_path+0x8e/0x150
[  103.485678][ T7036]  should_failslab+0x8f/0xb0
[  103.485711][ T7036]  __kmalloc_cache_noprof+0x4e/0x320
[  103.485740][ T7036]  audit_log_d_path+0x8e/0x150
[  103.485888][ T7036]  audit_log_d_path_exe+0x42/0x70
[  103.485929][ T7036]  audit_log_task+0x1ec/0x250
[  103.485968][ T7036]  audit_seccomp+0x68/0x130
[  103.486074][ T7036]  __seccomp_filter+0x6fa/0x1180
[  103.486105][ T7036]  ? __perf_event_task_sched_out+0x138/0x1010
[  103.486146][ T7036]  ? update_load_avg+0x1f7/0x7c0
[  103.486177][ T7036]  __secure_computing+0x9f/0x1c0
[  103.486204][ T7036]  syscall_trace_enter+0xd1/0x1f0
[  103.486282][ T7036]  do_syscall_64+0xaa/0x1c0
[  103.486319][ T7036]  ? clear_bhb_loop+0x55/0xb0
[  103.486369][ T7036]  ? clear_bhb_loop+0x55/0xb0
[  103.486399][ T7036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.486468][ T7036] RIP: 0033:0x7feb489cbb7c
[  103.486486][ T7036] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  103.486588][ T7036] RSP: 002b:00007feb47037030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  103.486610][ T7036] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cbb7c
[  103.486625][ T7036] RDX: 000000000000000f RSI: 00007feb470370a0 RDI: 0000000000000006
[  103.486637][ T7036] RBP: 00007feb47037090 R08: 0000000000000000 R09: 0000000000000000
[  103.486648][ T7036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  103.486663][ T7036] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  103.486690][ T7036]  </TASK>
[  103.688039][ T4825] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.709234][ T7042] selinux_netlink_send: 69 callbacks suppressed
[  103.709254][ T7042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7042 comm=syz.2.1178
[  103.754858][ T7048] FAULT_INJECTION: forcing a failure.
[  103.754858][ T7048] name failslab, interval 1, probability 0, space 0, times 0
[  103.767831][ T7048] CPU: 1 UID: 0 PID: 7048 Comm: syz.2.1180 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  103.767856][ T7048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.767872][ T7048] Call Trace:
[  103.767878][ T7048]  <TASK>
[  103.767887][ T7048]  dump_stack_lvl+0xf2/0x150
[  103.767928][ T7048]  dump_stack+0x15/0x1a
[  103.767950][ T7048]  should_fail_ex+0x24a/0x260
[  103.767998][ T7048]  should_failslab+0x8f/0xb0
[  103.768121][ T7048]  __kmalloc_cache_node_noprof+0x56/0x320
[  103.768146][ T7048]  ? __get_vm_area_node+0xfb/0x1c0
[  103.768243][ T7048]  __get_vm_area_node+0xfb/0x1c0
[  103.768276][ T7048]  __vmalloc_node_range_noprof+0x280/0xe70
[  103.768313][ T7048]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  103.768351][ T7048]  ? terminate_walk+0x260/0x280
[  103.768500][ T7048]  ? path_openat+0x1a78/0x1fc0
[  103.768529][ T7048]  ? _parse_integer_limit+0x167/0x180
[  103.768567][ T7048]  ? _parse_integer+0x27/0x30
[  103.768599][ T7048]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  103.768636][ T7048]  __vmalloc_noprof+0x5e/0x70
[  103.768726][ T7048]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  103.768761][ T7048]  bpf_prog_alloc_no_stats+0x49/0x380
[  103.768795][ T7048]  ? bpf_prog_alloc+0x28/0x150
[  103.768825][ T7048]  bpf_prog_alloc+0x3a/0x150
[  103.768948][ T7048]  __get_filter+0x90/0x220
[  103.768973][ T7048]  sk_attach_filter+0x1e/0xe0
[  103.769086][ T7048]  sk_setsockopt+0x196b/0x1f00
[  103.769122][ T7048]  sock_setsockopt+0x3c/0x50
[  103.769152][ T7048]  __sys_setsockopt+0x13d/0x200
[  103.769183][ T7048]  __x64_sys_setsockopt+0x66/0x80
[  103.769260][ T7048]  x64_sys_call+0x282e/0x2dc0
[  103.769287][ T7048]  do_syscall_64+0xc9/0x1c0
[  103.769322][ T7048]  ? clear_bhb_loop+0x55/0xb0
[  103.769413][ T7048]  ? clear_bhb_loop+0x55/0xb0
[  103.769445][ T7048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.769476][ T7048] RIP: 0033:0x7feb489cd169
[  103.769495][ T7048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.769565][ T7048] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  103.769588][ T7048] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  103.769602][ T7048] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000008
[  103.769613][ T7048] RBP: 00007feb47037090 R08: 0000000000000010 R09: 0000000000000000
[  103.769625][ T7048] R10: 000040000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  103.769637][ T7048] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  103.769655][ T7048]  </TASK>
[  103.769662][ T7048] syz.2.1180: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  104.038099][ T7048] CPU: 1 UID: 0 PID: 7048 Comm: syz.2.1180 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  104.038121][ T7048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.038132][ T7048] Call Trace:
[  104.038137][ T7048]  <TASK>
[  104.038144][ T7048]  dump_stack_lvl+0xf2/0x150
[  104.038247][ T7048]  dump_stack+0x15/0x1a
[  104.038265][ T7048]  warn_alloc+0x145/0x1b0
[  104.038318][ T7048]  ? __get_vm_area_node+0xfb/0x1c0
[  104.038345][ T7048]  __vmalloc_node_range_noprof+0x2a5/0xe70
[  104.038392][ T7048]  ? terminate_walk+0x260/0x280
[  104.038421][ T7048]  ? path_openat+0x1a78/0x1fc0
[  104.038441][ T7048]  ? _parse_integer_limit+0x167/0x180
[  104.038510][ T7048]  ? _parse_integer+0x27/0x30
[  104.038531][ T7048]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  104.038556][ T7048]  __vmalloc_noprof+0x5e/0x70
[  104.038579][ T7048]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  104.038604][ T7048]  bpf_prog_alloc_no_stats+0x49/0x380
[  104.038627][ T7048]  ? bpf_prog_alloc+0x28/0x150
[  104.038687][ T7048]  bpf_prog_alloc+0x3a/0x150
[  104.038711][ T7048]  __get_filter+0x90/0x220
[  104.038763][ T7048]  sk_attach_filter+0x1e/0xe0
[  104.038780][ T7048]  sk_setsockopt+0x196b/0x1f00
[  104.038804][ T7048]  sock_setsockopt+0x3c/0x50
[  104.038823][ T7048]  __sys_setsockopt+0x13d/0x200
[  104.038917][ T7048]  __x64_sys_setsockopt+0x66/0x80
[  104.038938][ T7048]  x64_sys_call+0x282e/0x2dc0
[  104.038967][ T7048]  do_syscall_64+0xc9/0x1c0
[  104.039030][ T7048]  ? clear_bhb_loop+0x55/0xb0
[  104.039063][ T7048]  ? clear_bhb_loop+0x55/0xb0
[  104.039120][ T7048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.039144][ T7048] RIP: 0033:0x7feb489cd169
[  104.039156][ T7048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.039171][ T7048] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  104.039187][ T7048] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  104.039197][ T7048] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000008
[  104.039208][ T7048] RBP: 00007feb47037090 R08: 0000000000000010 R09: 0000000000000000
[  104.039274][ T7048] R10: 000040000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  104.039284][ T7048] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  104.039301][ T7048]  </TASK>
[  104.039306][ T7048] Mem-Info:
[  104.272615][ T7048] active_anon:23616 inactive_anon:2 isolated_anon:0
[  104.272615][ T7048]  active_file:14798 inactive_file:2282 isolated_file:0
[  104.272615][ T7048]  unevictable:0 dirty:390 writeback:0
[  104.272615][ T7048]  slab_reclaimable:3088 slab_unreclaimable:15063
[  104.272615][ T7048]  mapped:28580 shmem:19980 pagetables:1022
[  104.272615][ T7048]  sec_pagetables:0 bounce:0
[  104.272615][ T7048]  kernel_misc_reclaimable:0
[  104.272615][ T7048]  free:1871569 free_pcp:12787 free_cma:0
[  104.317843][ T7048] Node 0 active_anon:94464kB inactive_anon:8kB active_file:59192kB inactive_file:9128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:114320kB dirty:1560kB writeback:0kB shmem:79920kB writeback_tmp:0kB kernel_stack:2976kB pagetables:4088kB sec_pagetables:0kB all_unreclaimable? no
[  104.345774][ T7048] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  104.372840][ T7048] lowmem_reserve[]: 0 2885 7863 7863
[  104.378255][ T7048] Node 0 DMA32 free:2950728kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954360kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  104.407022][ T7048] lowmem_reserve[]: 0 0 4978 4978
[  104.412090][ T7048] Node 0 Normal free:4520188kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:94464kB inactive_anon:8kB active_file:59192kB inactive_file:9128kB unevictable:0kB writepending:1560kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:47492kB local_pcp:8880kB free_cma:0kB
[  104.442310][ T7048] lowmem_reserve[]: 0 0 0 0
[  104.446920][ T7048] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  104.459625][ T7048] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 3*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950728kB
[  104.475800][ T7048] Node 0 Normal: 1578*4kB (UM) 398*8kB (UM) 198*16kB (UME) 50*32kB (UME) 32*64kB (UM) 145*128kB (UME) 133*256kB (UME) 80*512kB (UME) 31*1024kB (UM) 16*2048kB (UME) 1061*4096kB (UM) = 4520248kB
[  104.495164][ T7048] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  104.504473][ T7048] 37061 total pagecache pages
[  104.509156][ T7048] 2 pages in swap cache
[  104.513347][ T7048] Free swap  = 124764kB
[  104.517513][ T7048] Total swap = 124996kB
[  104.521742][ T7048] 2097051 pages RAM
[  104.525556][ T7048] 0 pages HighMem/MovableOnly
[  104.530252][ T7048] 80069 pages reserved
[  104.568142][ T7059] usb usb8: usbfs: process 7059 (syz.2.1186) did not claim interface 0 before use
[  104.580240][ T7058] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.628239][ T7058] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.716652][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.729635][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.742327][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.743235][ T7058] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.755563][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.779232][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.792325][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.805257][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.820347][ T7058] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.832282][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.845002][ T7075] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7075 comm=syz.4.1192
[  104.873091][ T7081] loop7: detected capacity change from 0 to 16384
[  105.110370][ T7084] FAULT_INJECTION: forcing a failure.
[  105.110370][ T7084] name failslab, interval 1, probability 0, space 0, times 0
[  105.123110][ T7084] CPU: 1 UID: 0 PID: 7084 Comm: syz.2.1196 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  105.123139][ T7084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.123154][ T7084] Call Trace:
[  105.123162][ T7084]  <TASK>
[  105.123201][ T7084]  dump_stack_lvl+0xf2/0x150
[  105.123235][ T7084]  dump_stack+0x15/0x1a
[  105.123262][ T7084]  should_fail_ex+0x24a/0x260
[  105.123296][ T7084]  should_failslab+0x8f/0xb0
[  105.123396][ T7084]  __kmalloc_noprof+0xab/0x3f0
[  105.123422][ T7084]  ? nla_strdup+0x7b/0xc0
[  105.123468][ T7084]  nla_strdup+0x7b/0xc0
[  105.123584][ T7084]  nf_tables_newchain+0x1208/0x1870
[  105.123620][ T7084]  ? get_random_u32+0x1a4/0x240
[  105.123670][ T7084]  ? __nla_parse+0x40/0x60
[  105.123699][ T7084]  nfnetlink_rcv+0xb3e/0x15d0
[  105.123761][ T7084]  netlink_unicast+0x599/0x670
[  105.123797][ T7084]  netlink_sendmsg+0x5cc/0x6e0
[  105.123876][ T7084]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.123917][ T7084]  __sock_sendmsg+0x140/0x180
[  105.123985][ T7084]  ____sys_sendmsg+0x326/0x4b0
[  105.124081][ T7084]  __sys_sendmsg+0x19d/0x230
[  105.124131][ T7084]  __x64_sys_sendmsg+0x46/0x50
[  105.124155][ T7084]  x64_sys_call+0x2734/0x2dc0
[  105.124196][ T7084]  do_syscall_64+0xc9/0x1c0
[  105.124223][ T7084]  ? clear_bhb_loop+0x55/0xb0
[  105.124245][ T7084]  ? clear_bhb_loop+0x55/0xb0
[  105.124270][ T7084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.124332][ T7084] RIP: 0033:0x7feb489cd169
[  105.124345][ T7084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.124389][ T7084] RSP: 002b:00007feb47016038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.124408][ T7084] RAX: ffffffffffffffda RBX: 00007feb48be6080 RCX: 00007feb489cd169
[  105.124420][ T7084] RDX: 0000000000000000 RSI: 000040000000c2c0 RDI: 0000000000000008
[  105.124505][ T7084] RBP: 00007feb47016090 R08: 0000000000000000 R09: 0000000000000000
[  105.124520][ T7084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  105.124534][ T7084] R13: 0000000000000000 R14: 00007feb48be6080 R15: 00007ffee6daaa98
[  105.124556][ T7084]  </TASK>
[  105.629908][ T7103] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.638370][ T7103] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.212355][ T7109] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1206'.
