last executing test programs:

1m27.436666887s ago: executing program 4 (id=1241):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
socket(0xa, 0x3, 0x3a)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setrlimit(0x40000000000008, &(0x7f0000000000))
setresuid(0x0, 0xee00, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000600)={0x200000000000001, 0x3}, 0x8)
sendto$inet6(r2, 0x0, 0x0, 0x88c0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x801}, 0x1c)
sendto$inet6(r2, &(0x7f0000000440)='\r', 0x1, 0x4000080, 0x0, 0x0)

1m27.387613437s ago: executing program 4 (id=1243):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0xf)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x3f000000)

1m27.284161999s ago: executing program 4 (id=1245):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x80000000, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000080)={'syztnl1\x00', <r1=>0x0, 0x700, 0x40, 0x8, 0x1f9, {{0x6, 0x4, 0x0, 0x17, 0x18, 0x65, 0x0, 0x4, 0x4, 0x0, @loopback, @remote, {[@ra={0x94, 0x4}]}}}}})
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)={0x1b, 0x0, 0x0, 0x5, 0x0, r0, 0x1, '\x00', r1, r2, 0x2, 0x5, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
r3 = msgget$private(0x0, 0x2)
msgrcv(r3, &(0x7f00000001c0)={0x0, ""/39}, 0x2f, 0x0, 0x3800)
msgctl$MSG_INFO(r3, 0xc, &(0x7f0000000200)=""/229)
socket$kcm(0x29, 0x5, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f0000000300))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELTABLE={0x98, 0x2, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x5b, 0x6, "374a9063b555a784f13b6d05812bda9f8a9efa634dc61e57d76698022ab05b010e1d0ed12a2088b7c2e0bc030fe573a8cbf22db8d2157bc361f145244e834ca7eb1a40d4f8fa2e1b47dfa2cdd62c25c4c06a407ee09746"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELSET={0x74, 0xb, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_EXPRESSIONS={0x30, 0x12, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @reject={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}]}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x30}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x3ff}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x90}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @limit={{0xa}, @void}}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x5}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x154}, 0x1, 0x0, 0x0, 0x40041}, 0x8000)
ioctl$EXT4_IOC_SETFSUUID(r2, 0x4008662c, &(0x7f0000000580)={0x0, 0x0, "481bbead779c05ed617c9c8c7a017b39"})
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000600)='cgroup.controllers\x00', 0x0, 0x0)
msgctl$IPC_INFO(r3, 0x3, &(0x7f0000000640)=""/16)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000680)={'gretap0\x00', 0x1000})
execveat$binfmt(r6, 0x0, &(0x7f0000000740)={[&(0x7f00000006c0)='payload\x00', &(0x7f0000000700)='reject\x00']}, &(0x7f00000007c0)={[&(0x7f0000000780)='syztnl1\x00']}, 0x100)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0)
write$P9_RVERSION(r7, &(0x7f0000000840)={0x13, 0x65, 0xffff, 0x4, 0x6, '9P2000'}, 0x13)
fstat(r7, &(0x7f0000000880))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000900))
sendmsg$IPSET_CMD_PROTOCOL(r7, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x100002}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x1, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
r8 = geteuid()
quotactl_fd$Q_GETINFO(0xffffffffffffffff, 0xffffffff80000500, r8, &(0x7f0000000a40))
socketpair(0x2a, 0x800, 0x4, &(0x7f0000000a80)={<r9=>0xffffffffffffffff})
ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000b00)={0x0, {0x2, 0x4e23, @rand_addr=0x64010100}, {0x2, 0x4e21, @rand_addr=0x64010102}, {0x2, 0x4e21, @multicast1}, 0x61, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000ac0)='caif0\x00', 0x1, 0x9, 0x2})
rmdir(&(0x7f0000000b80)='./file0\x00')
msgctl$MSG_STAT_ANY(r3, 0xd, &(0x7f0000000bc0)=""/53)
connect$phonet_pipe(r7, &(0x7f0000000c00)={0x23, 0x4, 0x4, 0xd}, 0x10)

1m26.901320546s ago: executing program 4 (id=1249):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00ecffffff940200000000000040000000000000004d020000000000000000000000003800010001017f0008000300"], 0x78)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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") (async)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) (async)
write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e00ecffffff940200000000000040000000000000004d020000000000000000000000003800010001017f0008000300"], 0x78) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
close(r0) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) (async)

1m26.674158079s ago: executing program 4 (id=1254):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000016c0)={0x118, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x82}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}]}, 0x118}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)

1m25.98441555s ago: executing program 4 (id=1263):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x5e, &(0x7f0000000000)={&(0x7f0000000f80)={{0x14, 0x10, 0x1, 0x0, 0x2000000}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}], {0x14}}, 0x64}}, 0x0)

1m25.98414572s ago: executing program 32 (id=1263):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x5e, &(0x7f0000000000)={&(0x7f0000000f80)={{0x14, 0x10, 0x1, 0x0, 0x2000000}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}], {0x14}}, 0x64}}, 0x0)

1m9.658992058s ago: executing program 1 (id=1550):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
socket(0xa, 0x3, 0x3a)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setrlimit(0x40000000000008, &(0x7f0000000000))
setresuid(0x0, 0xee00, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000600)={0x200000000000001, 0x3}, 0x8)
sendto$inet6(r2, 0x0, 0x0, 0x88c0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x801}, 0x1c)
sendto$inet6(r2, &(0x7f0000000440)='\r', 0x1, 0x4000080, 0x0, 0x0)

1m9.607519969s ago: executing program 1 (id=1552):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000026c0)=ANY=[@ANYRES32=r0], 0x40}, 0x1, 0x0, 0x0, 0x20000801}, 0x20040810)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r1, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001b40), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x47, 0x0}}, 0x10)

1m9.55074055s ago: executing program 1 (id=1554):
r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x54e, &(0x7f00000014c0)="$eJzs3c9vHFcdAPDvjH+sm6ZxAj1ABSRAIaAou/Gmjape2lxAqKqEqDggDqmxN5bJbjZk16U2kXD/hiKBxAn+BA5IHJB64sCNIxIHhFQOSAEsUIwE0qKZHf+ovcaLd73bej8faTLz5s3M973Ys+/t2/W8ACbWlYjYjIjZiHgzIuaL/UmxxKvdJTvuydajpe2tR0tJdDpv/C3J87N9+QmlvWs+XVxzLiK+8dWI7ySH47bWN+4t1uu1h0W60m48qLTWN66vNhZXaiu1+9XqrYVbN166+WJ1aHW93PjF46+svvbNX//q0+//bvPLP8iKdb7I263HkHWrPrMbJzMdEa+dRrAxmCrWs2MuByeTRsTHIuJz+f0/H1P5bycAcJZ1OvPRmd+fBgDOujQfA0vSckSkadEJKHfH8J6Nc2m92Wpfu9tcu7/cHSu7GDPp3dV67cal0h++lx88k2TphTwvz8/T1QPpmxFxKSJ+VHoqT5eXmvXl8XR5AGDiPb2//Y+If5bStFzu69Qen+oBAB8Zc+MuAAAwctp/AJg82n8AmDx9tP/Fh/2bp14WAGA0/r/3/xdOrRwAwOgY/weAyaP9B4CJ8vXXX8+Wznbx/Ovlt9bX7jXfur5ca90rN9aWykvNhw/KK83mSv7MnsZx16s3mw8WXoi1tyvtWqtdaa1v3Gk01+637+TP9b5TmxlJrQCA/+XS5fd+n0TE5stP5Uvsm8tBWw1nWzruAgBjMzXIyToI8JFmti+YXH014Xkn4benXhZgPHo+zHuu5+YH/aS7erefIL5nBB8qVz/Z//i/OZ7hbDH+D5PrZOP/rwy9HMDoGf+HydXpJAfn/J/dzQIAzqQBvsLX+eGwOiHAWB03mfdxn/8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAJDofEd+NJC3nc4Gn2b9puRzxTERcjJnk7mq9diMiLsTliJgpZemFcRcaABhQ+pekmP/r6vzz5w/mzib/KuXriPj+T9/48duL7fbDhWz/33f3l3amD6vunTfAvIIAwJDl7Xe1WO97I/9k69HSzjLK8jy+Hf8ppiJe2t56lC/dnOnIdkbM5X2Jc/9IYro4Zy4inouIqSHE33wnIj7Rq/5JPjZysZj5dH/8KGI/M9L46Qfip3led511vj4+hLLApHnvdkS82uv+S+NKvu59/8/lr1CDe3y7e7Gd177tffGni0hTPeJn9/yVfmO88JuvHdrZme/mvRPx3HSv+Mlu/OSI+M/3Gf+Pn/rMu68ckdf5WcTV6B1/f6xKu/Gg0lrfuL7aWFyprdTuV6u3Fm7deOnmi9VKPkZd2RmpPuyvL1+7cFTZsvqfOyL+XM/6z+6e+4U+6//zf7/57c/uJUsH43/p871//s/2jN+VtYlf7DP+4rlfHjl9dxZ/+Yj6H/fzv9Zn/Pf/vLHc56EAwAi01jfuLdbrtYcDbWTvQodxnUMbWRH7O3inuzhY0D/FadTihBszp/W/euob07t9xeFe+VvZFXtkpX3+kpxkIx16LQbaeDKqWON7TQJGY++mH3dJAAAAAAAAAAAAAACAo4ziT5fGXUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADOrv8GAAD//xxkzKw=")
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r0, @ANYBLOB="040000000000800008000000", @ANYRES32=r0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)

1m8.614110745s ago: executing program 1 (id=1564):
socket$nl_xfrm(0x10, 0x3, 0x6)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001b40), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x47, 0x0}}, 0x10)