[  106.239397][ T7111] netlink: 'syz.4.1207': attribute type 13 has an invalid length.
[  106.263247][ T7113] loop5: detected capacity change from 0 to 128
[  106.284546][ T7111] loop4: detected capacity change from 0 to 2048
[  106.304008][   T30] kauditd_printk_skb: 406 callbacks suppressed
[  106.304024][   T30] audit: type=1400 audit(1742146570.091:3934): avc:  denied  { unmount } for  pid=4147 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  106.356120][ T7111]  loop4: p1 < > p4
[  106.360622][ T7111] loop4: p4 size 8388608 extends beyond EOD, truncated
[  106.371180][   T30] audit: type=1326 audit(1742146570.171:3935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.394780][   T30] audit: type=1326 audit(1742146570.171:3936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.425747][   T30] audit: type=1326 audit(1742146570.171:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.449225][   T30] audit: type=1326 audit(1742146570.171:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.472775][   T30] audit: type=1326 audit(1742146570.171:3939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.496258][   T30] audit: type=1326 audit(1742146570.171:3940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.519968][   T30] audit: type=1326 audit(1742146570.171:3941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.543503][   T30] audit: type=1326 audit(1742146570.171:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.567152][   T30] audit: type=1326 audit(1742146570.171:3943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7110 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  106.730939][ T7130] loop4: detected capacity change from 0 to 2048
[  106.777926][ T7131] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1214'.
[  106.810666][ T7134] syzkaller1: entered promiscuous mode
[  106.816218][ T7134] syzkaller1: entered allmulticast mode
[  106.823650][ T7134] FAULT_INJECTION: forcing a failure.
[  106.823650][ T7134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.836836][ T7134] CPU: 0 UID: 0 PID: 7134 Comm: syz.4.1215 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  106.836866][ T7134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  106.836879][ T7134] Call Trace:
[  106.836886][ T7134]  <TASK>
[  106.836893][ T7134]  dump_stack_lvl+0xf2/0x150
[  106.836933][ T7134]  dump_stack+0x15/0x1a
[  106.836971][ T7134]  should_fail_ex+0x24a/0x260
[  106.837033][ T7134]  should_fail+0xb/0x10
[  106.837066][ T7134]  should_fail_usercopy+0x1a/0x20
[  106.837103][ T7134]  _copy_from_iter+0xd5/0xd00
[  106.837255][ T7134]  ? mntput_no_expire+0x70/0x3d0
[  106.837289][ T7134]  ? mntput+0x49/0x70
[  106.837460][ T7134]  tun_get_user+0x2b3/0x25c0
[  106.837568][ T7134]  ? path_openat+0x1a78/0x1fc0
[  106.837595][ T7134]  ? _parse_integer+0x27/0x30
[  106.837625][ T7134]  ? ref_tracker_alloc+0x1f5/0x2f0
[  106.837660][ T7134]  tun_chr_write_iter+0x188/0x240
[  106.837732][ T7134]  vfs_write+0x77b/0x920
[  106.837757][ T7134]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  106.837818][ T7134]  ksys_write+0xe8/0x1b0
[  106.837852][ T7134]  __x64_sys_write+0x42/0x50
[  106.837959][ T7134]  x64_sys_call+0x287e/0x2dc0
[  106.837992][ T7134]  do_syscall_64+0xc9/0x1c0
[  106.838071][ T7134]  ? clear_bhb_loop+0x55/0xb0
[  106.838173][ T7134]  ? clear_bhb_loop+0x55/0xb0
[  106.838200][ T7134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.838295][ T7134] RIP: 0033:0x7f3b5addd169
[  106.838311][ T7134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.838329][ T7134] RSP: 002b:00007f3b59447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  106.838349][ T7134] RAX: ffffffffffffffda RBX: 00007f3b5aff5fa0 RCX: 00007f3b5addd169
[  106.838364][ T7134] RDX: 000000000000fdef RSI: 0000400000000080 RDI: 0000000000000003
[  106.838379][ T7134] RBP: 00007f3b59447090 R08: 0000000000000000 R09: 0000000000000000
[  106.838393][ T7134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.838425][ T7134] R13: 0000000000000000 R14: 00007f3b5aff5fa0 R15: 00007ffc555dba28
[  106.838524][ T7134]  </TASK>
[  107.141966][ T7138] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1217'.
[  107.187165][ T7142] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1219'.
[  107.244331][ T7146] loop2: detected capacity change from 0 to 128
[  107.262894][ T7146] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.276615][ T7146] ext4 filesystem being mounted at /253/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  107.298750][ T3310] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.317197][ T7150] netlink: 'syz.2.1222': attribute type 13 has an invalid length.
[  107.384869][ T7150] loop2: detected capacity change from 0 to 2048
[  107.409953][ T7159] loop4: detected capacity change from 0 to 512
[  107.416942][ T7159] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  107.428223][ T7159] EXT4-fs (loop4): 1 truncate cleaned up
[  107.434279][ T7159] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.446478][ T7150]  loop2: p1 < > p4
[  107.450906][ T7150] loop2: p4 size 8388608 extends beyond EOD, truncated
[  107.471320][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.485338][ T7160] loop5: detected capacity change from 0 to 256
[  107.500346][ T7160] FAT-fs (loop5): codepage cp869 not found
[  107.552278][ T7167] loop4: detected capacity change from 0 to 8192
[  107.595857][ T7167]  loop4: p1 p3 p4
[  107.599760][ T7167] loop4: p1 size 8390912 extends beyond EOD, truncated
[  107.608482][ T7167] loop4: p3 size 589824 extends beyond EOD, truncated
[  107.813356][ T7058] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.825286][ T7058] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.838873][ T7058] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.851729][ T7058] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.880919][ T7179] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1230'.
[  108.320150][ T7193] netlink: 'syz.5.1237': attribute type 13 has an invalid length.
[  108.358948][ T7197] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1240'.
[  108.380986][    C0] vxcan0: j1939_session_tx_dat: 0xffff8881181afa00: queue data error: -100
[  108.398850][ T7193] loop5: detected capacity change from 0 to 2048
[  108.426486][ T7193]  loop5: p1 < > p4
[  108.432580][ T7193] loop5: p4 size 8388608 extends beyond EOD, truncated
[  108.435335][ T7200] loop7: detected capacity change from 0 to 512
[  108.449155][ T7200] EXT4-fs (loop7): orphan cleanup on readonly fs
[  108.466286][ T7200] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1239: bg 0: block 248: padding at end of block bitmap is not set
[  108.491593][ T7200] EXT4-fs error (device loop7): ext4_acquire_dquot:6927: comm syz.7.1239: Failed to acquire dquot type 1
[  108.510198][ T7200] EXT4-fs (loop7): 1 truncate cleaned up
[  108.536554][ T7211] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1245'.
[  108.546158][ T7200] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.567082][ T7200] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  108.588518][ T7200] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  108.661163][ T7229] netlink: 'syz.2.1253': attribute type 13 has an invalid length.
[  108.709826][ T7229] loop2: detected capacity change from 0 to 2048
[  108.722167][ T7236] selinux_netlink_send: 230 callbacks suppressed
[  108.722188][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.772761][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.836016][ T7229]  loop2: p1 < > p4
[  108.857543][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.872111][ T7229] loop2: p4 size 8388608 extends beyond EOD, truncated
[  108.883188][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.900116][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.912760][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.926213][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.949116][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.963227][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  108.977980][ T7295] loop5: detected capacity change from 0 to 256
[  108.979429][ T7236] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7236 comm=syz.4.1254
[  109.119161][ T7313] program syz.5.1265 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.132029][ T7313] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1265'.
[  109.150519][ T7313] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1265'.
[  109.162814][ T7315] netlink: 'syz.2.1266': attribute type 13 has an invalid length.
[  109.201606][ T6268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.203585][ T7317] loop5: detected capacity change from 0 to 128
[  109.219088][ T7317] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.233553][ T7317] ext4 filesystem being mounted at /203/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  109.251518][ T7319] loop2: detected capacity change from 0 to 2048
[  109.260157][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  109.296137][ T7319]  loop2: p1 < > p4
[  109.300484][ T7319] loop2: p4 size 8388608 extends beyond EOD, truncated
[  109.439154][ T7347] loop5: detected capacity change from 0 to 128
[  109.466174][ T7347] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.479196][ T7347] ext4 filesystem being mounted at /207/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  109.502779][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  109.513198][ T7355] netlink: 'syz.2.1282': attribute type 13 has an invalid length.
[  109.553621][ T7364] FAULT_INJECTION: forcing a failure.
[  109.553621][ T7364] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.566783][ T7364] CPU: 1 UID: 0 PID: 7364 Comm: syz.4.1286 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  109.566849][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  109.566864][ T7364] Call Trace:
[  109.566871][ T7364]  <TASK>
[  109.566880][ T7364]  dump_stack_lvl+0xf2/0x150
[  109.566913][ T7364]  dump_stack+0x15/0x1a
[  109.567005][ T7364]  should_fail_ex+0x24a/0x260
[  109.567044][ T7364]  should_fail+0xb/0x10
[  109.567078][ T7364]  should_fail_usercopy+0x1a/0x20
[  109.567148][ T7364]  _copy_from_user+0x1c/0xa0
[  109.567172][ T7364]  __se_sys_mount+0x115/0x2d0
[  109.567211][ T7364]  ? fput+0x1c4/0x200
[  109.567236][ T7364]  ? ksys_write+0x176/0x1b0
[  109.567270][ T7364]  __x64_sys_mount+0x67/0x80
[  109.567336][ T7364]  x64_sys_call+0x2c84/0x2dc0
[  109.567370][ T7364]  do_syscall_64+0xc9/0x1c0
[  109.567408][ T7364]  ? clear_bhb_loop+0x55/0xb0
[  109.567499][ T7364]  ? clear_bhb_loop+0x55/0xb0
[  109.567531][ T7364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.567565][ T7364] RIP: 0033:0x7f3b5addd169
[  109.567583][ T7364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.567604][ T7364] RSP: 002b:00007f3b59447038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  109.567700][ T7364] RAX: ffffffffffffffda RBX: 00007f3b5aff5fa0 RCX: 00007f3b5addd169
[  109.567786][ T7364] RDX: 0000400000000180 RSI: 0000400000000000 RDI: 0000000000000000
[  109.567799][ T7364] RBP: 00007f3b59447090 R08: 0000400000000680 R09: 0000000000000000
[  109.567812][ T7364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.567823][ T7364] R13: 0000000000000000 R14: 00007f3b5aff5fa0 R15: 00007ffc555dba28
[  109.567842][ T7364]  </TASK>
[  109.572495][ T7355] loop2: detected capacity change from 0 to 2048
[  109.766700][ T7355]  loop2: p1 < > p4
[  109.771038][ T7355] loop2: p4 size 8388608 extends beyond EOD, truncated
[  109.789294][ T7366] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1287'.