1m8.34290265s ago: executing program 1 (id=1569):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x820000000003}, 0x1100, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$kcm(0x11, 0xa, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r0, 0x0, 0x68, 0x9f, &(0x7f0000000400)="999866b8735c4e3b758379f22e2aaae1523794c7cb70ab04a30ecee257a2fdaa1a9656280925f6c8f59d5bb479f7b6741f8b377780321476ed269252ad56db4eb5f367005f0d5a8491ffd55e1d97efcaab4fb228a04df1b2bc3375925326efd16198d518aa158bc5", &(0x7f0000000700)=""/159, 0x6, 0x0, 0x92, 0x4e, &(0x7f00000007c0)="249903663bd9e3c290f77ea2ed370ef97226f21bb1e844aea1626621eb5327b10c759872d2fa2388e87871803e22c659429bea8da4f5b5d6d3b59b46f7a0debe8fed1f567b3cc997098a9b2b01bcd6f4e806581395f6ca02429795060713530fb5c8051d580f0dc75290a9a617a4b828f43d6ba550bdad9733f97193608e318388e9fa8edf3008a2e9f74dabb6b969ff4b6e", &(0x7f0000000480)="0a296b5fe467093b50580add2aa487d8a922641d3b7390efc2da2d335886c43052ab92675c5ad4044604437f9507686084fd2b17def7e376d20b788c82ea5657b9d799fb662b29c0be9b3cc2f3ef", 0x0, 0x0, 0x4}, 0x50)
r1 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
setgroups(0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x7101})
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ip6_mr_cache\x00')
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000000)=r3)
getgroups(0x1, &(0x7f0000000080)=[<r4=>0xee00])
setregid(0x0, r4)
io_setup(0x100, &(0x7f0000000200)=<r5=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES64=r1, @ANYRES32, @ANYRES8=r3], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x18)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001440)={0x11, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r8=>0xffffffffffffffff})
syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000001c0)=ANY=[], 0x0)
close_range(r8, 0xffffffffffffffff, 0x200000000000000)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1be)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x101091, 0x0)
io_pgetevents(r5, 0x4, 0x0, &(0x7f0000000380), &(0x7f00000005c0), &(0x7f0000000640)={&(0x7f0000000600)={[0x3]}, 0x8})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, r1, {0xee00, <r9=>r4}}, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00'})
setgroups(0x6, &(0x7f0000000380)=[r4, r4, r4, r9, r4, r4])
setgroups(0x0, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x80400, 0x0)
mkdirat(r10, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x408)

1m7.501379163s ago: executing program 1 (id=1577):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

52.375013131s ago: executing program 33 (id=1577):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

20.829905058s ago: executing program 6 (id=2336):
syz_emit_ethernet(0x4e, &(0x7f0000002940)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x18, 0x3a, 0xff, @local, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0xce, '\x00', @loopback}}}}}}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_bp={&(0x7f0000000ac0), 0x8}, 0x104206, 0x0, 0xfffffffc, 0x0, 0x3}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f0000000000)={[{@unhide}, {@mode={'mode', 0x3d, 0x3}}, {@map_acorn}, {@map_normal}, {}, {@hide}, {@hide}, {@nocompress}, {@dmode={'dmode', 0x3d, 0x1}}, {@block={'block', 0x3d, 0x200}}, {@sbsector={'sbsector', 0x3d, 0x8}}, {@showassoc}, {@utf8}], [], 0x2c}, 0x1, 0x9ce, &(0x7f0000001740)="$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")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000240)={r2}, 0x8)
io_uring_setup(0x76b3, &(0x7f00000002c0)={0x0, 0x1b8e, 0x2000, 0x2, 0x2d2, 0x0, r3})
r4 = creat(&(0x7f0000000280)='./bus\x00', 0x2)
pwritev2(r4, &(0x7f0000000040)=[{&(0x7f0000000b80)="caa5", 0x2}], 0x1, 0x10fffff, 0xffffffff, 0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=@framed={{}, [@printk={@p, {}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x5}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='percpu_alloc_percpu\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffe, 0x7, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, 0x0, 0x0)
r6 = open(&(0x7f0000000340)='./bus\x00', 0x44000, 0x136)
r7 = dup3(r6, r4, 0x0)
creat(0x0, 0xc9028ba210c11f8b)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b0000000000000000d90f690c436619a5542b1e850000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r9, 0x0, 0x10000}, 0x14)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0)
finit_module(r7, 0x0, 0x200000000000000)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r11 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r11, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r11, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000002040)=[{0x4, 0x8, 0x5, 0x6}]}, 0x10)

20.180700919s ago: executing program 6 (id=2342):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000001000000000300000018000180100001006574683a73797a5f74756e0004800280"], 0x2c}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x6, 0x590, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800000000000009, 0xa5d4}, 0x4c58, 0x0, 0x0, 0x7, 0x8, 0x7, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000ec0)={[{@gid}, {@cruft}, {@check_relaxed}, {}, {}, {@map_normal}, {@check_strict}, {@dmode={'dmode', 0x3d, 0x3}}, {@block={'block', 0x3d, 0x800}}, {@cruft}, {@gid}, {@block={'block', 0x3d, 0x200}}, {@utf8}, {@utf8}, {@gid}]}, 0x4, 0xa00, &(0x7f00000003c0)="$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")

19.624625768s ago: executing program 6 (id=2353):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00'}, 0x10)
ioctl$TCFLSH(r1, 0x5608, 0x0)

19.556833599s ago: executing program 6 (id=2355):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@nodelalloc}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x569, &(0x7f0000000300)="$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")
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, 0x0, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x28, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x0)
openat(r0, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000b80)='./file2\x00', 0x0, &(0x7f00000001c0)={[{@noauto_da_alloc}, {@errors_continue}, {@noquota}, {@mblk_io_submit}, {@sysvgroups}]}, 0x41, 0x4c1, &(0x7f0000000bc0)="$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")
r1 = inotify_init()
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000000)={[{@errors_remount}, {@nobh}]}, 0x1, 0x513, &(0x7f0000000380)="$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")
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10d, 0x2, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000008c0)={0x2, 0x800, @local}, 0x10)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x1c)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYRES64=r2, @ANYRESOCT=r1, @ANYRES8=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd3f, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0x0, 0x0, &(0x7f00000010c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYRESOCT], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f01, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r7, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000640)='devtmpfs\x00', 0x0, 0x0)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r9, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, <r10=>0xffffffffffffffff, {0x29}}, './file0\x00'})
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r11, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @host}, 0x10)
unshare(0x28020480)
socket(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001100)=ANY=[@ANYRESDEC=r10, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850001000000010000000000003000009555c36c"], &(0x7f0000000900)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

19.073201437s ago: executing program 6 (id=2364):
r0 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x983a, 0x2, 0x1003, 0xea}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000540)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x3058, 0xdf5e, 0x7, 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_script(r3, &(0x7f0000000080)={'#! ', './file0'}, 0xb)
pipe(&(0x7f0000000280)={<r4=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0x9)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)

17.622609861s ago: executing program 6 (id=2388):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
ioctl$TCFLSH(r1, 0x5608, 0x0)

17.605387791s ago: executing program 34 (id=2388):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
ioctl$TCFLSH(r1, 0x5608, 0x0)

2.335341621s ago: executing program 7 (id=2618):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000600)=@security={'security\x00', 0x44, 0x4, 0x390, 0xffffffff, 0x0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x2f0, 0x2f0, 0x2f0, 0xffffffff, 0x6, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @empty, [], [], 'nr0\x00', 'nr0\x00'}, 0x203, 0xe0, 0x108, 0x8502, {0x700}, [@common=@unspec=@quota={{0x38}, {0x2000000}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x0, 0x3}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x4}}}, {{@ipv6={@local, @mcast1, [], [], 'ip6erspan0\x00', 'veth1_macvtap\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CLASSIFY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f0) (async)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000600)=@security={'security\x00', 0x44, 0x4, 0x390, 0xffffffff, 0x0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x2f0, 0x2f0, 0x2f0, 0xffffffff, 0x6, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @empty, [], [], 'nr0\x00', 'nr0\x00'}, 0x203, 0xe0, 0x108, 0x8502, {0x700}, [@common=@unspec=@quota={{0x38}, {0x2000000}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x0, 0x3}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x4}}}, {{@ipv6={@local, @mcast1, [], [], 'ip6erspan0\x00', 'veth1_macvtap\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CLASSIFY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000740)=ANY=[], 0xffc9) (async)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000740)=ANY=[], 0xffc9)
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000280)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x1, 0x246, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x80000001, 0x0, 0x7fff, 0x9b})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)

2.241895073s ago: executing program 7 (id=2621):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000040)=ANY=[@ANYRES64=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlinkat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

2.241462113s ago: executing program 0 (id=2622):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)={{0x14, 0x10, 0x1, 0x0, 0xf5, {0xa}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0xffff}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xcc}}, 0x0)

2.241301253s ago: executing program 7 (id=2623):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r3 = socket$inet6(0xa, 0x80002, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003cc0), 0x0, 0x4001c00)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$inet6(r3, 0x0, 0x0)

2.134473235s ago: executing program 5 (id=2625):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}], {0x14}}, 0xd4}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)

2.082335255s ago: executing program 0 (id=2627):
perf_event_open(&(0x7f0000000400)={0x2, 0x80, 0x68, 0x0, 0x0, 0x7e, 0x0, 0x5, 0x4004, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0xfffffff9, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f00001d3000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00009ad000/0x2000)=nil)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514) (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x21480, &(0x7f0000000000), 0x0, 0x786, &(0x7f0000002380)="$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")
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000840)=ANY=[@ANYRES32, @ANYBLOB='\x00'/11, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000e274335ac5111a11115bff2ee5722e048680dd6fbbaff5f82fb1f96270660bf479a5ceebb7ea9c92c0371e429474e138a5f9477ea0479d04e270a4fcc39d52b32b5c1cfef40dd3c9aceaf2f6edccbb9b43e672e4c8434107ccc504c49c7fac2fc7f2843771f9d2920586278ae64d640713e5ef585e1a281260b9"], 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0xd, &(0x7f0000000180)=ANY=[], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x58) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
lsm_set_self_attr(0x69, 0x0, 0x1020, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
rmdir(&(0x7f0000000500)='\x00') (async, rerun: 64)
socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 64)
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'veth0_to_team\x00', &(0x7f0000000240)=@ethtool_ts_info}) (async)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}) (async)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800}) (async)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0) (async)
add_key$user(&(0x7f0000000380), &(0x7f0000000340)={'syz', 0x0}, &(0x7f0000000600)="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", 0x110, 0xffffffffffffffff) (async)
r2 = add_key$keyring(&(0x7f0000000300), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, 0x0, 0x0)
ioctl$IMHOLD_L1(r0, 0x80044948, &(0x7f0000000480)=0x80000001)
getsockname$packet(0xffffffffffffffff, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000200)=0x11)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x2, &(0x7f00000001c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}, {0xfff1, 0x3, 0x7, 0x7f}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440)) (async, rerun: 32)
r3 = memfd_create(&(0x7f0000000540)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\x06\x00\x00\x00\x00\x00\x00\x00\x13\x00\x00\x00\x9f+\x8d!\x0fG\x1f#\x1a\x12\xb7!$e\xd3\x87$\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xddVs\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*%\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x00', 0x1) (rerun: 32)
fallocate(r3, 0x0, 0x400000000000000, 0x2)

1.684646992s ago: executing program 0 (id=2631):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
chdir(&(0x7f0000000540)='./cgroup\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$getregset(0x4204, r1, 0x202, &(0x7f00000011c0)={&(0x7f0000001100)=""/168, 0xa8})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4d1, &(0x7f0000000b80)="$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")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0xec5, 0x2, 0x0, 0x81, 0x801fc, 0x1, 0x400001}, 0x1c)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000000020"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="40000000100001040000003f0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e00010077697265677561726400000004000280080003"], 0x40}, 0x1, 0xd}, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x2, 0x1, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x1, "a483f184f0334b90f7455389810a695fc32c36677d0b0816", "89a1a2e06cb164e9140c6f4df2c09fa2b0d4fac08c4d603fb6907c2a6aabe251"}}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000001c80)={@random="e904a200", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x20, 0x0, @gue={{0x1, 0x1, 0x1, 0x4, 0x0, @void}, "95b8bcc0"}}}}}}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
open_by_handle_at(r5, &(0x7f0000000040)=@reiserfs_2={0x8, 0xfe, {0xb}}, 0xfe)

1.570597034s ago: executing program 0 (id=2632):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x3000046, &(0x7f0000000240)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@debug}, {@jqfmt_vfsv0}, {@nobh}, {@errors_continue}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0x8000c62)
write$binfmt_elf64(r0, 0x0, 0x478)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r3, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x8, 0x30000000, 0x2)

1.22501655s ago: executing program 3 (id=2636):
r0 = epoll_create1(0x0)
r1 = eventfd2(0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000140)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000100000008000100000000000400048008000c8004000b800800020001000000a00008801c0007800837d73ec300000008000600000000000800050000000000240007800800050000230000000005000000000061ff05000000000008000500000000000400078014000780080006"], 0xd0}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000b80)={0x60000012})
write$eventfd(r1, &(0x7f0000000000)=0x401, 0x8)

1.224379199s ago: executing program 5 (id=2637):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2000}, [@printk={@lld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x7b}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.006574473s ago: executing program 5 (id=2641):
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080), &(0x7f00000000c0)=0x3930)

1.006288673s ago: executing program 3 (id=2642):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="01efeb9821b882f39e3db691f494c9ed816e2b09de7fda39b11330edc409dc8758325e529c799684e6", @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, 0x0, &(0x7f0000000040))
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, 0x0, &(0x7f0000000100))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000380), &(0x7f00000003c0)=r4}, 0x20)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc020000000000000000000000000000ac1e000100000000000000000000f8ffffff0000000a00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000500011007f0000010000000000000000000000000a0101000000000000000000000000000a010100000000000000000000000000640101000000000000000000000000003c000000000000000a000200"], 0xa0}}, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x501000, 0x0)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r9, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {0x1}, @raw32={[0x8]}}], 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r1, 0x1)

1.005908523s ago: executing program 5 (id=2643):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @host}, 0x10)
connect$vsock_stream(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2710}, 0x10)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r2=>0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
r5 = io_uring_setup(0x3eae, &(0x7f0000000600)={0x0, 0xfffffffc, 0x1, 0x104, 0x2f8})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4070, 0xfe6}], 0x1)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x6, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000f52f0000000000000000000018110000", @ANYRESDEC=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

899.873355ms ago: executing program 3 (id=2644):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x10002}, 0x18)
setpgid(0x0, 0x0)

853.388065ms ago: executing program 3 (id=2645):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x2, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x64)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf23f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r4 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r4})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r4})

798.674166ms ago: executing program 3 (id=2647):
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000080)={@multicast2, @broadcast, <r0=>0x0}, &(0x7f00000000c0)=0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000071"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10) (async)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async, rerun: 64)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000480)={[{@grpjquota}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@discard}, {@grpquota}], [{@seclabel}]}, 0x1, 0x446, &(0x7f0000000d40)="$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") (rerun: 64)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004000)={&(0x7f0000000a40)=@newtaction={0x488, 0x30, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1100}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8000, 0xffff0001, 0xe, 0x5, 0x5, 0x7, 0x7, 0x9, 0xfffffffd, 0x9, 0x9, 0x3, 0x1, 0x3, 0x2, 0x2, 0xcf, 0x8, 0x57f5aa8e, 0x80000001, 0x7f, 0x0, 0x3, 0x80, 0x2, 0x8c5ece47, 0x22e, 0x3, 0x7, 0x9, 0x2, 0x1ff, 0x9, 0x2, 0x5, 0x0, 0x7fff, 0x8, 0x948, 0x2, 0x3, 0xfffffff6, 0x2, 0x5, 0x9, 0x1, 0x9, 0x1, 0x401, 0x3, 0x8, 0x400, 0x47c48036, 0x7fff, 0xd8, 0x4, 0x8, 0x3, 0xfffffff5, 0x3, 0x4, 0x7, 0x4, 0x40000000, 0x9, 0x6, 0xfffffff1, 0x6, 0x7, 0x9, 0xcdab, 0x8, 0x0, 0x7, 0x9, 0x81, 0x344808e, 0x800, 0x6, 0x7, 0x0, 0x3, 0xccb7, 0x8, 0x91, 0x2, 0x2, 0x5, 0x2, 0x2b, 0x8, 0x5, 0x1, 0x6, 0xe5, 0x6, 0xc46, 0x2, 0xb, 0x75c8, 0xffff9dd4, 0xffffffff, 0x5, 0x1, 0x8, 0x2, 0x80000000, 0x5, 0x2, 0x3ff, 0x1, 0x9, 0x7, 0x6, 0x7, 0x3, 0x5, 0x7f, 0xffffffff, 0x7, 0x3d3, 0xa9d, 0x2, 0x80000000, 0x5, 0x9, 0x57, 0x7, 0x1ff, 0x9, 0x3, 0x4, 0x22b126f9, 0x0, 0x401, 0x4, 0x2, 0x3ff, 0x7ff, 0x5, 0x5, 0x9, 0xbfea, 0x6, 0x7, 0x800, 0x6, 0xfffffffc, 0xb03c, 0x1, 0x14a7, 0x2, 0x8, 0x8, 0xb, 0x94c, 0x5, 0x7, 0x5, 0x5, 0x6, 0xf, 0x4, 0x4, 0x80000000, 0x2, 0x6, 0x2, 0x9, 0x0, 0x80, 0x9, 0x101, 0x5, 0xfffffffb, 0x6, 0xf, 0x9, 0x3ff, 0x1, 0x7ff, 0x4, 0x7fff, 0x1, 0x7, 0x8a, 0x5, 0x552, 0x75, 0xe, 0xf, 0x8, 0x7, 0x9, 0x40, 0x7, 0x7, 0x4, 0x9, 0x6, 0x45, 0x3, 0x8, 0x4, 0x0, 0x1, 0x6, 0x1, 0x8, 0x6, 0x7, 0xffff, 0x1, 0x10001, 0x8, 0xfff, 0x7fff, 0x5, 0xb, 0x4, 0x0, 0x4, 0x8001, 0xf3, 0x9, 0x3b7, 0x27af, 0xd, 0x1000, 0x6, 0xfffff62c, 0x40000000, 0x73f6, 0xbde, 0x6, 0x0, 0x3, 0xe, 0x1, 0x8495, 0x3b, 0x1, 0xfff, 0x1, 0x1, 0x2, 0x6, 0x97b, 0x4, 0x91f, 0x1, 0xff, 0x1, 0x9, 0x5, 0x1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x5, 0x4}, {0x0, 0x0, 0x9, 0x0, 0x2}}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x488}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000280)={0x1, 0x66c, 0x0, 'queue1\x00'}) (async, rerun: 32)
poll(&(0x7f0000000100)=[{r3}], 0x1, 0x9d) (async, rerun: 32)
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x3e}, 0x18) (async)
syz_read_part_table(0x5c3, &(0x7f00000005c0)="$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") (async)
r4 = open(&(0x7f0000000140)='./file0\x00', 0x581402, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='spmi_write_begin\x00', r4}, 0x18) (async)
sendmsg$nl_route(r4, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x84000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=@ipv4_newnexthop={0x20, 0x68, 0x100, 0x70bd2a, 0x25dfdbfe, {0x2, 0x0, 0x3, 0x0, 0x31}, [@NHA_GROUP_TYPE={0x6}]}, 0x20}}, 0x800)

489.204901ms ago: executing program 5 (id=2652):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000500"/22], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet(0xa, 0x801, 0x84)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r5, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'batadv0\x00', <r6=>0x0})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000580)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000340)=0xe8)
setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000680)={{{@in=@rand_addr=0x64010101, @in6=@remote, 0x4e24, 0x6000, 0x4e23, 0x8, 0x2, 0x20, 0x10, 0xc, r6, r7}, {0x0, 0x5, 0x5, 0x0, 0x1, 0xab42, 0x1, 0x1}, {0x5e1a7a67, 0xffffffffffff7fff, 0x9, 0x1}, 0xe, 0x6e6bbb, 0x1, 0x1, 0x2, 0x3}, {{@in=@multicast1, 0x4d4, 0x6c}, 0x2, @in=@private=0xa010101, 0x3507, 0x2, 0x2, 0x62, 0x9, 0x9, 0x2}}, 0xe8)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r9, &(0x7f0000000000)={0xa, 0x0, 0x2, @mcast1, 0x9}, 0x1c)
connect$pppl2tp(r8, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r9, 0x8, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00', 0xfffffffe}}}, 0x32)
writev(r8, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r2, 0x8000)
r10 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r10, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x1}, 0x8)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x9, 0x7ffffffb}]})
close_range(r11, 0xffffffffffffffff, 0x0)