[  109.810989][ T7368] loop7: detected capacity change from 0 to 16384
[  109.931272][ T7378] loop5: detected capacity change from 0 to 128
[  109.950859][ T7378] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.974929][ T7378] ext4 filesystem being mounted at /211/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  110.062677][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.095057][ T7380] loop4: detected capacity change from 0 to 256
[  110.170499][ T7384] bond1: entered promiscuous mode
[  110.175608][ T7384] bond1: entered allmulticast mode
[  110.181224][ T7384] 8021q: adding VLAN 0 to HW filter on device bond1
[  110.190656][ T7384] bond1 (unregistering): Released all slaves
[  110.380811][ T7401] FAULT_INJECTION: forcing a failure.
[  110.380811][ T7401] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  110.394260][ T7401] CPU: 0 UID: 0 PID: 7401 Comm: syz.2.1301 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  110.394345][ T7401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.394360][ T7401] Call Trace:
[  110.394367][ T7401]  <TASK>
[  110.394376][ T7401]  dump_stack_lvl+0xf2/0x150
[  110.394411][ T7401]  dump_stack+0x15/0x1a
[  110.394438][ T7401]  should_fail_ex+0x24a/0x260
[  110.394476][ T7401]  should_fail_alloc_page+0xfd/0x110
[  110.394519][ T7401]  __alloc_frozen_pages_noprof+0x109/0x340
[  110.394561][ T7401]  alloc_pages_mpol+0xb4/0x260
[  110.394600][ T7401]  alloc_pages_noprof+0xe8/0x130
[  110.394712][ T7401]  kimage_alloc_control_pages+0x14a/0x730
[  110.394762][ T7401]  do_kexec_load+0x2c9/0x510
[  110.394789][ T7401]  __se_sys_kexec_load+0x12b/0x160
[  110.394815][ T7401]  __x64_sys_kexec_load+0x55/0x70
[  110.394838][ T7401]  x64_sys_call+0x2cac/0x2dc0
[  110.394884][ T7401]  do_syscall_64+0xc9/0x1c0
[  110.394935][ T7401]  ? clear_bhb_loop+0x55/0xb0
[  110.394968][ T7401]  ? clear_bhb_loop+0x55/0xb0
[  110.395012][ T7401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.395040][ T7401] RIP: 0033:0x7feb489cd169
[  110.395059][ T7401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.395121][ T7401] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  110.395144][ T7401] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  110.395159][ T7401] RDX: 0000400000000140 RSI: 0000000000000001 RDI: 0000000000000000
[  110.395174][ T7401] RBP: 00007feb47037090 R08: 0000000000000000 R09: 0000000000000000
[  110.395189][ T7401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.395202][ T7401] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  110.395227][ T7401]  </TASK>
[  110.395239][ T7401] kexec: Could not allocate control_code_buffer
[  110.728969][ T7376] infiniband syz!: set active
[  110.733696][ T7376] infiniband syz!: added team_slave_0
[  110.753117][ T7407] loop7: detected capacity change from 0 to 256
[  110.758811][ T7376] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  110.759668][ T7376] infiniband syz!: Couldn't open port 1
[  110.795970][ T7376] RDS/IB: syz!: added
[  110.800056][ T7376] smc: adding ib device syz! with port count 1
[  110.807397][ T7376] smc:    ib device syz! port 1 has pnetid 
[  110.843537][ T7412] loop7: detected capacity change from 0 to 16384
[  111.171729][ T7427] FAULT_INJECTION: forcing a failure.
[  111.171729][ T7427] name failslab, interval 1, probability 0, space 0, times 0
[  111.184504][ T7427] CPU: 0 UID: 0 PID: 7427 Comm: syz.7.1313 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  111.184545][ T7427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  111.184560][ T7427] Call Trace:
[  111.184568][ T7427]  <TASK>
[  111.184578][ T7427]  dump_stack_lvl+0xf2/0x150
[  111.184609][ T7427]  dump_stack+0x15/0x1a
[  111.184775][ T7427]  should_fail_ex+0x24a/0x260
[  111.184814][ T7427]  should_failslab+0x8f/0xb0
[  111.184883][ T7427]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  111.184913][ T7427]  ? sidtab_sid2str_get+0xb8/0x140
[  111.184946][ T7427]  kmemdup_noprof+0x2b/0x70
[  111.185048][ T7427]  sidtab_sid2str_get+0xb8/0x140
[  111.185146][ T7427]  security_sid_to_context_core+0x1eb/0x2f0
[  111.185197][ T7427]  security_sid_to_context+0x27/0x30
[  111.185271][ T7427]  avc_audit_post_callback+0x9d/0x530
[  111.185330][ T7427]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  111.185375][ T7427]  common_lsm_audit+0x90e/0x10c0
[  111.185408][ T7427]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  111.185502][ T7427]  slow_avc_audit+0xf9/0x140
[  111.185549][ T7427]  avc_has_perm+0x129/0x160
[  111.185576][ T7427]  selinux_lsm_setattr+0x116/0x640
[  111.185622][ T7427]  selinux_setprocattr+0x4e/0x70
[  111.185658][ T7427]  security_setprocattr+0x198/0x1c0
[  111.185685][ T7427]  proc_pid_attr_write+0x1e7/0x220
[  111.185712][ T7427]  ? __pfx_proc_pid_attr_write+0x10/0x10
[  111.185741][ T7427]  vfs_write+0x27d/0x920
[  111.185820][ T7427]  ? __fget_files+0x17c/0x1c0
[  111.185860][ T7427]  ksys_write+0xe8/0x1b0
[  111.185887][ T7427]  __x64_sys_write+0x42/0x50
[  111.185985][ T7427]  x64_sys_call+0x287e/0x2dc0
[  111.186011][ T7427]  do_syscall_64+0xc9/0x1c0
[  111.186060][ T7427]  ? clear_bhb_loop+0x55/0xb0
[  111.186094][ T7427]  ? clear_bhb_loop+0x55/0xb0
[  111.186126][ T7427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.186261][ T7427] RIP: 0033:0x7fdf8a86d169
[  111.186279][ T7427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.186300][ T7427] RSP: 002b:00007fdf88ed7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.186318][ T7427] RAX: ffffffffffffffda RBX: 00007fdf8aa85fa0 RCX: 00007fdf8a86d169
[  111.186410][ T7427] RDX: 000000000000001d RSI: 0000400000000100 RDI: 0000000000000003
[  111.186425][ T7427] RBP: 00007fdf88ed7090 R08: 0000000000000000 R09: 0000000000000000
[  111.186440][ T7427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.186452][ T7427] R13: 0000000000000000 R14: 00007fdf8aa85fa0 R15: 00007ffe2c4d5268
[  111.186473][ T7427]  </TASK>
[  111.441584][   T30] kauditd_printk_skb: 128 callbacks suppressed
[  111.441641][   T30] audit: type=1400 audit(1742146574.961:4070): avc:  denied  { setcurrent } for  pid=7426 comm="syz.7.1313" ssid=135 tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  111.819173][   T30] audit: type=1401 audit(1742146575.611:4071): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  111.908576][ T7433] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1314'.
[  111.941800][ T7433] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1314'.
[  112.132860][   T30] audit: type=1400 audit(1742146575.921:4072): avc:  denied  { read } for  pid=7437 comm="syz.4.1316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  112.258087][ T7448] FAULT_INJECTION: forcing a failure.
[  112.258087][ T7448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.271248][ T7448] CPU: 1 UID: 0 PID: 7448 Comm: syz.2.1320 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  112.271275][ T7448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.271288][ T7448] Call Trace:
[  112.271294][ T7448]  <TASK>
[  112.271302][ T7448]  dump_stack_lvl+0xf2/0x150
[  112.271393][ T7448]  dump_stack+0x15/0x1a
[  112.271414][ T7448]  should_fail_ex+0x24a/0x260
[  112.271464][ T7448]  should_fail+0xb/0x10
[  112.271491][ T7448]  should_fail_usercopy+0x1a/0x20
[  112.271581][ T7448]  _copy_from_user+0x1c/0xa0
[  112.271600][ T7448]  memdup_user+0x64/0xc0
[  112.271628][ T7448]  strndup_user+0x68/0xa0
[  112.271806][ T7448]  __se_sys_request_key+0xe3/0x290
[  112.271875][ T7448]  ? fput+0x1c4/0x200
[  112.271899][ T7448]  __x64_sys_request_key+0x55/0x70
[  112.271998][ T7448]  x64_sys_call+0x296e/0x2dc0
[  112.272041][ T7448]  do_syscall_64+0xc9/0x1c0
[  112.272073][ T7448]  ? clear_bhb_loop+0x55/0xb0
[  112.272101][ T7448]  ? clear_bhb_loop+0x55/0xb0
[  112.272128][ T7448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.272204][ T7448] RIP: 0033:0x7feb489cd169
[  112.272219][ T7448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.272237][ T7448] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f9
[  112.272255][ T7448] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  112.272267][ T7448] RDX: 00004000000001c0 RSI: 00004000000002c0 RDI: 0000400000001000
[  112.272280][ T7448] RBP: 00007feb47037090 R08: 0000000000000000 R09: 0000000000000000
[  112.272291][ T7448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.272331][ T7448] R13: 0000000000000001 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  112.272349][ T7448]  </TASK>
[  112.419077][ T7451] loop7: detected capacity change from 0 to 16384
[  112.457840][ T7455] FAULT_INJECTION: forcing a failure.
[  112.457840][ T7455] name failslab, interval 1, probability 0, space 0, times 0
[  112.472868][ T7455] CPU: 0 UID: 0 PID: 7455 Comm: +}[@ Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  112.472899][ T7455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.472914][ T7455] Call Trace:
[  112.472922][ T7455]  <TASK>
[  112.472932][ T7455]  dump_stack_lvl+0xf2/0x150
[  112.472967][ T7455]  dump_stack+0x15/0x1a
[  112.473009][ T7455]  should_fail_ex+0x24a/0x260
[  112.473147][ T7455]  should_failslab+0x8f/0xb0
[  112.473178][ T7455]  kmem_cache_alloc_noprof+0x52/0x320
[  112.473208][ T7455]  ? security_file_alloc+0x32/0x100
[  112.473241][ T7455]  security_file_alloc+0x32/0x100
[  112.473268][ T7455]  init_file+0x5d/0x1b0
[  112.473312][ T7455]  alloc_empty_file+0xea/0x200
[  112.473333][ T7455]  alloc_file_pseudo+0xc9/0x160
[  112.473357][ T7455]  __shmem_file_setup+0x1bb/0x1f0
[  112.473433][ T7455]  shmem_file_setup+0x3b/0x50
[  112.473566][ T7455]  __se_sys_memfd_create+0x2e1/0x5a0
[  112.473595][ T7455]  __x64_sys_memfd_create+0x31/0x40
[  112.473623][ T7455]  x64_sys_call+0x2d4c/0x2dc0
[  112.473656][ T7455]  do_syscall_64+0xc9/0x1c0
[  112.473764][ T7455]  ? clear_bhb_loop+0x55/0xb0
[  112.473839][ T7455]  ? clear_bhb_loop+0x55/0xb0
[  112.473866][ T7455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.473892][ T7455] RIP: 0033:0x7f13acded169
[  112.473967][ T7455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.473988][ T7455] RSP: 002b:00007f13ab456d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  112.474009][ T7455] RAX: ffffffffffffffda RBX: 00000000000005c8 RCX: 00007f13acded169
[  112.474022][ T7455] RDX: 00007f13ab456dec RSI: 0000000000000000 RDI: 00007f13ace6ec3c
[  112.474036][ T7455] RBP: 0000400000000600 R08: 00007f13ab456b07 R09: 0000000000000000
[  112.474050][ T7455] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  112.474124][ T7455] R13: 00007f13ab456dec R14: 00007f13ab456df0 R15: 00007fff707179f8
[  112.474142][ T7455]  </TASK>
[  112.697438][ T7457] loop5: detected capacity change from 0 to 128
[  112.708471][ T7457] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.725013][ T7457] ext4 filesystem being mounted at /217/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  112.777112][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.802609][ T7467] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1328'.
[  112.825852][ T7467] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1328'.