443.071512ms ago: executing program 2 (id=2653):
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080), &(0x7f00000000c0)=0x3930)

418.182763ms ago: executing program 5 (id=2654):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x862, 0x2}, 0x0, 0x2, 0x7, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
syz_io_uring_setup(0xbc3, 0x0, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x40810)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r3, &(0x7f0000000080)="b3019c28", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r3, 0x29, 0x8, &(0x7f0000000380)=0x3f, 0x4)
recvmmsg(r3, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000000c0)=@nl, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)=""/186}, {0xffffffffffffffff}], 0x0, &(0x7f0000000280)=""/239, 0x13}}, {{&(0x7f0000000e80)=@vsock={0x28, 0x0, 0x0, @host}, 0x0, &(0x7f0000000680)=[{&(0x7f0000000400)=""/18}, {&(0x7f0000000440)=""/110}, {&(0x7f00000004c0)=""/165}, {&(0x7f0000001540)=""/4096}, {&(0x7f0000000580)=""/245}], 0x0, &(0x7f0000000700)=""/27}}, {{&(0x7f0000000740)=@nfc, 0x0, &(0x7f0000000c00), 0x0, &(0x7f0000000cc0)=""/180}}], 0x4000000000001f1, 0x10162, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000002c2c0000e5060a0b04000000000000000002000000090001007379d191c3dacf66746bdf9d6c7a30000000000900020073797a4b00000400140000001100"], 0x54}, 0x1, 0x0, 0x0, 0x20048004}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)

321.536654ms ago: executing program 2 (id=2655):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setpgid(0x0, 0x0)

314.073004ms ago: executing program 2 (id=2656):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x0, &(0x7f0000000a40)={[{@min_batch_time={'min_batch_time', 0x3d, 0x200}}]}, 0x1, 0x439, &(0x7f0000001240)="$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")
openat(0xffffffffffffff9c, 0x0, 0x441, 0x14a)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0f000000040000000400000015"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
recvmsg$unix(r1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x804, &(0x7f0000000300)={[{@barrier_val={'barrier', 0x3d, 0xeb}}, {@noblock_validity}]}, 0x1, 0x511, &(0x7f0000000a80)="$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")

291.556565ms ago: executing program 7 (id=2657):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x2, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x64)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf23f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r4 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r4})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r4})

266.956225ms ago: executing program 7 (id=2658):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000003500)=@newtfilter={0x74, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r2, {0xc, 0xfff1}, {}, {0x5, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x44, 0x2, [@TCA_FLOW_EMATCHES={0x40, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x74}}, 0x20040054)

222.777216ms ago: executing program 2 (id=2659):
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x20080)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x10)
tkill(0x0, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='svcrdma_decode_short_err\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
listen(r1, 0x3)
setsockopt$inet6_int(r1, 0x29, 0x8, &(0x7f0000000000)=0x3, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

222.203946ms ago: executing program 7 (id=2660):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000540)='highspeed\x00', 0xa)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x714, 0x0, 0xfffffffffffffd25)
getpeername$inet(r0, &(0x7f0000005b40)={0x2, 0x0, @dev}, &(0x7f0000005b80)=0x10)

182.980657ms ago: executing program 2 (id=2661):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000003ac0))
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080), &(0x7f00000000c0)=0x3930)

182.633186ms ago: executing program 3 (id=2662):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @host}, 0x10)
connect$vsock_stream(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2710}, 0x10)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r2=>0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
r5 = io_uring_setup(0x3eae, &(0x7f0000000600)={0x0, 0xfffffffc, 0x1, 0x104, 0x2f8})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4070, 0xfe6}], 0x1)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x6, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000f52f0000000000000000000018110000", @ANYRESDEC=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

126.543267ms ago: executing program 2 (id=2663):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000080), &(0x7f00000002c0)=r1}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000140)={r2, 0x58, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r8, 0x0, 0xca, &(0x7f0000000180)={0xffffffffffffffff, 0x1, 0x9, 0xb, @vifc_lcl_ifindex=r7, @local}, 0x10)

44.035429ms ago: executing program 0 (id=2665):
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080), &(0x7f00000000c0)=0x3930)

0s ago: executing program 0 (id=2666):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="00000000007b8af8ff00000000bfa200060000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4, 0x0, 0x318a054d}, 0x18)
mount_setattr(0xffffffffffffffff, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0x0, 0x0, 0x100000}, 0x20)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000280)={0x0, {0x2, 0x4e21, @remote}, {0x2, 0x4e24, @remote}, {0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)='wg1\x00', 0x0, 0x9, 0x967})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00'}, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020300000b0000000000000000000000030006000000000002000000e000000100000000000000000200010000001c000000fb16000000000300050000000000020000007f0000010000000000000000010018"], 0x58}, 0x1, 0x7}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x800)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xfea4)
socket$nl_netfilter(0x10, 0x3, 0xc)
lsetxattr(0x0, 0x0, 0x0, 0x0, 0x6)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x8010, &(0x7f0000000380)=ANY=[@ANYBLOB='iocharset=utf8,shortname=winnt\x00\b\x00\x00\x00\x00\x00\x00uni_xlate=1,showexec,flush,shortname=win95,nonumpail=0,rodir,utf8=0,shortname/mixed,umask=000000\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x5, 0x2a1, &(0x7f0000000a00)="$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")
r8 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
fallocate(r8, 0x41, 0x0, 0x1000f8)
sendfile(r8, r8, 0x0, 0x100000008)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x4001, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')

kernel console output (not intermixed with test programs):

2143][ T8980]  ? should_failslab+0x8f/0xb0
[  128.572196][ T8980]  ? __kmalloc_cache_noprof+0x18d/0x320
[  128.572224][ T8980]  ? v9fs_mount+0x56/0x580
[  128.572261][ T8980]  v9fs_mount+0x6c/0x580
[  128.572297][ T8980]  ? __pfx_v9fs_mount+0x10/0x10
[  128.572393][ T8980]  legacy_get_tree+0x77/0xd0
[  128.572436][ T8980]  vfs_get_tree+0x56/0x1e0
[  128.572475][ T8980]  do_new_mount+0x246/0x6b0
[  128.572520][ T8980]  path_mount+0x49b/0xb30
[  128.572678][ T8980]  __se_sys_mount+0x28f/0x2e0
[  128.572792][ T8980]  __x64_sys_mount+0x67/0x80
[  128.572834][ T8980]  x64_sys_call+0xd11/0x2e10
[  128.572862][ T8980]  do_syscall_64+0xc9/0x1c0
[  128.572967][ T8980]  ? clear_bhb_loop+0x25/0x80
[  128.573029][ T8980]  ? clear_bhb_loop+0x25/0x80
[  128.573105][ T8980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.573178][ T8980] RIP: 0033:0x7f15cb40d169
[  128.573198][ T8980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.573220][ T8980] RSP: 002b:00007f15c9a6f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  128.573244][ T8980] RAX: ffffffffffffffda RBX: 00007f15cb625fa0 RCX: 00007f15cb40d169
[  128.573259][ T8980] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 0000000000000000
[  128.573275][ T8980] RBP: 00007f15c9a6f090 R08: 0000200000000040 R09: 0000000000000000
[  128.573351][ T8980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  128.573440][ T8980] R13: 0000000000000000 R14: 00007f15cb625fa0 R15: 00007ffdec7c6108
[  128.573465][ T8980]  </TASK>
[  128.577350][ T8982] pim6reg: left allmulticast mode
[  128.615648][ T8979] loop2: detected capacity change from 0 to 2048
[  128.893498][ T8979] Alternate GPT is invalid, using primary GPT.
[  128.899838][ T8979]  loop2: p1 p2 p3
[  129.054100][ T9001] loop0: detected capacity change from 0 to 512
[  129.089278][ T9001] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  129.139653][ T9001] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  129.151258][   T29] kauditd_printk_skb: 214 callbacks suppressed
[  129.151275][   T29] audit: type=1326 audit(1744730152.406:31063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.183860][   T29] audit: type=1326 audit(1744730152.406:31064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.233039][ T9001] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.1914: corrupted in-inode xattr: e_value size too large
[  129.345196][ T9001] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.1914: couldn't read orphan inode 15 (err -117)
[  129.374646][   T29] audit: type=1326 audit(1744730152.466:31065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.398387][   T29] audit: type=1326 audit(1744730152.466:31066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.422353][   T29] audit: type=1326 audit(1744730152.466:31067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.446469][   T29] audit: type=1326 audit(1744730152.466:31068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.470576][   T29] audit: type=1326 audit(1744730152.466:31069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.494311][   T29] audit: type=1326 audit(1744730152.466:31070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.517871][   T29] audit: type=1326 audit(1744730152.466:31071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.541586][   T29] audit: type=1326 audit(1744730152.466:31072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9005 comm="syz.5.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38ec9d169 code=0x7ffc0000
[  129.678858][ T9021] netlink: 596 bytes leftover after parsing attributes in process `syz.3.1920'.
[  129.706950][ T9023] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1917'.
[  129.775313][ T9025] loop3: detected capacity change from 0 to 512
[  129.804681][ T9025] EXT4-fs (loop3): too many log groups per flexible block group
[  129.813061][ T9025] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  129.872009][ T9025] EXT4-fs (loop3): mount failed
[  129.988441][ T2968] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.003247][ T2968] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  130.263172][ T9043] SELinux: syz.0.1927 (9043) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  130.378541][ T9053] loop6: detected capacity change from 0 to 512
[  130.394011][ T9053] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  130.628768][ T9062] netlink: 596 bytes leftover after parsing attributes in process `syz.3.1931'.
[  130.672469][ T9064] loop5: detected capacity change from 0 to 512
[  130.695192][ T9053] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  130.714217][ T9064] EXT4-fs (loop5): too many log groups per flexible block group
[  130.720971][ T9053] EXT4-fs error (device loop6): ext4_iget_extra_inode:4693: inode #15: comm syz.6.1929: corrupted in-inode xattr: e_value size too large
[  130.722251][ T9064] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  130.754193][ T9053] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.1929: couldn't read orphan inode 15 (err -117)
[  130.836663][ T3005] Alternate GPT is invalid, using primary GPT.
[  130.843454][ T3005]  loop2: p1 p2 p3
[  130.858616][ T9064] EXT4-fs (loop5): mount failed
[  131.127306][ T9083] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.176816][ T9095] netlink: 'syz.6.1941': attribute type 10 has an invalid length.
[  131.185056][ T9095] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1941'.
[  131.242347][ T9095] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  131.263180][ T9095] team0: Failed to send options change via netlink (err -105)
[  131.270815][ T9095] team0: Port device geneve1 added
[  131.285784][ T9083] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.312226][ T9107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1934'.
[  131.321678][ T9107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1934'.
[  131.336668][ T9083] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.367357][ T9111] loop5: detected capacity change from 0 to 512
[  131.405019][ T9111] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  131.434190][ T9083] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.452851][ T9111] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  131.483580][ T9111] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.1947: corrupted in-inode xattr: e_value size too large
[  131.555296][ T9111] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.1947: couldn't read orphan inode 15 (err -117)
[  131.578549][ T9083] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.591246][ T9083] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.604298][ T9083] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.617083][ T9083] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.673194][ T9132] FAULT_INJECTION: forcing a failure.
[  131.673194][ T9132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.686349][ T9132] CPU: 1 UID: 0 PID: 9132 Comm: syz.5.1953 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  131.686380][ T9132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  131.686394][ T9132] Call Trace:
[  131.686434][ T9132]  <TASK>
[  131.686444][ T9132]  dump_stack_lvl+0xf6/0x150
[  131.686531][ T9132]  dump_stack+0x15/0x1a
[  131.686557][ T9132]  should_fail_ex+0x261/0x270
[  131.686633][ T9132]  should_fail+0xb/0x10
[  131.686669][ T9132]  should_fail_usercopy+0x1a/0x20
[  131.686772][ T9132]  _copy_to_user+0x20/0xa0
[  131.686810][ T9132]  simple_read_from_buffer+0xb2/0x130
[  131.686849][ T9132]  proc_fail_nth_read+0x103/0x140
[  131.686874][ T9132]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.686915][ T9132]  vfs_read+0x1b2/0x710
[  131.686947][ T9132]  ? __rcu_read_unlock+0x4e/0x70
[  131.686981][ T9132]  ? __fget_files+0x186/0x1c0
[  131.687004][ T9132]  ksys_read+0xeb/0x1b0
[  131.687104][ T9132]  __x64_sys_read+0x42/0x50
[  131.687184][ T9132]  x64_sys_call+0x2a3b/0x2e10
[  131.687210][ T9132]  do_syscall_64+0xc9/0x1c0
[  131.687260][ T9132]  ? clear_bhb_loop+0x25/0x80
[  131.687281][ T9132]  ? clear_bhb_loop+0x25/0x80
[  131.687306][ T9132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.687331][ T9132] RIP: 0033:0x7fc38ec9bb7c
[  131.687435][ T9132] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  131.687457][ T9132] RSP: 002b:00007fc38d2ff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  131.687476][ T9132] RAX: ffffffffffffffda RBX: 00007fc38eeb5fa0 RCX: 00007fc38ec9bb7c
[  131.687488][ T9132] RDX: 000000000000000f RSI: 00007fc38d2ff0a0 RDI: 0000000000000007
[  131.687500][ T9132] RBP: 00007fc38d2ff090 R08: 0000000000000000 R09: 0000000000000000
[  131.687511][ T9132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.687525][ T9132] R13: 0000000000000000 R14: 00007fc38eeb5fa0 R15: 00007fff0079b5e8
[  131.687623][ T9132]  </TASK>
[  131.891339][ T9133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.905338][ T9133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.951921][ T9133] bond1: entered promiscuous mode
[  131.957429][ T9133] bond1: entered allmulticast mode
[  131.963908][ T9133] 8021q: adding VLAN 0 to HW filter on device bond1
[  131.976092][ T9133] bond1 (unregistering): Released all slaves
[  132.130201][ T9159] lo speed is unknown, defaulting to 1000
[  132.272911][ T9172] lo speed is unknown, defaulting to 1000
[  132.315648][ T9175] FAULT_INJECTION: forcing a failure.
[  132.315648][ T9175] name failslab, interval 1, probability 0, space 0, times 0
[  132.328476][ T9175] CPU: 1 UID: 0 PID: 9175 Comm: syz.6.1962 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  132.328506][ T9175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.328527][ T9175] Call Trace:
[  132.328533][ T9175]  <TASK>
[  132.328544][ T9175]  dump_stack_lvl+0xf6/0x150
[  132.328575][ T9175]  dump_stack+0x15/0x1a
[  132.328591][ T9175]  should_fail_ex+0x261/0x270
[  132.328625][ T9175]  should_failslab+0x8f/0xb0
[  132.328656][ T9175]  __kvmalloc_node_noprof+0x12c/0x520
[  132.328677][ T9175]  ? alloc_netdev_mqs+0x752/0xac0
[  132.328738][ T9175]  alloc_netdev_mqs+0x752/0xac0
[  132.328874][ T9175]  __ip_tunnel_create+0x271/0x3f0
[  132.328914][ T9175]  ? ip_tunnel_find+0x2c3/0x310
[  132.328982][ T9175]  ip_tunnel_ctl+0x426/0x7b0
[  132.329010][ T9175]  ipip_tunnel_ctl+0xc7/0x150
[  132.329052][ T9175]  vif_add+0x1eb/0xe40
[  132.329086][ T9175]  ip_mroute_setsockopt+0x8a1/0x950
[  132.329111][ T9175]  do_ip_setsockopt+0xd06/0x22a0
[  132.329142][ T9175]  ip_setsockopt+0x63/0x100
[  132.329158][ T9175]  raw_setsockopt+0x10f/0x170
[  132.329230][ T9175]  sock_common_setsockopt+0x64/0x80