[  112.913310][ T7472] loop5: detected capacity change from 0 to 256
[  112.928145][ T7473] loop4: detected capacity change from 0 to 2048
[  112.935589][ T7472] netem: change failed
[  112.951466][ T7473] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.987960][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.118884][ T7487] loop5: detected capacity change from 0 to 512
[  113.135395][ T7487] EXT4-fs (loop5): orphan cleanup on readonly fs
[  113.143283][ T7487] Quota error (device loop5): v2_read_file_info: Block with free entry 2 out of range (1, 0).
[  113.154180][ T7487] EXT4-fs warning (device loop5): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  113.170811][ T7487] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  113.177893][ T7487] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #13: comm syz.5.1336: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  113.197098][ T7487] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1336: couldn't read orphan inode 13 (err -117)
[  113.209516][ T7487] EXT4-fs (loop5): mounted filesystem 00000000-0000-0b00-0000-000000000000 ro without journal. Quota mode: writeback.
[  113.223698][ T7487] program syz.5.1336 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.238313][ T7487] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  113.265211][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0b00-0000-000000000000.
[  113.481518][ T7507] loop7: detected capacity change from 0 to 16384
[  113.532579][   T30] audit: type=1326 audit(1742146577.321:4073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13acded169 code=0x7ffc0000
[  113.556226][   T30] audit: type=1326 audit(1742146577.321:4074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13acded169 code=0x7ffc0000
[  113.593237][   T30] audit: type=1326 audit(1742146577.381:4075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f13acdebc1f code=0x7ffc0000
[  113.616644][   T30] audit: type=1326 audit(1742146577.381:4076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13acded169 code=0x7ffc0000
[  113.640285][   T30] audit: type=1326 audit(1742146577.381:4077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13acded169 code=0x7ffc0000
[  113.663815][   T30] audit: type=1326 audit(1742146577.381:4078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f13acded169 code=0x7ffc0000
[  113.713386][ T7513] FAULT_INJECTION: forcing a failure.
[  113.713386][ T7513] name failslab, interval 1, probability 0, space 0, times 0
[  113.726205][ T7513] CPU: 0 UID: 0 PID: 7513 Comm: syz.6.1346 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  113.726230][ T7513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.726241][ T7513] Call Trace:
[  113.726247][ T7513]  <TASK>
[  113.726255][ T7513]  dump_stack_lvl+0xf2/0x150
[  113.726344][ T7513]  dump_stack+0x15/0x1a
[  113.726366][ T7513]  should_fail_ex+0x24a/0x260
[  113.726400][ T7513]  should_failslab+0x8f/0xb0
[  113.726498][ T7513]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  113.726545][ T7513]  ? ethnl_default_set_doit+0x214/0x5f0
[  113.726694][ T7513]  kmemdup_noprof+0x2b/0x70
[  113.726721][ T7513]  ethnl_default_set_doit+0x214/0x5f0
[  113.726754][ T7513]  ? genl_family_rcv_msg_attrs_parse+0x148/0x1a0
[  113.726854][ T7513]  ? genl_family_rcv_msg_attrs_parse+0x182/0x1a0
[  113.726883][ T7513]  genl_rcv_msg+0x620/0x6d0
[  113.726906][ T7513]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  113.727022][ T7513]  ? __dev_queue_xmit+0xb6e/0x2090
[  113.727059][ T7513]  netlink_rcv_skb+0x12c/0x230
[  113.727143][ T7513]  ? __pfx_genl_rcv_msg+0x10/0x10
[  113.727182][ T7513]  genl_rcv+0x28/0x40
[  113.727207][ T7513]  netlink_unicast+0x599/0x670
[  113.727242][ T7513]  netlink_sendmsg+0x5cc/0x6e0
[  113.727361][ T7513]  ? __pfx_netlink_sendmsg+0x10/0x10
[  113.727583][ T7513]  __sock_sendmsg+0x140/0x180
[  113.727624][ T7513]  ____sys_sendmsg+0x326/0x4b0
[  113.727729][ T7513]  __sys_sendmsg+0x19d/0x230
[  113.727777][ T7513]  __x64_sys_sendmsg+0x46/0x50
[  113.727809][ T7513]  x64_sys_call+0x2734/0x2dc0
[  113.727841][ T7513]  do_syscall_64+0xc9/0x1c0
[  113.727881][ T7513]  ? clear_bhb_loop+0x55/0xb0
[  113.727915][ T7513]  ? clear_bhb_loop+0x55/0xb0
[  113.727949][ T7513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.727982][ T7513] RIP: 0033:0x7f428191d169
[  113.728073][ T7513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.728095][ T7513] RSP: 002b:00007f427ff87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  113.728118][ T7513] RAX: ffffffffffffffda RBX: 00007f4281b35fa0 RCX: 00007f428191d169
[  113.728134][ T7513] RDX: 0000000000000000 RSI: 0000400000001540 RDI: 0000000000000003
[  113.728148][ T7513] RBP: 00007f427ff87090 R08: 0000000000000000 R09: 0000000000000000
[  113.728162][ T7513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.728176][ T7513] R13: 0000000000000000 R14: 00007f4281b35fa0 R15: 00007ffec6872048
[  113.728213][ T7513]  </TASK>
[  114.047623][ T7520] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1351'.
[  114.056735][ T7520] netlink: 'syz.4.1351': attribute type 7 has an invalid length.
[  114.064461][ T7520] netlink: 'syz.4.1351': attribute type 8 has an invalid length.
[  114.072269][ T7520] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1351'.
[  114.107154][ T7525] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1351'.
[  114.192285][ T7531] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.237499][ T7531] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.287409][ T7531] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.333473][ T7539] FAULT_INJECTION: forcing a failure.
[  114.333473][ T7539] name failslab, interval 1, probability 0, space 0, times 0
[  114.346195][ T7539] CPU: 1 UID: 0 PID: 7539 Comm: syz.2.1359 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  114.346226][ T7539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.346242][ T7539] Call Trace:
[  114.346250][ T7539]  <TASK>
[  114.346257][ T7539]  dump_stack_lvl+0xf2/0x150
[  114.346340][ T7539]  dump_stack+0x15/0x1a
[  114.346361][ T7539]  should_fail_ex+0x24a/0x260
[  114.346416][ T7539]  should_failslab+0x8f/0xb0
[  114.346527][ T7539]  __kmalloc_cache_node_noprof+0x56/0x320
[  114.346552][ T7539]  ? __get_vm_area_node+0xfb/0x1c0
[  114.346631][ T7539]  __get_vm_area_node+0xfb/0x1c0
[  114.346722][ T7539]  __vmalloc_node_range_noprof+0x280/0xe70
[  114.346757][ T7539]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  114.346877][ T7539]  ? save_fpregs_to_fpstate+0x102/0x160
[  114.346921][ T7539]  ? _raw_spin_unlock+0x26/0x50
[  114.346946][ T7539]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  114.347035][ T7539]  __vmalloc_noprof+0x5e/0x70
[  114.347071][ T7539]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  114.347104][ T7539]  bpf_prog_alloc_no_stats+0x49/0x380
[  114.347210][ T7539]  ? bpf_prog_alloc+0x28/0x150
[  114.347240][ T7539]  bpf_prog_alloc+0x3a/0x150
[  114.347268][ T7539]  __get_filter+0x90/0x220
[  114.347292][ T7539]  sk_attach_filter+0x1e/0xe0
[  114.347351][ T7539]  sk_setsockopt+0x196b/0x1f00
[  114.347391][ T7539]  sock_setsockopt+0x3c/0x50
[  114.347419][ T7539]  __sys_setsockopt+0x13d/0x200
[  114.347449][ T7539]  __x64_sys_setsockopt+0x66/0x80
[  114.347478][ T7539]  x64_sys_call+0x282e/0x2dc0
[  114.347509][ T7539]  do_syscall_64+0xc9/0x1c0
[  114.347603][ T7539]  ? clear_bhb_loop+0x55/0xb0
[  114.347630][ T7539]  ? clear_bhb_loop+0x55/0xb0
[  114.347724][ T7539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.347811][ T7539] RIP: 0033:0x7feb489cd169
[  114.347830][ T7539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.347930][ T7539] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  114.347954][ T7539] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  114.347969][ T7539] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005
[  114.347991][ T7539] RBP: 00007feb47037090 R08: 0000000000000010 R09: 0000000000000000
[  114.348011][ T7539] R10: 000040000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  114.348055][ T7539] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  114.348075][ T7539]  </TASK>
[  114.348085][ T7539] syz.2.1359: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  114.606684][ T7539] CPU: 1 UID: 0 PID: 7539 Comm: syz.2.1359 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  114.606705][ T7539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.606843][ T7539] Call Trace:
[  114.606851][ T7539]  <TASK>
[  114.606858][ T7539]  dump_stack_lvl+0xf2/0x150
[  114.606888][ T7539]  dump_stack+0x15/0x1a
[  114.606988][ T7539]  warn_alloc+0x145/0x1b0
[  114.607024][ T7539]  ? __get_vm_area_node+0xfb/0x1c0
[  114.607051][ T7539]  __vmalloc_node_range_noprof+0x2a5/0xe70
[  114.607082][ T7539]  ? save_fpregs_to_fpstate+0x102/0x160
[  114.607112][ T7539]  ? _raw_spin_unlock+0x26/0x50
[  114.607198][ T7539]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  114.607266][ T7539]  __vmalloc_noprof+0x5e/0x70
[  114.607290][ T7539]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  114.607315][ T7539]  bpf_prog_alloc_no_stats+0x49/0x380
[  114.607340][ T7539]  ? bpf_prog_alloc+0x28/0x150
[  114.607412][ T7539]  bpf_prog_alloc+0x3a/0x150
[  114.607437][ T7539]  __get_filter+0x90/0x220
[  114.607455][ T7539]  sk_attach_filter+0x1e/0xe0
[  114.607493][ T7539]  sk_setsockopt+0x196b/0x1f00
[  114.607516][ T7539]  sock_setsockopt+0x3c/0x50
[  114.607535][ T7539]  __sys_setsockopt+0x13d/0x200
[  114.607649][ T7539]  __x64_sys_setsockopt+0x66/0x80
[  114.607677][ T7539]  x64_sys_call+0x282e/0x2dc0
[  114.607699][ T7539]  do_syscall_64+0xc9/0x1c0
[  114.607725][ T7539]  ? clear_bhb_loop+0x55/0xb0
[  114.607748][ T7539]  ? clear_bhb_loop+0x55/0xb0
[  114.607770][ T7539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.607806][ T7539] RIP: 0033:0x7feb489cd169
[  114.607819][ T7539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.607834][ T7539] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  114.607850][ T7539] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  114.607926][ T7539] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005
[  114.607937][ T7539] RBP: 00007feb47037090 R08: 0000000000000010 R09: 0000000000000000
[  114.607951][ T7539] R10: 000040000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  114.608040][ T7539] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  114.608057][ T7539]  </TASK>
[  114.608063][ T7539] Mem-Info:
[  114.831741][ T7539] active_anon:23660 inactive_anon:2 isolated_anon:0
[  114.831741][ T7539]  active_file:14798 inactive_file:2272 isolated_file:0
[  114.831741][ T7539]  unevictable:0 dirty:120 writeback:0
[  114.831741][ T7539]  slab_reclaimable:3157 slab_unreclaimable:16472
[  114.831741][ T7539]  mapped:28574 shmem:19996 pagetables:962
[  114.831741][ T7539]  sec_pagetables:0 bounce:0
[  114.831741][ T7539]  kernel_misc_reclaimable:0
[  114.831741][ T7539]  free:1873125 free_pcp:9222 free_cma:0
[  114.876779][ T7539] Node 0 active_anon:94640kB inactive_anon:8kB active_file:59192kB inactive_file:9088kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:114296kB dirty:480kB writeback:0kB shmem:79984kB writeback_tmp:0kB kernel_stack:3136kB pagetables:3848kB sec_pagetables:0kB all_unreclaimable? no
[  114.905009][ T7539] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  114.911803][ T7545] FAULT_INJECTION: forcing a failure.