[  132.329248][ T9175]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  132.329286][ T9175]  __sys_setsockopt+0x187/0x200
[  132.329310][ T9175]  __x64_sys_setsockopt+0x66/0x80
[  132.329333][ T9175]  x64_sys_call+0x2a09/0x2e10
[  132.329352][ T9175]  do_syscall_64+0xc9/0x1c0
[  132.329412][ T9175]  ? clear_bhb_loop+0x25/0x80
[  132.329430][ T9175]  ? clear_bhb_loop+0x25/0x80
[  132.329447][ T9175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.329475][ T9175] RIP: 0033:0x7fc3628fd169
[  132.329493][ T9175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.329578][ T9175] RSP: 002b:00007fc360f46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  132.329595][ T9175] RAX: ffffffffffffffda RBX: 00007fc362b16080 RCX: 00007fc3628fd169
[  132.329680][ T9175] RDX: 00000000000000ca RSI: 0000000000000000 RDI: 0000000000000004
[  132.329690][ T9175] RBP: 00007fc360f46090 R08: 0000000000000010 R09: 0000000000000000
[  132.329714][ T9175] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  132.329724][ T9175] R13: 0000000000000000 R14: 00007fc362b16080 R15: 00007fff3813ed28
[  132.329741][ T9175]  </TASK>
[  132.572364][ T9174] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1963'.
[  132.587673][ T9174] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1963'.
[  132.642764][ T9174] bond1: entered promiscuous mode
[  132.648384][ T9174] 8021q: adding VLAN 0 to HW filter on device bond1
[  132.669972][ T9181] tipc: Enabled bearer <udp:syz2>, priority 10
[  132.882609][ T9190] lo speed is unknown, defaulting to 1000
[  133.017414][ T9215] pim6reg1: entered promiscuous mode
[  133.022887][ T9215] pim6reg1: entered allmulticast mode
[  133.318912][ T9222] FAULT_INJECTION: forcing a failure.
[  133.318912][ T9222] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  133.332619][ T9222] CPU: 1 UID: 0 PID: 9222 Comm: syz.2.1976 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  133.332649][ T9222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.332665][ T9222] Call Trace:
[  133.332673][ T9222]  <TASK>
[  133.332682][ T9222]  dump_stack_lvl+0xf6/0x150
[  133.332710][ T9222]  dump_stack+0x15/0x1a
[  133.332731][ T9222]  should_fail_ex+0x261/0x270
[  133.332765][ T9222]  should_fail_alloc_page+0xfd/0x110
[  133.332801][ T9222]  __alloc_frozen_pages_noprof+0x11d/0x360
[  133.332839][ T9222]  alloc_pages_mpol+0xb6/0x260
[  133.332869][ T9222]  alloc_pages_noprof+0xe8/0x130
[  133.332898][ T9222]  __pmd_alloc+0x4d/0x440
[  133.332919][ T9222]  copy_page_range+0x374c/0x3a20
[  133.332947][ T9222]  ? mod_objcg_state+0x3f9/0x530
[  133.332981][ T9222]  ? mas_wr_store_type+0x6da/0xb50
[  133.333023][ T9222]  ? mas_store+0x546/0x740
[  133.333062][ T9222]  copy_mm+0xabc/0x1360
[  133.333097][ T9222]  copy_process+0xcfc/0x1f60
[  133.333131][ T9222]  kernel_clone+0x168/0x5d0
[  133.333168][ T9222]  __x64_sys_clone+0xe9/0x120
[  133.333205][ T9222]  x64_sys_call+0x2dc9/0x2e10
[  133.333227][ T9222]  do_syscall_64+0xc9/0x1c0
[  133.333262][ T9222]  ? clear_bhb_loop+0x25/0x80
[  133.333288][ T9222]  ? clear_bhb_loop+0x25/0x80
[  133.333314][ T9222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.333340][ T9222] RIP: 0033:0x7f16f760d169
[  133.333359][ T9222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.333381][ T9222] RSP: 002b:00007f16f5c34fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  133.333400][ T9222] RAX: ffffffffffffffda RBX: 00007f16f7826160 RCX: 00007f16f760d169
[  133.333415][ T9222] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000c0008000
[  133.333427][ T9222] RBP: 00007f16f5c35090 R08: 0000000000000000 R09: 0000000000000000
[  133.333440][ T9222] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  133.333453][ T9222] R13: 0000000000000000 R14: 00007f16f7826160 R15: 00007ffc728d9038
[  133.333483][ T9222]  </TASK>
[  133.812942][ T9225] loop5: detected capacity change from 0 to 512
[  133.819568][ T9226] loop3: detected capacity change from 0 to 512
[  133.823155][ T9225] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  133.836074][ T9225] EXT4-fs (loop5): invalid journal inode
[  133.842732][ T9225] EXT4-fs (loop5): can't get journal size
[  133.849866][ T9225] EXT4-fs (loop5): 1 truncate cleaned up
[  133.857691][ T9226] EXT4-fs (loop3): too many log groups per flexible block group
[  133.863995][ T9225] smc: net device bond0 applied user defined pnetid SYZ0
[  133.866400][ T9226] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  133.875780][ T9225] smc: net device bond0 erased user defined pnetid SYZ0
[  133.881115][ T9226] EXT4-fs (loop3): mount failed
[  134.016063][ T9236] loop3: detected capacity change from 0 to 256
[  134.041686][ T9237] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1982'.
[  134.075427][ T9236] FAT-fs (loop3): codepage cp861 not found
[  134.114828][ T9233] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1980'.
[  134.140066][ T9245] loop2: detected capacity change from 0 to 512
[  134.171588][ T9245] EXT4-fs (loop2): orphan cleanup on readonly fs
[  134.185055][ T9245] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.1984: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 48132(4), depth 0(0)
[  134.212448][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  134.212463][   T29] audit: type=1400 audit(1744730157.466:31171): avc:  denied  { create } for  pid=9246 comm="syz.6.1985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  134.225049][ T9245] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.1984: couldn't read orphan inode 13 (err -117)
[  134.240261][   T29] audit: type=1400 audit(1744730157.466:31172): avc:  denied  { write } for  pid=9246 comm="syz.6.1985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  134.273005][   T29] audit: type=1400 audit(1744730157.466:31173): avc:  denied  { nlmsg_read } for  pid=9246 comm="syz.6.1985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  134.296258][   T29] audit: type=1400 audit(1744730157.466:31174): avc:  denied  { connect } for  pid=9230 comm="syz.5.1979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  134.300051][ T9256] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1986'.
[  134.328390][ T9253] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1986'.
[  134.364761][   T29] audit: type=1400 audit(1744730157.616:31175): avc:  denied  { read write } for  pid=9257 comm="+}[@" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  134.389825][   T29] audit: type=1400 audit(1744730157.616:31176): avc:  denied  { open } for  pid=9257 comm="+}[@" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  134.467890][   T29] audit: type=1400 audit(1744730157.706:31177): avc:  denied  { connect } for  pid=9264 comm="syz.5.1988" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  134.509224][   T29] audit: type=1400 audit(1744730157.756:31178): avc:  denied  { map_create } for  pid=9270 comm="syz.5.1992" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  134.510341][ T9269] loop3: detected capacity change from 0 to 512
[  134.565797][   T29] audit: type=1400 audit(1744730157.756:31179): avc:  denied  { read write } for  pid=9268 comm="syz.3.1990" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  134.590886][   T29] audit: type=1400 audit(1744730157.756:31180): avc:  denied  { open } for  pid=9268 comm="syz.3.1990" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  134.640016][ T9269] EXT4-fs (loop3): too many log groups per flexible block group
[  134.648148][ T9269] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  134.658979][ T9269] EXT4-fs (loop3): mount failed
[  134.731161][ T9286] FAULT_INJECTION: forcing a failure.
[  134.731161][ T9286] name failslab, interval 1, probability 0, space 0, times 0
[  134.744052][ T9286] CPU: 1 UID: 0 PID: 9286 Comm: syz.3.1997 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  134.744086][ T9286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.744098][ T9286] Call Trace:
[  134.744105][ T9286]  <TASK>
[  134.744113][ T9286]  dump_stack_lvl+0xf6/0x150
[  134.744136][ T9286]  dump_stack+0x15/0x1a
[  134.744229][ T9286]  should_fail_ex+0x261/0x270
[  134.744257][ T9286]  should_failslab+0x8f/0xb0
[  134.744373][ T9286]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  134.744410][ T9286]  ? __alloc_skb+0x10d/0x320
[  134.744440][ T9286]  __alloc_skb+0x10d/0x320
[  134.744465][ T9286]  ? audit_log_start+0x37f/0x6e0
[  134.744525][ T9286]  audit_log_start+0x39a/0x6e0
[  134.744549][ T9286]  ? kstrtouint+0x7b/0xc0
[  134.744578][ T9286]  audit_seccomp+0x4b/0x130
[  134.744597][ T9286]  __seccomp_filter+0x694/0x10e0
[  134.744650][ T9286]  ? vfs_write+0x669/0x950
[  134.744690][ T9286]  __secure_computing+0x7e/0x160
[  134.744741][ T9286]  syscall_trace_enter+0xcf/0x1f0
[  134.744779][ T9286]  do_syscall_64+0xaa/0x1c0
[  134.744813][ T9286]  ? clear_bhb_loop+0x25/0x80
[  134.744838][ T9286]  ? clear_bhb_loop+0x25/0x80
[  134.744863][ T9286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.744957][ T9286] RIP: 0033:0x7f15cb40d169
[  134.744971][ T9286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.744992][ T9286] RSP: 002b:00007f15c9a6f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e5
[  134.745093][ T9286] RAX: ffffffffffffffda RBX: 00007f15cb625fa0 RCX: 00007f15cb40d169
[  134.745109][ T9286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  134.745123][ T9286] RBP: 00007f15c9a6f090 R08: 0000000000000000 R09: 0000000000000000
[  134.745138][ T9286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.745152][ T9286] R13: 0000000000000000 R14: 00007f15cb625fa0 R15: 00007ffdec7c6108
[  134.745174][ T9286]  </TASK>
[  134.745821][ T9280] can: request_module (can-proto-3) failed.
[  134.952581][ T9289] FAULT_INJECTION: forcing a failure.
[  134.952581][ T9289] name failslab, interval 1, probability 0, space 0, times 0
[  134.965375][ T9289] CPU: 0 UID: 0 PID: 9289 Comm: syz.3.1998 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  134.965425][ T9289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.965442][ T9289] Call Trace:
[  134.965450][ T9289]  <TASK>
[  134.965460][ T9289]  dump_stack_lvl+0xf6/0x150
[  134.965490][ T9289]  dump_stack+0x15/0x1a
[  134.965569][ T9289]  should_fail_ex+0x261/0x270
[  134.965609][ T9289]  should_failslab+0x8f/0xb0
[  134.965716][ T9289]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  134.965782][ T9289]  ? __alloc_skb+0x10d/0x320
[  134.965813][ T9289]  __alloc_skb+0x10d/0x320
[  134.965843][ T9289]  netlink_ack+0xf1/0x4f0
[  134.965877][ T9289]  netlink_rcv_skb+0x19f/0x230
[  134.965907][ T9289]  ? __pfx_genl_rcv_msg+0x10/0x10
[  134.965973][ T9289]  genl_rcv+0x28/0x40
[  134.966007][ T9289]  netlink_unicast+0x605/0x6c0
[  134.966056][ T9289]  netlink_sendmsg+0x609/0x720
[  134.966092][ T9289]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.966124][ T9289]  __sock_sendmsg+0x140/0x180
[  134.966207][ T9289]  ____sys_sendmsg+0x350/0x4e0
[  134.966287][ T9289]  __sys_sendmsg+0x1a0/0x240
[  134.966338][ T9289]  __x64_sys_sendmsg+0x46/0x50
[  134.966371][ T9289]  x64_sys_call+0x26f3/0x2e10
[  134.966392][ T9289]  do_syscall_64+0xc9/0x1c0
[  134.966477][ T9289]  ? clear_bhb_loop+0x25/0x80
[  134.966504][ T9289]  ? clear_bhb_loop+0x25/0x80
[  134.966531][ T9289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.966563][ T9289] RIP: 0033:0x7f15cb40d169
[  134.966588][ T9289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.966611][ T9289] RSP: 002b:00007f15c9a6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.966635][ T9289] RAX: ffffffffffffffda RBX: 00007f15cb625fa0 RCX: 00007f15cb40d169
[  134.966671][ T9289] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000007
[  134.966686][ T9289] RBP: 00007f15c9a6f090 R08: 0000000000000000 R09: 0000000000000000
[  134.966701][ T9289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.966764][ T9289] R13: 0000000000000000 R14: 00007f15cb625fa0 R15: 00007ffdec7c6108
[  134.966782][ T9289]  </TASK>
[  135.540104][ T9317] loop5: detected capacity change from 0 to 512
[  135.549818][ T9319] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2010'.
[  135.564796][ T9317] EXT4-fs (loop5): 1 orphan inode deleted
[  135.573550][ T9317] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.584767][ T6777] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  135.627837][ T9323] FAULT_INJECTION: forcing a failure.
[  135.627837][ T9323] name failslab, interval 1, probability 0, space 0, times 0
[  135.641470][ T9323] CPU: 0 UID: 0 PID: 9323 Comm: syz.0.2012 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  135.641503][ T9323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  135.641519][ T9323] Call Trace:
[  135.641543][ T9323]  <TASK>
[  135.641553][ T9323]  dump_stack_lvl+0xf6/0x150
[  135.641584][ T9323]  dump_stack+0x15/0x1a
[  135.641642][ T9323]  should_fail_ex+0x261/0x270
[  135.641721][ T9323]  should_failslab+0x8f/0xb0
[  135.641760][ T9323]  __kmalloc_cache_noprof+0x55/0x320
[  135.641790][ T9323]  ? legacy_init_fs_context+0x31/0x70
[  135.641848][ T9323]  ? __kmalloc_cache_noprof+0x22b/0x320
[  135.641878][ T9323]  legacy_init_fs_context+0x31/0x70
[  135.641920][ T9323]  alloc_fs_context+0x3fb/0x4e0
[  135.641969][ T9323]  fs_context_for_mount+0x21/0x30
[  135.642004][ T9323]  do_new_mount+0xf1/0x6b0
[  135.642042][ T9323]  path_mount+0x49b/0xb30
[  135.642155][ T9323]  __se_sys_mount+0x28f/0x2e0
[  135.642200][ T9323]  __x64_sys_mount+0x67/0x80
[  135.642262][ T9323]  x64_sys_call+0xd11/0x2e10
[  135.642298][ T9323]  do_syscall_64+0xc9/0x1c0
[  135.642336][ T9323]  ? clear_bhb_loop+0x25/0x80
[  135.642363][ T9323]  ? clear_bhb_loop+0x25/0x80
[  135.642398][ T9323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.642424][ T9323] RIP: 0033:0x7f36792cd169
[  135.642444][ T9323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.642467][ T9323] RSP: 002b:00007f367792f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  135.642490][ T9323] RAX: ffffffffffffffda RBX: 00007f36794e5fa0 RCX: 00007f36792cd169
[  135.642505][ T9323] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000000
[  135.642520][ T9323] RBP: 00007f367792f090 R08: 0000200000000480 R09: 0000000000000000
[  135.642599][ T9323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  135.642615][ T9323] R13: 0000000000000000 R14: 00007f36794e5fa0 R15: 00007ffc5beaae28
[  135.642636][ T9323]  </TASK>
[  135.964161][ T9329] loop5: detected capacity change from 0 to 1024
[  136.003955][ T9329] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  136.059451][ T9329] JBD2: no valid journal superblock found
[  136.065324][ T9329] EXT4-fs (loop5): Could not load journal inode
[  136.170424][ T9355] loop6: detected capacity change from 0 to 512
[  136.178573][ T2968] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  136.195810][ T9354] loop3: detected capacity change from 0 to 1024
[  136.210594][ T2968] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  136.222413][ T9355] EXT4-fs (loop6): 1 orphan inode deleted
[  136.234423][ T9359] 9pnet_fd: Insufficient options for proto=fd
[  136.242302][ T6777] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  136.254285][ T9354] EXT4-fs: Ignoring removed nomblk_io_submit option
[  136.279180][ T9355] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.309088][ T9354] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  136.395471][ T9372] FAULT_INJECTION: forcing a failure.
[  136.395471][ T9372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.408787][ T9372] CPU: 1 UID: 0 PID: 9372 Comm: syz.2.2032 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  136.408821][ T9372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.408836][ T9372] Call Trace:
[  136.408843][ T9372]  <TASK>
[  136.408884][ T9372]  dump_stack_lvl+0xf6/0x150
[  136.408913][ T9372]  dump_stack+0x15/0x1a
[  136.408933][ T9372]  should_fail_ex+0x261/0x270
[  136.408981][ T9372]  should_fail+0xb/0x10
[  136.409009][ T9372]  should_fail_usercopy+0x1a/0x20
[  136.409041][ T9372]  _copy_from_iter+0xd8/0xd10
[  136.409084][ T9372]  ? kmalloc_reserve+0x16e/0x190
[  136.409110][ T9372]  ? __build_skb_around+0x199/0x1f0
[  136.409136][ T9372]  ? __alloc_skb+0x227/0x320
[  136.409160][ T9372]  ? __virt_addr_valid+0x1ed/0x250
[  136.409184][ T9372]  ? __check_object_size+0x367/0x510
[  136.409240][ T9372]  netlink_sendmsg+0x492/0x720
[  136.409276][ T9372]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.409378][ T9372]  __sock_sendmsg+0x140/0x180
[  136.409400][ T9372]  ____sys_sendmsg+0x350/0x4e0
[  136.409437][ T9372]  __sys_sendmsg+0x1a0/0x240
[  136.409486][ T9372]  __x64_sys_sendmsg+0x46/0x50
[  136.409584][ T9372]  x64_sys_call+0x26f3/0x2e10
[  136.409696][ T9372]  do_syscall_64+0xc9/0x1c0
[  136.409731][ T9372]  ? clear_bhb_loop+0x25/0x80
[  136.409834][ T9372]  ? clear_bhb_loop+0x25/0x80
[  136.409855][ T9372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.409876][ T9372] RIP: 0033:0x7f16f760d169
[  136.409893][ T9372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.409992][ T9372] RSP: 002b:00007f16f5c77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.410038][ T9372] RAX: ffffffffffffffda RBX: 00007f16f7825fa0 RCX: 00007f16f760d169
[  136.410050][ T9372] RDX: 0000000000000080 RSI: 0000200000000340 RDI: 0000000000000006
[  136.410064][ T9372] RBP: 00007f16f5c77090 R08: 0000000000000000 R09: 0000000000000000
[  136.410078][ T9372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.410092][ T9372] R13: 0000000000000000 R14: 00007f16f7825fa0 R15: 00007ffc728d9038
[  136.410113][ T9372]  </TASK>
[  136.628213][ T9375] FAULT_INJECTION: forcing a failure.
[  136.628213][ T9375] name failslab, interval 1, probability 0, space 0, times 0
[  136.641733][ T9375] CPU: 1 UID: 0 PID: 9375 Comm: syz.6.2033 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  136.641763][ T9375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.641887][ T9375] Call Trace:
[  136.641895][ T9375]  <TASK>
[  136.641902][ T9375]  dump_stack_lvl+0xf6/0x150
[  136.641957][ T9375]  dump_stack+0x15/0x1a
[  136.642029][ T9375]  should_fail_ex+0x261/0x270
[  136.642122][ T9375]  should_failslab+0x8f/0xb0
[  136.642157][ T9375]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  136.642182][ T9375]  ? __alloc_skb+0x10d/0x320
[  136.642220][ T9375]  __alloc_skb+0x10d/0x320
[  136.642249][ T9375]  netlink_ack+0xf1/0x4f0
[  136.642281][ T9375]  netlink_rcv_skb+0x19f/0x230
[  136.642308][ T9375]  ? __pfx_genl_rcv_msg+0x10/0x10
[  136.642423][ T9375]  genl_rcv+0x28/0x40
[  136.642457][ T9375]  netlink_unicast+0x605/0x6c0
[  136.642484][ T9375]  netlink_sendmsg+0x609/0x720
[  136.642516][ T9375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.642624][ T9375]  __sock_sendmsg+0x140/0x180
[  136.642643][ T9375]  ____sys_sendmsg+0x350/0x4e0
[  136.642678][ T9375]  __sys_sendmsg+0x1a0/0x240
[  136.642729][ T9375]  __x64_sys_sendmsg+0x46/0x50
[  136.642815][ T9375]  x64_sys_call+0x26f3/0x2e10
[  136.642837][ T9375]  do_syscall_64+0xc9/0x1c0
[  136.642867][ T9375]  ? clear_bhb_loop+0x25/0x80
[  136.642890][ T9375]  ? clear_bhb_loop+0x25/0x80
[  136.642911][ T9375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.642946][ T9375] RIP: 0033:0x7fc3628fd169
[  136.642963][ T9375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.642982][ T9375] RSP: 002b:00007fc360f67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.642999][ T9375] RAX: ffffffffffffffda RBX: 00007fc362b15fa0 RCX: 00007fc3628fd169
[  136.643011][ T9375] RDX: 0000000000000000 RSI: 0000200000000a00 RDI: 0000000000000004
[  136.643024][ T9375] RBP: 00007fc360f67090 R08: 0000000000000000 R09: 0000000000000000
[  136.643038][ T9375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.643053][ T9375] R13: 0000000000000000 R14: 00007fc362b15fa0 R15: 00007fff3813ed28
[  136.643073][ T9375]  </TASK>
[  136.882728][ T9381] loop5: detected capacity change from 0 to 2048
[  136.968187][ T9391] loop6: detected capacity change from 0 to 512
[  137.025373][ T9391] EXT4-fs (loop6): 1 orphan inode deleted
[  137.045346][ T9391] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.058483][ T6803] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:33: Failed to release dquot type 1
[  137.063519][ T9370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.084444][ T9370] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.132626][ T9381] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  137.160748][ T9404] loop6: detected capacity change from 0 to 256
[  137.172491][ T9404] FAT-fs (loop6): bogus number of FAT sectors
[  137.175483][ T9381] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  137.178659][ T9404] FAT-fs (loop6): Can't find a valid FAT filesystem
[  137.220540][ T9381] EXT4-fs (loop5): This should not happen!! Data will be lost
[  137.220540][ T9381] 
[  137.250305][ T9381] EXT4-fs (loop5): Total free blocks count 0
[  137.256953][ T9381] EXT4-fs (loop5): Free/Dirty block details
[  137.263725][ T9381] EXT4-fs (loop5): free_blocks=2415919104
[  137.270393][ T9381] EXT4-fs (loop5): dirty_blocks=32
[  137.294905][ T9381] EXT4-fs (loop5): Block reservation details
[  137.302263][ T9381] EXT4-fs (loop5): i_reserved_data_blocks=2