[  114.911803][ T7545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.932051][ T7539] lowmem_reserve[]: 0 2885 7863 7863
[  114.945097][ T7545] CPU: 0 UID: 0 PID: 7545 Comm: syz.6.1360 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  114.945128][ T7545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.945153][ T7545] Call Trace:
[  114.945160][ T7545]  <TASK>
[  114.945168][ T7545]  dump_stack_lvl+0xf2/0x150
[  114.945200][ T7545]  dump_stack+0x15/0x1a
[  114.945268][ T7545]  should_fail_ex+0x24a/0x260
[  114.945304][ T7545]  should_fail+0xb/0x10
[  114.945335][ T7545]  should_fail_usercopy+0x1a/0x20
[  114.945450][ T7545]  _copy_from_user+0x1c/0xa0
[  114.945473][ T7545]  dev_ethtool+0xce/0x14c0
[  114.945505][ T7545]  dev_ioctl+0x854/0xab0
[  114.945537][ T7545]  sock_do_ioctl+0x11c/0x260
[  114.945585][ T7545]  sock_ioctl+0x40f/0x600
[  114.945628][ T7545]  ? __pfx_sock_ioctl+0x10/0x10
[  114.945667][ T7545]  __se_sys_ioctl+0xc9/0x140
[  114.945748][ T7545]  __x64_sys_ioctl+0x43/0x50
[  114.945855][ T7545]  x64_sys_call+0x1690/0x2dc0
[  114.945947][ T7545]  do_syscall_64+0xc9/0x1c0
[  114.945987][ T7545]  ? clear_bhb_loop+0x55/0xb0
[  114.946046][ T7545]  ? clear_bhb_loop+0x55/0xb0
[  114.946081][ T7545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.946170][ T7545] RIP: 0033:0x7f428191d169
[  114.946210][ T7545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.946277][ T7545] RSP: 002b:00007f427ff87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.946300][ T7545] RAX: ffffffffffffffda RBX: 00007f4281b35fa0 RCX: 00007f428191d169
[  114.946316][ T7545] RDX: 0000400000000340 RSI: 0000000000008946 RDI: 0000000000000005
[  114.946332][ T7545] RBP: 00007f427ff87090 R08: 0000000000000000 R09: 0000000000000000
[  114.946347][ T7545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  114.946362][ T7545] R13: 0000000000000000 R14: 00007f4281b35fa0 R15: 00007ffec6872048
[  114.946385][ T7545]  </TASK>
[  115.137607][ T7539] Node 0 DMA32 free:2950728kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954360kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  115.166621][ T7539] lowmem_reserve[]: 0 0 4978 4978
[  115.171930][ T7539] Node 0 Normal free:4523340kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:94640kB inactive_anon:8kB active_file:59192kB inactive_file:9088kB unevictable:0kB writepending:480kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:32436kB local_pcp:1740kB free_cma:0kB
[  115.202047][ T7539] lowmem_reserve[]: 0 0 0 0
[  115.206639][ T7539] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  115.219545][ T7539] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 3*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950728kB
[  115.235647][ T7539] Node 0 Normal: 1621*4kB (UME) 392*8kB (UME) 518*16kB (UME) 293*32kB (UME) 97*64kB (UME) 83*128kB (UME) 131*256kB (UM) 77*512kB (UME) 27*1024kB (UM) 16*2048kB (UME) 1061*4096kB (UM) = 4523348kB
[  115.254956][ T7539] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  115.264291][ T7539] 37067 total pagecache pages
[  115.269051][ T7539] 2 pages in swap cache
[  115.273217][ T7539] Free swap  = 124764kB
[  115.277511][ T7539] Total swap = 124996kB
[  115.281705][ T7539] 2097051 pages RAM
[  115.285533][ T7539] 0 pages HighMem/MovableOnly
[  115.290225][ T7539] 80069 pages reserved
[  115.304049][ T7531] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.375427][ T7531] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.384027][ T7567] FAULT_INJECTION: forcing a failure.
[  115.384027][ T7567] name failslab, interval 1, probability 0, space 0, times 0
[  115.396718][ T7567] CPU: 0 UID: 0 PID: 7567 Comm: syz.7.1367 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  115.396749][ T7567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.396763][ T7567] Call Trace:
[  115.396772][ T7567]  <TASK>
[  115.396781][ T7567]  dump_stack_lvl+0xf2/0x150
[  115.396815][ T7567]  dump_stack+0x15/0x1a
[  115.396907][ T7567]  should_fail_ex+0x24a/0x260
[  115.396945][ T7567]  should_failslab+0x8f/0xb0
[  115.396983][ T7567]  kmem_cache_alloc_noprof+0x52/0x320
[  115.397010][ T7567]  ? audit_log_start+0x34c/0x6b0
[  115.397051][ T7567]  audit_log_start+0x34c/0x6b0
[  115.397141][ T7567]  ? kmem_cache_free+0xdc/0x2d0
[  115.397171][ T7567]  audit_seccomp+0x4b/0x130
[  115.397284][ T7567]  __seccomp_filter+0x6fa/0x1180
[  115.397313][ T7567]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  115.397349][ T7567]  ? vfs_write+0x644/0x920
[  115.397379][ T7567]  ? putname+0xcf/0xf0
[  115.397560][ T7567]  __secure_computing+0x9f/0x1c0
[  115.397589][ T7567]  syscall_trace_enter+0xd1/0x1f0
[  115.397656][ T7567]  ? fpregs_assert_state_consistent+0x83/0xa0
[  115.397680][ T7567]  do_syscall_64+0xaa/0x1c0
[  115.397791][ T7567]  ? clear_bhb_loop+0x55/0xb0
[  115.397822][ T7567]  ? clear_bhb_loop+0x55/0xb0
[  115.397855][ T7567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.397936][ T7567] RIP: 0033:0x7fdf8a86bb7c
[  115.397955][ T7567] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  115.397973][ T7567] RSP: 002b:00007fdf88ed7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  115.397995][ T7567] RAX: ffffffffffffffda RBX: 00007fdf8aa85fa0 RCX: 00007fdf8a86bb7c
[  115.398009][ T7567] RDX: 000000000000000f RSI: 00007fdf88ed70a0 RDI: 0000000000000005
[  115.398023][ T7567] RBP: 00007fdf88ed7090 R08: 0000000000000000 R09: 0000000000000000
[  115.398036][ T7567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.398073][ T7567] R13: 0000000000000000 R14: 00007fdf8aa85fa0 R15: 00007ffe2c4d5268
[  115.398090][ T7567]  </TASK>
[  115.399356][ T7568] loop7: detected capacity change from 0 to 16384
[  115.472412][ T7531] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.619606][ T7531] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.631259][ T7531] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.104239][ T6268] blk_print_req_error: 21 callbacks suppressed
[  116.104334][ T6268] I/O error, dev loop7, sector 10496 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  116.120633][ T6268] buffer_io_error: 2713 callbacks suppressed
[  116.120649][ T6268] Buffer I/O error on dev loop7, logical block 1312, lost async page write
[  116.135693][ T6268] Buffer I/O error on dev loop7, logical block 1313, lost async page write
[  116.144348][ T6268] Buffer I/O error on dev loop7, logical block 1314, lost async page write
[  116.153050][ T6268] Buffer I/O error on dev loop7, logical block 1315, lost async page write
[  116.161983][ T6268] Buffer I/O error on dev loop7, logical block 1316, lost async page write
[  116.170769][ T6268] Buffer I/O error on dev loop7, logical block 1317, lost async page write
[  116.179582][ T6268] Buffer I/O error on dev loop7, logical block 1318, lost async page write
[  116.188343][ T6268] Buffer I/O error on dev loop7, logical block 1319, lost async page write
[  116.197010][ T6268] Buffer I/O error on dev loop7, logical block 1320, lost async page write
[  116.205670][ T6268] Buffer I/O error on dev loop7, logical block 1321, lost async page write
[  116.217906][ T6268] I/O error, dev loop7, sector 11520 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  116.231606][ T6268] I/O error, dev loop7, sector 12544 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  116.259584][ T6268] I/O error, dev loop7, sector 13568 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  116.273962][ T6268] I/O error, dev loop7, sector 14592 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  116.293992][ T6268] I/O error, dev loop7, sector 15616 op 0x1:(WRITE) flags 0x800 phys_seg 96 prio class 0
[  116.382908][ T7594] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1371'.
[  116.392036][ T7594] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1371'.
[  116.442832][ T7598] FAULT_INJECTION: forcing a failure.
[  116.442832][ T7598] name failslab, interval 1, probability 0, space 0, times 0
[  116.455696][ T7598] CPU: 1 UID: 0 PID: 7598 Comm: syz.5.1382 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  116.455725][ T7598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.455756][ T7598] Call Trace:
[  116.455764][ T7598]  <TASK>
[  116.455772][ T7598]  dump_stack_lvl+0xf2/0x150
[  116.455807][ T7598]  dump_stack+0x15/0x1a
[  116.455834][ T7598]  should_fail_ex+0x24a/0x260
[  116.456011][ T7598]  should_failslab+0x8f/0xb0
[  116.456050][ T7598]  __kmalloc_noprof+0xab/0x3f0
[  116.456071][ T7598]  ? alloc_pipe_info+0x1cb/0x360
[  116.456112][ T7598]  alloc_pipe_info+0x1cb/0x360
[  116.456150][ T7598]  splice_direct_to_actor+0x60f/0x670
[  116.456202][ T7598]  ? __pfx_direct_splice_actor+0x10/0x10
[  116.456235][ T7598]  ? 0xffffffff81000000
[  116.456307][ T7598]  ? selinux_file_permission+0x22a/0x360
[  116.456346][ T7598]  ? __rcu_read_unlock+0x4e/0x70
[  116.456374][ T7598]  ? avc_policy_seqno+0x15/0x20
[  116.456396][ T7598]  ? selinux_file_permission+0x22a/0x360
[  116.456436][ T7598]  do_splice_direct+0xd7/0x150
[  116.456639][ T7598]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  116.456678][ T7598]  do_sendfile+0x398/0x660
[  116.456708][ T7598]  __x64_sys_sendfile64+0x110/0x150
[  116.456753][ T7598]  x64_sys_call+0xfbd/0x2dc0
[  116.456929][ T7598]  do_syscall_64+0xc9/0x1c0
[  116.456969][ T7598]  ? clear_bhb_loop+0x55/0xb0
[  116.457003][ T7598]  ? clear_bhb_loop+0x55/0xb0
[  116.457094][ T7598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.457127][ T7598] RIP: 0033:0x7f13acded169
[  116.457144][ T7598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.457225][ T7598] RSP: 002b:00007f13ab457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  116.457248][ T7598] RAX: ffffffffffffffda RBX: 00007f13ad005fa0 RCX: 00007f13acded169
[  116.457263][ T7598] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003
[  116.457278][ T7598] RBP: 00007f13ab457090 R08: 0000000000000000 R09: 0000000000000000
[  116.457292][ T7598] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  116.457306][ T7598] R13: 0000000000000000 R14: 00007f13ad005fa0 R15: 00007fff707179f8
[  116.457329][ T7598]  </TASK>
[  116.688543][ T7600] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.690563][ T7604] loop5: detected capacity change from 0 to 128
[  116.722590][ T7604] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  116.735892][ T7604] ext4 filesystem being mounted at /236/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  116.748197][ T7600] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.760192][ T7609] loop7: detected capacity change from 0 to 16384
[  116.768503][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.817592][ T7600] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.845813][ T7618] loop4: detected capacity change from 0 to 512
[  116.854571][ T7618] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  116.864415][ T7618] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  116.866791][ T7600] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.885341][ T7618] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  116.919640][ T7618] EXT4-fs (loop4): 1 truncate cleaned up
[  116.927248][ T7618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.948069][ T7600] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.959167][ T7618] EXT4-fs warning (device loop4): ext4_lookup:1825: Inconsistent encryption contexts: 2/12
[  116.959785][ T7600] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.969547][ T7618] EXT4-fs warning (device loop4): ext4_lookup:1825: Inconsistent encryption contexts: 2/12
[  116.991112][ T7600] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.001945][   T30] kauditd_printk_skb: 48 callbacks suppressed
[  117.001963][   T30] audit: type=1326 audit(1742146580.791:4125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.004483][ T7600] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.008352][   T30] audit: type=1326 audit(1742146580.811:4126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.063757][   T30] audit: type=1326 audit(1742146580.861:4127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.087299][   T30] audit: type=1326 audit(1742146580.861:4128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.114354][   T30] audit: type=1326 audit(1742146580.911:4129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.137887][   T30] audit: type=1326 audit(1742146580.911:4130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.161397][   T30] audit: type=1326 audit(1742146580.911:4131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.184882][   T30] audit: type=1326 audit(1742146580.911:4132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.208400][   T30] audit: type=1326 audit(1742146580.911:4133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.231842][   T30] audit: type=1326 audit(1742146580.911:4134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7617 comm="syz.4.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5addd169 code=0x7ffc0000
[  117.267747][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.311856][ T7627] loop7: detected capacity change from 0 to 512
[  117.320272][ T7627] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1392: bg 0: block 35: padding at end of block bitmap is not set
[  117.335062][ T7627] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  117.344164][ T7627] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.1392: invalid indirect mapped block 4294967295 (level 1)
[  117.358495][ T7627] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.1392: invalid indirect mapped block 4294967295 (level 2)
[  117.373135][ T7627] EXT4-fs (loop7): 1 truncate cleaned up
[  117.379942][ T7627] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.469643][ T6268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.510852][ T7636] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  117.538269][ T7636] SELinux: failed to load policy
[  117.553503][ T7636] team0 (unregistering): Port device team_slave_1 removed
[  117.768424][ T7648] selinux_netlink_send: 189 callbacks suppressed
[  117.768446][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.787863][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.801035][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.813957][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.826655][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.839297][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.851948][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.880958][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.894334][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.907121][ T7648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7648 comm=syz.7.1400
[  117.907191][ T7652] loop7: detected capacity change from 0 to 16384
[  118.102157][ T7656] bond_slave_1: entered promiscuous mode
[  118.108450][ T7656] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1404'.
[  118.117745][ T7656] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  118.145160][ T7656] bond0: (slave bond_slave_1): Releasing backup interface
[  118.161804][ T7656] bond_slave_1 (unregistering): left promiscuous mode
[  118.199870][ T7662] netlink: 'syz.5.1406': attribute type 13 has an invalid length.
[  118.253711][ T7664] netlink: 'syz.4.1407': attribute type 13 has an invalid length.
[  118.270408][ T7665] loop5: detected capacity change from 0 to 2048
[  118.306188][ T7665]  loop5: p1 < > p4
[  118.310796][ T7665] loop5: p4 size 8388608 extends beyond EOD, truncated
[  118.317809][ T7664] loop4: detected capacity change from 0 to 2048
[  118.376597][ T7664]  loop4: p1 < > p4
[  118.381112][ T7664] loop4: p4 size 8388608 extends beyond EOD, truncated
[  119.368518][ T7704] loop4: detected capacity change from 0 to 512
[  119.377535][ T7706] loop5: detected capacity change from 0 to 128
[  119.384483][ T7704] EXT4-fs (loop4): orphan cleanup on readonly fs
[  119.391594][ T7704] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1423: bg 0: block 248: padding at end of block bitmap is not set
[  119.393135][ T7706] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  119.418383][ T7706] ext4 filesystem being mounted at /251/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.429805][ T7704] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1423: Failed to acquire dquot type 1
[  119.445076][ T7704] EXT4-fs (loop4): 1 truncate cleaned up
[  119.454056][ T7704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.473158][ T4147] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.482543][ T7704] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  119.501352][ T7704] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  119.520534][ T7711] loop2: detected capacity change from 0 to 512
[  119.538728][ T7711] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1425: bg 0: block 35: padding at end of block bitmap is not set
[  119.553276][ T7711] EXT4-fs (loop2): Remounting filesystem read-only
[  119.561006][ T7711] EXT4-fs (loop2): 1 truncate cleaned up
[  119.567652][ T7711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.581218][ T7711] SELinux: (dev loop2, type ext4) getxattr errno 5
[  119.588233][ T7711] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.603971][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.632496][ T7722] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1428'.
[  119.707973][ T7726] loop7: detected capacity change from 0 to 8192
[  119.714933][ T7733] loop2: detected capacity change from 0 to 128
[  119.723023][ T7733] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  119.736358][ T7733] ext4 filesystem being mounted at /307/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.746904][ T7726]  loop7: p1 p2[DM] p4
[  119.751038][ T7726] loop7: p1 size 196608 extends beyond EOD, truncated
[  119.758288][ T7726] loop7: p2 start 4292936063 is beyond EOD, truncated
[  119.765087][ T7726] loop7: p4 size 50331648 extends beyond EOD, truncated
[  119.773111][ T3310] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.813236][ T7738] loop7: detected capacity change from 0 to 512
[  119.820405][ T7738] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  119.832279][ T7738] EXT4-fs (loop7): 1 truncate cleaned up
[  119.838723][ T7738] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.852092][ T7738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.988637][ T7744] loop7: detected capacity change from 0 to 256
[  120.003791][ T7744] FAT-fs (loop7): codepage cp869 not found
[  120.213479][ T7755] FAULT_INJECTION: forcing a failure.
[  120.213479][ T7755] name failslab, interval 1, probability 0, space 0, times 0
[  120.226357][ T7755] CPU: 1 UID: 0 PID: 7755 Comm: syz.2.1441 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  120.226459][ T7755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  120.226469][ T7755] Call Trace:
[  120.226474][ T7755]  <TASK>
[  120.226480][ T7755]  dump_stack_lvl+0xf2/0x150
[  120.226507][ T7755]  dump_stack+0x15/0x1a
[  120.226601][ T7755]  should_fail_ex+0x24a/0x260
[  120.226705][ T7755]  should_failslab+0x8f/0xb0
[  120.226731][ T7755]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  120.226757][ T7755]  ? alloc_inode+0x6a/0x160
[  120.226784][ T7755]  ? __rcu_read_unlock+0x4e/0x70
[  120.226857][ T7755]  alloc_inode+0x6a/0x160
[  120.226883][ T7755]  iget_locked+0xf2/0x5d0
[  120.226899][ T7755]  ? down_read+0x171/0x4b0
[  120.226925][ T7755]  ? strlen+0x19/0x30
[  120.226941][ T7755]  kernfs_get_inode+0x2e/0x350
[  120.226964][ T7755]  kernfs_iop_lookup+0x10d/0x190
[  120.226990][ T7755]  lookup_one_qstr_excl+0xca/0x1c0
[  120.227026][ T7755]  do_renameat2+0x432/0xa70
[  120.227051][ T7755]  ? __rcu_read_unlock+0x4e/0x70
[  120.227124][ T7755]  __x64_sys_rename+0x58/0x70
[  120.227150][ T7755]  x64_sys_call+0x2b1c/0x2dc0
[  120.227248][ T7755]  do_syscall_64+0xc9/0x1c0
[  120.227287][ T7755]  ? clear_bhb_loop+0x55/0xb0
[  120.227321][ T7755]  ? clear_bhb_loop+0x55/0xb0
[  120.227345][ T7755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.227368][ T7755] RIP: 0033:0x7feb489cd169
[  120.227424][ T7755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.227439][ T7755] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  120.227459][ T7755] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  120.227474][ T7755] RDX: 0000000000000000 RSI: 00004000000001c0 RDI: 0000400000000180
[  120.227489][ T7755] RBP: 00007feb47037090 R08: 0000000000000000 R09: 0000000000000000
[  120.227504][ T7755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.227557][ T7755] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  120.227573][ T7755]  </TASK>
[  120.445321][ T7757] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1442'.
[  120.462089][ T7757] SELinux:  Context system_u:object_r:kmsg_device_t:s0 is not valid (left unmapped).
[  120.476208][ T7755] Process accounting resumed
[  120.494278][ T7759] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1443'.
[  120.503768][ T7759] FAULT_INJECTION: forcing a failure.
[  120.503768][ T7759] name failslab, interval 1, probability 0, space 0, times 0
[  120.516483][ T7759] CPU: 0 UID: 0 PID: 7759 Comm: syz.5.1443 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  120.516509][ T7759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  120.516522][ T7759] Call Trace:
[  120.516528][ T7759]  <TASK>
[  120.516537][ T7759]  dump_stack_lvl+0xf2/0x150
[  120.516608][ T7759]  dump_stack+0x15/0x1a
[  120.516632][ T7759]  should_fail_ex+0x24a/0x260
[  120.516668][ T7759]  ? _request_firmware+0x192/0xa00
[  120.516702][ T7759]  should_failslab+0x8f/0xb0
[  120.516747][ T7759]  __kmalloc_cache_noprof+0x4e/0x320
[  120.516799][ T7759]  _request_firmware+0x192/0xa00
[  120.516829][ T7759]  ? __rtnl_unlock+0x99/0xb0
[  120.516887][ T7759]  ? netdev_run_todo+0x793/0x7f0
[  120.516916][ T7759]  request_firmware+0x36/0x50
[  120.517031][ T7759]  reg_reload_regdb+0x58/0x240
[  120.517115][ T7759]  nl80211_reload_regdb+0xe/0x20
[  120.517153][ T7759]  genl_rcv_msg+0x620/0x6d0
[  120.517182][ T7759]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  120.517265][ T7759]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[  120.517304][ T7759]  ? __pfx_nl80211_post_doit+0x10/0x10
[  120.517445][ T7759]  ? __dev_queue_xmit+0xb6e/0x2090
[  120.517485][ T7759]  netlink_rcv_skb+0x12c/0x230
[  120.517549][ T7759]  ? __pfx_genl_rcv_msg+0x10/0x10
[  120.517586][ T7759]  genl_rcv+0x28/0x40
[  120.517612][ T7759]  netlink_unicast+0x599/0x670
[  120.517682][ T7759]  netlink_sendmsg+0x5cc/0x6e0
[  120.517722][ T7759]  ? __pfx_netlink_sendmsg+0x10/0x10
[  120.517769][ T7759]  __sock_sendmsg+0x140/0x180
[  120.517844][ T7759]  ____sys_sendmsg+0x326/0x4b0
[  120.517880][ T7759]  __sys_sendmsg+0x19d/0x230
[  120.518011][ T7759]  __x64_sys_sendmsg+0x46/0x50
[  120.518042][ T7759]  x64_sys_call+0x2734/0x2dc0
[  120.518075][ T7759]  do_syscall_64+0xc9/0x1c0
[  120.518112][ T7759]  ? clear_bhb_loop+0x55/0xb0
[  120.518208][ T7759]  ? clear_bhb_loop+0x55/0xb0
[  120.518303][ T7759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.518336][ T7759] RIP: 0033:0x7f13acded169
[  120.518354][ T7759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.518377][ T7759] RSP: 002b:00007f13ab457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  120.518399][ T7759] RAX: ffffffffffffffda RBX: 00007f13ad005fa0 RCX: 00007f13acded169
[  120.518414][ T7759] RDX: 0000000000000000 RSI: 0000400000000480 RDI: 0000000000000005
[  120.518487][ T7759] RBP: 00007f13ab457090 R08: 0000000000000000 R09: 0000000000000000
[  120.518502][ T7759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.518515][ T7759] R13: 0000000000000000 R14: 00007f13ad005fa0 R15: 00007fff707179f8
[  120.518537][ T7759]  </TASK>
[  120.518550][ T7759] platform regulatory.0: _request_firmware_prepare: kmalloc(struct firmware) failed
[  120.519265][ T7762] loop2: detected capacity change from 0 to 128
[  120.576336][ T7763] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1444'.
[  120.595526][ T7762] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  120.815443][ T7762] ext4 filesystem being mounted at /313/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  120.826999][ T7763] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.834488][ T7763] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.842489][ T7763] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.850089][ T7763] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.858592][ T3310] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  120.895564][ T7771] netlink: 'syz.7.1449': attribute type 1 has an invalid length.
[  120.914629][ T7769] loop5: detected capacity change from 0 to 512
[  120.936086][ T7769] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1448: bg 0: block 35: padding at end of block bitmap is not set
[  120.951981][ T7769] EXT4-fs (loop5): Remounting filesystem read-only
[  120.953493][ T7778] netlink: 'syz.2.1451': attribute type 13 has an invalid length.
[  120.958667][ T7769] EXT4-fs (loop5): 1 truncate cleaned up
[  120.972534][ T7769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.985010][ T7769] SELinux: (dev loop5, type ext4) getxattr errno 5
[  120.994005][ T7769] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.014965][ T7769] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(9)
[  121.021533][ T7769] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  121.029104][ T7769] vhci_hcd vhci_hcd.0: Device attached
[  121.043264][ T7769] loop5: detected capacity change from 0 to 512
[  121.050563][ T7769] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  121.061931][ T7769] EXT4-fs (loop5): 1 truncate cleaned up
[  121.069235][ T7769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.169709][ T7787] loop2: detected capacity change from 0 to 512
[  121.177725][ T7787] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1454: corrupted xattr block 255: invalid header
[  121.192066][ T7787] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  121.207335][ T7787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.211189][ T7798] FAULT_INJECTION: forcing a failure.
[  121.211189][ T7798] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.232917][ T7798] CPU: 1 UID: 0 PID: 7798 Comm: syz.4.1456 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  121.232981][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.232994][ T7798] Call Trace:
[  121.233001][ T7798]  <TASK>
[  121.233009][ T7798]  dump_stack_lvl+0xf2/0x150
[  121.233105][ T7798]  dump_stack+0x15/0x1a
[  121.233127][ T7798]  should_fail_ex+0x24a/0x260
[  121.233175][ T7798]  should_fail+0xb/0x10
[  121.233341][ T7798]  should_fail_usercopy+0x1a/0x20
[  121.233375][ T7798]  _copy_from_user+0x1c/0xa0
[  121.233395][ T7798]  copy_msghdr_from_user+0x54/0x2a0
[  121.233487][ T7798]  ? __fget_files+0x17c/0x1c0
[  121.233524][ T7798]  __sys_sendmmsg+0x1e8/0x4b0
[  121.233575][ T7798]  __x64_sys_sendmmsg+0x57/0x70
[  121.233626][ T7798]  x64_sys_call+0x29aa/0x2dc0
[  121.233730][ T7798]  do_syscall_64+0xc9/0x1c0
[  121.233802][ T7798]  ? clear_bhb_loop+0x55/0xb0
[  121.233835][ T7798]  ? clear_bhb_loop+0x55/0xb0
[  121.233884][ T7798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.233916][ T7798] RIP: 0033:0x7f3b5addd169
[  121.233935][ T7798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.233956][ T7798] RSP: 002b:00007f3b59447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  121.233978][ T7798] RAX: ffffffffffffffda RBX: 00007f3b5aff5fa0 RCX: 00007f3b5addd169
[  121.234071][ T7798] RDX: 0400000000000172 RSI: 0000400000003cc0 RDI: 0000000000000004
[  121.234085][ T7798] RBP: 00007f3b59447090 R08: 0000000000000000 R09: 0000000000000000
[  121.234100][ T7798] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000001
[  121.234114][ T7798] R13: 0000000000000000 R14: 00007f3b5aff5fa0 R15: 00007ffc555dba28
[  121.234137][ T7798]  </TASK>
[  121.250726][ T7787] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1454: corrupted xattr block 255: invalid header
[  121.295747][ T3375] usb 11-1: new low-speed USB device number 2 using vhci_hcd
[  121.307498][ T7787] SELinux: (dev loop2, type ext4) getxattr errno 117
[  121.311963][ T7781] vhci_hcd: connection reset by peer
[  121.319517][ T7787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.324659][   T37] vhci_hcd: stop threads
[  121.456226][   T37] vhci_hcd: release socket
[  121.460711][   T37] vhci_hcd: disconnect device
[  121.522501][ T7808] loop4: detected capacity change from 0 to 128
[  121.531059][ T7808] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  121.543795][ T7808] ext4 filesystem being mounted at /366/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  121.555577][ T7811] FAULT_INJECTION: forcing a failure.
[  121.555577][ T7811] name failslab, interval 1, probability 0, space 0, times 0
[  121.568451][ T7811] CPU: 0 UID: 0 PID: 7811 Comm: syz.2.1460 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  121.568484][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.568499][ T7811] Call Trace:
[  121.568508][ T7811]  <TASK>
[  121.568517][ T7811]  dump_stack_lvl+0xf2/0x150
[  121.568551][ T7811]  dump_stack+0x15/0x1a
[  121.568613][ T7811]  should_fail_ex+0x24a/0x260
[  121.568650][ T7811]  ? bpf_prog_create_from_user+0x16c/0x240
[  121.568747][ T7811]  should_failslab+0x8f/0xb0
[  121.568781][ T7811]  __kmalloc_cache_noprof+0x4e/0x320
[  121.568841][ T7811]  bpf_prog_create_from_user+0x16c/0x240
[  121.568868][ T7811]  ? __pfx_seccomp_check_filter+0x10/0x10
[  121.568962][ T7811]  do_seccomp+0x648/0xa60
[  121.568988][ T7811]  ? __secure_computing+0x9f/0x1c0
[  121.569017][ T7811]  __x64_sys_seccomp+0x40/0x50
[  121.569126][ T7811]  x64_sys_call+0x27fc/0x2dc0
[  121.569164][ T7811]  do_syscall_64+0xc9/0x1c0
[  121.569200][ T7811]  ? clear_bhb_loop+0x55/0xb0
[  121.569308][ T7811]  ? clear_bhb_loop+0x55/0xb0
[  121.569337][ T7811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.569419][ T7811] RIP: 0033:0x7feb489cd169
[  121.569438][ T7811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.569457][ T7811] RSP: 002b:00007feb47037038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  121.569520][ T7811] RAX: ffffffffffffffda RBX: 00007feb48be5fa0 RCX: 00007feb489cd169
[  121.569534][ T7811] RDX: 0000400000002140 RSI: 000000000000001b RDI: 0000000000000001
[  121.569611][ T7811] RBP: 00007feb47037090 R08: 0000000000000000 R09: 0000000000000000
[  121.569625][ T7811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.569639][ T7811] R13: 0000000000000000 R14: 00007feb48be5fa0 R15: 00007ffee6daaa98
[  121.569662][ T7811]  </TASK>
[  121.767822][ T3305] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  121.787137][ T7813] netlink: 'syz.2.1462': attribute type 13 has an invalid length.
[  121.806522][ T7815] bond_slave_1: entered promiscuous mode
[  121.812572][ T7815] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  121.838571][ T7815] bond0: (slave bond_slave_1): Releasing backup interface
[  121.847203][ T7815] bond_slave_1 (unregistering): left promiscuous mode
[  121.873179][ T7819] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1464'.
[  121.882408][ T7819] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1464'.
[  121.895322][ T7819] bond0: entered promiscuous mode
[  121.900460][ T7819] bond_slave_0: entered promiscuous mode
[  121.906237][ T7819] bond_slave_1: entered promiscuous mode
[  121.913799][ T7819] bridge0: entered promiscuous mode
[  121.952207][ T7826] FAULT_INJECTION: forcing a failure.
[  121.952207][ T7826] name failslab, interval 1, probability 0, space 0, times 0
[  121.964895][ T7826] CPU: 1 UID: 0 PID: 7826 Comm: syz.4.1467 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  121.964924][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.964938][ T7826] Call Trace:
[  121.964945][ T7826]  <TASK>
[  121.964952][ T7826]  dump_stack_lvl+0xf2/0x150
[  121.965026][ T7826]  dump_stack+0x15/0x1a
[  121.965051][ T7826]  should_fail_ex+0x24a/0x260
[  121.965081][ T7826]  should_failslab+0x8f/0xb0
[  121.965177][ T7826]  kmem_cache_alloc_noprof+0x52/0x320
[  121.965203][ T7826]  ? alloc_empty_file+0xd0/0x200
[  121.965231][ T7826]  alloc_empty_file+0xd0/0x200
[  121.965256][ T7826]  path_openat+0x6a/0x1fc0
[  121.965358][ T7826]  ? _parse_integer_limit+0x167/0x180
[  121.965394][ T7826]  ? _parse_integer+0x27/0x30
[  121.965418][ T7826]  ? kstrtoull+0x110/0x140
[  121.965443][ T7826]  ? kstrtouint+0x77/0xc0
[  121.965468][ T7826]  ? kstrtouint_from_user+0xb0/0xe0
[  121.965572][ T7826]  do_filp_open+0x107/0x230
[  121.965610][ T7826]  do_sys_openat2+0xab/0x120
[  121.965637][ T7826]  __x64_sys_openat+0xf3/0x120
[  121.965661][ T7826]  x64_sys_call+0x2b30/0x2dc0
[  121.965706][ T7826]  do_syscall_64+0xc9/0x1c0
[  121.965800][ T7826]  ? clear_bhb_loop+0x55/0xb0
[  121.965840][ T7826]  ? clear_bhb_loop+0x55/0xb0
[  121.965867][ T7826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.965894][ T7826] RIP: 0033:0x7f3b5addd169
[  121.965909][ T7826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.965953][ T7826] RSP: 002b:00007f3b59447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  121.965971][ T7826] RAX: ffffffffffffffda RBX: 00007f3b5aff5fa0 RCX: 00007f3b5addd169
[  121.965984][ T7826] RDX: 000000000000275a RSI: 0000400000000000 RDI: ffffffffffffff9c
[  121.965996][ T7826] RBP: 00007f3b59447090 R08: 0000000000000000 R09: 0000000000000000
[  121.966007][ T7826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.966019][ T7826] R13: 0000000000000000 R14: 00007f3b5aff5fa0 R15: 00007ffc555dba28
[  121.966037][ T7826]  </TASK>
[  122.176612][ T4147] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.199988][ T7824] loop7: detected capacity change from 0 to 764
[  122.222257][ T7835] FAULT_INJECTION: forcing a failure.
[  122.222257][ T7835] name failslab, interval 1, probability 0, space 0, times 0
[  122.236792][ T7835] CPU: 1 UID: 0 PID: 7835 Comm: syz.5.1469 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  122.236824][ T7835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  122.236877][ T7835] Call Trace:
[  122.236884][ T7835]  <TASK>
[  122.236891][ T7835]  dump_stack_lvl+0xf2/0x150
[  122.236952][ T7835]  dump_stack+0x15/0x1a
[  122.236978][ T7835]  should_fail_ex+0x24a/0x260
[  122.237080][ T7835]  should_failslab+0x8f/0xb0
[  122.237113][ T7835]  __kmalloc_noprof+0xab/0x3f0
[  122.237209][ T7835]  ? nla_strdup+0x7b/0xc0
[  122.237250][ T7835]  nla_strdup+0x7b/0xc0
[  122.237290][ T7835]  nf_tables_newtable+0x3e7/0xee0
[  122.237413][ T7835]  nfnetlink_rcv+0xb3e/0x15d0
[  122.237468][ T7835]  netlink_unicast+0x599/0x670
[  122.237504][ T7835]  netlink_sendmsg+0x5cc/0x6e0
[  122.237602][ T7835]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.237642][ T7835]  __sock_sendmsg+0x140/0x180
[  122.237682][ T7835]  ____sys_sendmsg+0x326/0x4b0
[  122.237761][ T7835]  __sys_sendmsg+0x19d/0x230
[  122.237808][ T7835]  __x64_sys_sendmsg+0x46/0x50
[  122.237839][ T7835]  x64_sys_call+0x2734/0x2dc0
[  122.237885][ T7835]  do_syscall_64+0xc9/0x1c0
[  122.237916][ T7835]  ? clear_bhb_loop+0x55/0xb0
[  122.237943][ T7835]  ? clear_bhb_loop+0x55/0xb0
[  122.237973][ T7835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.238052][ T7835] RIP: 0033:0x7f13acded169
[  122.238067][ T7835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.238085][ T7835] RSP: 002b:00007f13ab457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.238106][ T7835] RAX: ffffffffffffffda RBX: 00007f13ad005fa0 RCX: 00007f13acded169
[  122.238121][ T7835] RDX: 0000000000000000 RSI: 0000400000000600 RDI: 0000000000000004
[  122.238135][ T7835] RBP: 00007f13ab457090 R08: 0000000000000000 R09: 0000000000000000
[  122.238149][ T7835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.238200][ T7835] R13: 0000000000000000 R14: 00007f13ad005fa0 R15: 00007fff707179f8
[  122.238222][ T7835]  </TASK>
[  122.238795][ T7836] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  122.238951][   T30] kauditd_printk_skb: 95 callbacks suppressed
[  122.238966][   T30] audit: type=1400 audit(1742146586.031:4227): avc:  denied  { relabelfrom } for  pid=7833 comm="syz.2.1470" name="" dev="pipefs" ino=24622 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  122.329603][ T7840] loop6: detected capacity change from 0 to 128
[  122.332366][   T30] audit: type=1400 audit(1742146586.051:4228): avc:  denied  { relabelto } for  pid=7833 comm="syz.2.1470" name="" dev="pipefs" ino=24622 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0"
[  122.510751][   T30] audit: type=1400 audit(1742146586.281:4229): avc:  denied  { create } for  pid=7844 comm="syz.5.1472" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  122.621058][ T7858] loop6: detected capacity change from 0 to 128
[  122.637795][ T7850] FAULT_INJECTION: forcing a failure.
[  122.637795][ T7850] name failslab, interval 1, probability 0, space 0, times 0
[  122.650678][ T7850] CPU: 1 UID: 0 PID: 7850 Comm: syz.5.1474 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  122.650757][ T7850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  122.650770][ T7850] Call Trace:
[  122.650778][ T7850]  <TASK>
[  122.650787][ T7850]  dump_stack_lvl+0xf2/0x150
[  122.650818][ T7850]  dump_stack+0x15/0x1a
[  122.650841][ T7850]  should_fail_ex+0x24a/0x260
[  122.650875][ T7850]  should_failslab+0x8f/0xb0
[  122.650963][ T7850]  __kmalloc_noprof+0xab/0x3f0
[  122.650986][ T7850]  ? alloc_pipe_info+0x1cb/0x360
[  122.651082][ T7850]  alloc_pipe_info+0x1cb/0x360
[  122.651149][ T7850]  splice_direct_to_actor+0x60f/0x670
[  122.651179][ T7850]  ? __pfx_direct_splice_actor+0x10/0x10
[  122.651207][ T7850]  ? 0xffffffff81000000
[  122.651230][ T7850]  ? selinux_file_permission+0x22a/0x360
[  122.651310][ T7850]  ? __rcu_read_unlock+0x4e/0x70
[  122.651335][ T7850]  ? avc_policy_seqno+0x15/0x20
[  122.651376][ T7850]  ? selinux_file_permission+0x22a/0x360
[  122.651409][ T7850]  do_splice_direct+0xd7/0x150
[  122.651435][ T7850]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  122.651469][ T7850]  do_sendfile+0x398/0x660
[  122.651554][ T7850]  __x64_sys_sendfile64+0x110/0x150
[  122.651592][ T7850]  x64_sys_call+0xfbd/0x2dc0
[  122.651653][ T7850]  do_syscall_64+0xc9/0x1c0
[  122.651686][ T7850]  ? clear_bhb_loop+0x55/0xb0
[  122.651723][ T7850]  ? clear_bhb_loop+0x55/0xb0
[  122.651795][ T7850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.651824][ T7850] RIP: 0033:0x7f13acded169
[  122.651840][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.651880][ T7850] RSP: 002b:00007f13ab457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  122.651900][ T7850] RAX: ffffffffffffffda RBX: 00007f13ad005fa0 RCX: 00007f13acded169
[  122.651913][ T7850] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003
[  122.651926][ T7850] RBP: 00007f13ab457090 R08: 0000000000000000 R09: 0000000000000000
[  122.651939][ T7850] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  122.651952][ T7850] R13: 0000000000000000 R14: 00007f13ad005fa0 R15: 00007fff707179f8
[  122.651971][ T7850]  </TASK>
[  122.900562][ T7858] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  122.928548][ T7858] ext4 filesystem being mounted at /137/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  122.946661][   T30] audit: type=1400 audit(1742146586.721:4230): avc:  denied  { setopt } for  pid=7823 comm="syz.7.1466" lport=52056 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  122.970352][   T30] audit: type=1400 audit(1742146586.731:4231): avc:  denied  { write } for  pid=7823 comm="syz.7.1466" lport=52056 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  123.077637][ T7871] FAULT_INJECTION: forcing a failure.
[  123.077637][ T7871] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  123.090957][ T7871] CPU: 0 UID: 0 PID: 7871 Comm: syz.5.1482 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  123.090988][ T7871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.091001][ T7871] Call Trace:
[  123.091008][ T7871]  <TASK>
[  123.091017][ T7871]  dump_stack_lvl+0xf2/0x150
[  123.091046][ T7871]  dump_stack+0x15/0x1a
[  123.091170][ T7871]  should_fail_ex+0x24a/0x260
[  123.091254][ T7871]  should_fail_alloc_page+0xfd/0x110
[  123.091289][ T7871]  alloc_pages_bulk_noprof+0xfd/0x570
[  123.091329][ T7871]  copy_splice_read+0xe5/0x5b0
[  123.091373][ T7871]  ? __pfx_splice_write_null+0x10/0x10
[  123.091412][ T7871]  ? __pfx_copy_splice_read+0x10/0x10
[  123.091438][ T7871]  splice_direct_to_actor+0x269/0x670
[  123.091524][ T7871]  ? __pfx_direct_splice_actor+0x10/0x10
[  123.091563][ T7871]  do_splice_direct+0xd7/0x150
[  123.091595][ T7871]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  123.091671][ T7871]  do_sendfile+0x398/0x660
[  123.091699][ T7871]  __x64_sys_sendfile64+0x110/0x150
[  123.091766][ T7871]  x64_sys_call+0xfbd/0x2dc0
[  123.091792][ T7871]  do_syscall_64+0xc9/0x1c0
[  123.091863][ T7871]  ? clear_bhb_loop+0x55/0xb0
[  123.091951][ T7871]  ? clear_bhb_loop+0x55/0xb0
[  123.091984][ T7871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.092011][ T7871] RIP: 0033:0x7f13acded169
[  123.092029][ T7871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.092079][ T7871] RSP: 002b:00007f13ab457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  123.092122][ T7871] RAX: ffffffffffffffda RBX: 00007f13ad005fa0 RCX: 00007f13acded169
[  123.092137][ T7871] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  123.092151][ T7871] RBP: 00007f13ab457090 R08: 0000000000000000 R09: 0000000000000000
[  123.092164][ T7871] R10: 000000040000f63c R11: 0000000000000246 R12: 0000000000000002
[  123.092178][ T7871] R13: 0000000000000000 R14: 00007f13ad005fa0 R15: 00007fff707179f8
[  123.092201][ T7871]  </TASK>
[  123.174015][ T4825] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  123.343091][ T7874] loop5: detected capacity change from 0 to 128
[  123.353729][ T7876] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1485'.
[  123.365375][ T7874] ext4 filesystem being mounted at /262/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  123.569633][   T30] audit: type=1326 audit(1742146587.361:4232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7894 comm="syz.2.1496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  123.593138][   T30] audit: type=1326 audit(1742146587.361:4233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7894 comm="syz.2.1496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  123.620998][ T7899] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  123.649982][   T30] audit: type=1326 audit(1742146587.361:4234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7894 comm="syz.2.1496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  123.673598][   T30] audit: type=1326 audit(1742146587.441:4235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7894 comm="syz.2.1496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  123.697135][   T30] audit: type=1326 audit(1742146587.441:4236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7894 comm="syz.2.1496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb489cd169 code=0x7ffc0000
[  123.757263][ T7908] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1497'.
[  123.771324][ T7912] loop5: detected capacity change from 0 to 128
[  123.786386][ T7912] ext4 filesystem being mounted at /266/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  123.800646][ T7916] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1499'.
[  123.827905][ T7916] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1499'.
[  123.857561][ T7920] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1500'.
[  123.895208][ T7920] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1500'.
[  123.943190][ T7927] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1501'.
[  124.008108][ T7932] loop2: detected capacity change from 0 to 2048
[  124.046562][ T7932]  loop2: p1 < > p4
[  124.051238][ T7932] loop2: p4 size 8388608 extends beyond EOD, truncated
[  124.134842][ T7945] loop2: detected capacity change from 0 to 128
[  124.150895][ T7945] ext4 filesystem being mounted at /335/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  124.238272][ T7952] selinux_netlink_send: 69 callbacks suppressed
[  124.238289][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.258692][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.272843][ T7955] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1517'.
[  124.283244][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.304074][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.318636][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.331790][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.344976][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.363097][ T7955] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1517'.
[  124.372648][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.393946][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.411227][ T7952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7952 comm=syz.7.1516
[  124.445266][ T7979] loop5: detected capacity change from 0 to 512
[  124.453658][ T7979] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  124.479886][ T7979] EXT4-fs (loop5): 1 truncate cleaned up
[  124.488046][ T7985] netlink: 'syz.2.1530': attribute type 7 has an invalid length.
[  124.687547][ T8014] netlink: 'syz.4.1542': attribute type 13 has an invalid length.
[  124.689516][ T8016] loop5: detected capacity change from 0 to 512
[  124.702438][ T8016] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  124.708808][ T8014] loop4: detected capacity change from 0 to 2048
[  124.722996][ T8008] loop6: detected capacity change from 0 to 256
[  124.730702][ T8016] EXT4-fs (loop5): 1 truncate cleaned up
[  124.757883][ T8008] FAT-fs (loop6): codepage cp869 not found
[  124.776426][ T8014]  loop4: p1 < > p4
[  124.780862][ T8014] loop4: p4 size 8388608 extends beyond EOD, truncated
[  124.857892][ T8030] loop6: detected capacity change from 0 to 128
[  124.874929][ T8033] loop4: detected capacity change from 0 to 1024
[  124.876654][ T8030] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  124.883439][ T8033] EXT4-fs: Ignoring removed mblk_io_submit option
[  124.911211][ T8033] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f040c0ac, mo2=0002]
[  124.919543][ T8033] System zones: 0-1, 3-36
[  124.929777][ T8037] ==================================================================
[  124.937896][ T8037] BUG: KCSAN: data-race in mas_wmb_replace / mtree_range_walk
[  124.945376][ T8037] 
[  124.947701][ T8037] write to 0xffff888108cf1e00 of 8 bytes by task 8035 on cpu 1:
[  124.955330][ T8037]  mas_wmb_replace+0xe89/0x14d0
[  124.960187][ T8037]  mas_wr_store_entry+0x1530/0x23f0
[  124.965486][ T8037]  mas_store_prealloc+0x6bf/0x960
[  124.970530][ T8037]  vma_complete+0x3a7/0x760
[  124.975053][ T8037]  __split_vma+0x620/0x6a0
[  124.979479][ T8037]  vma_modify+0x1a2/0x200
[  124.983811][ T8037]  vma_modify_flags+0xf1/0x120
[  124.988595][ T8037]  mprotect_fixup+0x31a/0x5e0
[  124.993366][ T8037]  do_mprotect_pkey+0x6cc/0x9a0
[  124.998226][ T8037]  __x64_sys_mprotect+0x48/0x60
[  125.003082][ T8037]  x64_sys_call+0x2770/0x2dc0
[  125.007860][ T8037]  do_syscall_64+0xc9/0x1c0
[  125.012382][ T8037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.018289][ T8037] 
[  125.020613][ T8037] read to 0xffff888108cf1e00 of 8 bytes by task 8037 on cpu 0:
[  125.028161][ T8037]  mtree_range_walk+0x33d/0x460
[  125.033026][ T8037]  mas_walk+0x16e/0x320
[  125.037204][ T8037]  lock_vma_under_rcu+0x95/0x270
[  125.042156][ T8037]  exc_page_fault+0x150/0x650
[  125.046851][ T8037]  asm_exc_page_fault+0x26/0x30
[  125.051718][ T8037] 
[  125.054043][ T8037] value changed: 0xffff888108cf1006 -> 0xffff888108cf1e00
[  125.061151][ T8037] 
[  125.063471][ T8037] Reported by Kernel Concurrency Sanitizer on:
[  125.069621][ T8037] CPU: 0 UID: 0 PID: 8037 Comm: syz.6.1550 Not tainted 6.14.0-rc6-syzkaller-00244-g31d7109a19f6 #0
[  125.080297][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.090443][ T8037] ==================================================================
[  125.103548][ T8036] loop6: detected capacity change from 0 to 512
[  125.110132][ T8036] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  126.365936][ T3375] usb 11-1: enqueue for inactive port 0
[  126.371539][ T3375] usb 11-1: enqueue for inactive port 0
[  126.445891][ T3375] vhci_hcd: vhci_device speed not set