[  137.334331][ T9416] loop3: detected capacity change from 0 to 512
[  137.384138][ T9416] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  137.432072][ T9427] FAULT_INJECTION: forcing a failure.
[  137.432072][ T9427] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.446007][ T9427] CPU: 1 UID: 0 PID: 9427 Comm: syz.2.2049 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  137.446033][ T9427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.446045][ T9427] Call Trace:
[  137.446050][ T9427]  <TASK>
[  137.446058][ T9427]  dump_stack_lvl+0xf6/0x150
[  137.446123][ T9427]  dump_stack+0x15/0x1a
[  137.446143][ T9427]  should_fail_ex+0x261/0x270
[  137.446172][ T9427]  should_fail+0xb/0x10
[  137.446195][ T9427]  should_fail_usercopy+0x1a/0x20
[  137.446230][ T9427]  _copy_from_iter+0xd8/0xd10
[  137.446280][ T9427]  ? kmalloc_reserve+0x16e/0x190
[  137.446303][ T9427]  ? __build_skb_around+0x199/0x1f0
[  137.446329][ T9427]  ? __alloc_skb+0x227/0x320
[  137.446362][ T9427]  ? __virt_addr_valid+0x1ed/0x250
[  137.446386][ T9427]  ? __check_object_size+0x367/0x510
[  137.446430][ T9427]  netlink_sendmsg+0x492/0x720
[  137.446463][ T9427]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.446492][ T9427]  __sock_sendmsg+0x140/0x180
[  137.446515][ T9427]  ____sys_sendmsg+0x350/0x4e0
[  137.446564][ T9427]  __sys_sendmsg+0x1a0/0x240
[  137.446614][ T9427]  __x64_sys_sendmsg+0x46/0x50
[  137.446646][ T9427]  x64_sys_call+0x26f3/0x2e10
[  137.446668][ T9427]  do_syscall_64+0xc9/0x1c0
[  137.446805][ T9427]  ? clear_bhb_loop+0x25/0x80
[  137.446831][ T9427]  ? clear_bhb_loop+0x25/0x80
[  137.446857][ T9427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.446906][ T9427] RIP: 0033:0x7f16f760d169
[  137.446926][ T9427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.446949][ T9427] RSP: 002b:00007f16f5c77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.446970][ T9427] RAX: ffffffffffffffda RBX: 00007f16f7825fa0 RCX: 00007f16f760d169
[  137.446982][ T9427] RDX: 0000000000000080 RSI: 0000200000000340 RDI: 0000000000000006
[  137.447026][ T9427] RBP: 00007f16f5c77090 R08: 0000000000000000 R09: 0000000000000000
[  137.447037][ T9427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.447050][ T9427] R13: 0000000000000000 R14: 00007f16f7825fa0 R15: 00007ffc728d9038
[  137.447071][ T9427]  </TASK>
[  137.684978][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  137.712824][ T9435] loop5: detected capacity change from 0 to 512
[  137.734851][ T9435] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  137.737040][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 12: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  137.766003][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 13: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  137.791687][ T9437] loop2: detected capacity change from 0 to 512
[  137.795014][ T9435] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  137.819727][ T9435] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.2050: corrupted in-inode xattr: e_value size too large
[  137.838684][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 14: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  137.854731][ T9435] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.2050: couldn't read orphan inode 15 (err -117)
[  137.873941][ T9437] EXT4-fs (loop2): 1 orphan inode deleted
[  137.880918][ T9437] ext4 filesystem being mounted at /441/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.901942][ T6799] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:29: Failed to release dquot type 1
[  137.915548][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 15: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  137.942606][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  137.988778][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 17: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  138.066588][ T9416] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #2: block 18: comm syz.3.2045: lblock 23 mapped to illegal pblock 18 (length 1)
[  138.104903][ T9461] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2056'.
[  138.113843][ T9416] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 19: comm syz.3.2045: path /438/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  138.195635][ T3303] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  138.267039][ T9477] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.335494][ T9477] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.398077][ T9498] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  138.419930][ T9453] netlink: 'syz.6.2054': attribute type 10 has an invalid length.
[  138.427852][ T9453] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2054'.
[  138.453857][ T9477] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.467505][ T9453] dummy0: entered promiscuous mode
[  138.474404][ T9453] bridge0: port 3(dummy0) entered blocking state
[  138.480974][ T9453] bridge0: port 3(dummy0) entered disabled state
[  138.493706][ T9453] dummy0: entered allmulticast mode
[  138.500425][ T9453] bridge0: port 3(dummy0) entered blocking state
[  138.506976][ T9453] bridge0: port 3(dummy0) entered forwarding state
[  138.546822][ T9477] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.589427][ T9517] loop6: detected capacity change from 0 to 512
[  138.605334][ T9515] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  138.636292][ T9515] SELinux: failed to load policy
[  138.643763][ T9477] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.674020][ T9477] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.718797][ T9477] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.741750][ T9535] lo: entered promiscuous mode
[  138.746590][ T9535] lo: entered allmulticast mode
[  138.756869][ T3378] lo speed is unknown, defaulting to 1000
[  138.759966][ T9477] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.762671][ T3378] syz0: Port: 1 Link DOWN
[  138.778117][ T3379] lo speed is unknown, defaulting to 1000
[  138.821375][ T9543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2080'.
[  138.919535][ T9555] FAULT_INJECTION: forcing a failure.
[  138.919535][ T9555] name failslab, interval 1, probability 0, space 0, times 0
[  138.932373][ T9555] CPU: 0 UID: 0 PID: 9555 Comm: syz.0.2084 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  138.932400][ T9555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.932424][ T9555] Call Trace:
[  138.932431][ T9555]  <TASK>
[  138.932439][ T9555]  dump_stack_lvl+0xf6/0x150
[  138.932479][ T9555]  dump_stack+0x15/0x1a
[  138.932568][ T9555]  should_fail_ex+0x261/0x270
[  138.932604][ T9555]  should_failslab+0x8f/0xb0
[  138.932640][ T9555]  kmem_cache_alloc_noprof+0x59/0x340
[  138.932663][ T9555]  ? skb_clone+0x154/0x1f0
[  138.932740][ T9555]  skb_clone+0x154/0x1f0
[  138.932773][ T9555]  bpf_clone_redirect+0x78/0x200
[  138.932805][ T9555]  bpf_prog_b36a1f39e2fdd4f4+0x5f/0x64
[  138.932825][ T9555]  ? __rcu_read_unlock+0x4e/0x70
[  138.932857][ T9555]  ? avc_has_perm_noaudit+0x1cc/0x210
[  138.932959][ T9555]  ? avc_has_perm+0xd6/0x150
[  138.932987][ T9555]  ? __rcu_read_unlock+0x4e/0x70
[  138.933087][ T9555]  ? 0xffffffffa0000810
[  138.933102][ T9555]  ? is_bpf_text_address+0x141/0x160
[  138.933208][ T9555]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  138.933242][ T9555]  ? kernel_text_address+0x96/0xb0
[  138.933278][ T9555]  ? __kernel_text_address+0xd/0x40
[  138.933350][ T9555]  ? unwind_get_return_address+0x16/0x30
[  138.933374][ T9555]  ? arch_stack_walk+0xff/0x150
[  138.933402][ T9555]  ? find_stack+0xcf/0x170
[  138.933430][ T9555]  ? stack_depot_save_flags+0x7d0/0x8b0
[  138.933540][ T9555]  ? bpf_test_timer_continue+0xb5/0x260
[  138.933574][ T9555]  bpf_test_run+0x1e7/0x4a0
[  138.933622][ T9555]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  138.933648][ T9555]  ? bpf_test_run+0x106/0x4a0
[  138.933683][ T9555]  bpf_prog_test_run_skb+0x857/0xbe0
[  138.933710][ T9555]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  138.933833][ T9555]  bpf_prog_test_run+0x20e/0x3a0
[  138.933865][ T9555]  __sys_bpf+0x440/0x800
[  138.933906][ T9555]  __x64_sys_bpf+0x43/0x50
[  138.933928][ T9555]  x64_sys_call+0x23da/0x2e10
[  138.933954][ T9555]  do_syscall_64+0xc9/0x1c0
[  138.933990][ T9555]  ? clear_bhb_loop+0x25/0x80
[  138.934062][ T9555]  ? clear_bhb_loop+0x25/0x80
[  138.934087][ T9555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.934112][ T9555] RIP: 0033:0x7f36792cd169
[  138.934129][ T9555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.934151][ T9555] RSP: 002b:00007f367792f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  138.934176][ T9555] RAX: ffffffffffffffda RBX: 00007f36794e5fa0 RCX: 00007f36792cd169
[  138.934191][ T9555] RDX: 0000000000000048 RSI: 0000200000000040 RDI: 000000000000000a
[  138.934205][ T9555] RBP: 00007f367792f090 R08: 0000000000000000 R09: 0000000000000000
[  138.934218][ T9555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  138.934238][ T9555] R13: 0000000000000000 R14: 00007f36794e5fa0 R15: 00007ffc5beaae28
[  138.934261][ T9555]  </TASK>
[  139.227628][ T9556] loop6: detected capacity change from 0 to 512
[  139.297755][ T9556] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.325624][   T29] kauditd_printk_skb: 292 callbacks suppressed
[  139.325641][   T29] audit: type=1326 audit(1744730162.576:31467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.358015][ T9556] FAULT_INJECTION: forcing a failure.
[  139.358015][ T9556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.371233][ T9556] CPU: 1 UID: 0 PID: 9556 Comm: syz.6.2085 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  139.371302][ T9556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  139.371317][ T9556] Call Trace:
[  139.371324][ T9556]  <TASK>
[  139.371333][ T9556]  dump_stack_lvl+0xf6/0x150
[  139.371361][ T9556]  dump_stack+0x15/0x1a
[  139.371382][ T9556]  should_fail_ex+0x261/0x270
[  139.371469][ T9556]  should_fail+0xb/0x10
[  139.371498][ T9556]  should_fail_usercopy+0x1a/0x20
[  139.371532][ T9556]  _copy_from_iter+0xd8/0xd10
[  139.371634][ T9556]  ? kmalloc_reserve+0x16e/0x190
[  139.371656][ T9556]  ? __build_skb_around+0x199/0x1f0
[  139.371698][ T9556]  ? __alloc_skb+0x227/0x320
[  139.371718][ T9556]  ? __virt_addr_valid+0x1ed/0x250
[  139.371738][ T9556]  ? __check_object_size+0x367/0x510
[  139.371769][ T9556]  netlink_sendmsg+0x492/0x720
[  139.371892][ T9556]  ? __pfx_netlink_sendmsg+0x10/0x10
[  139.371924][ T9556]  __sock_sendmsg+0x140/0x180
[  139.371946][ T9556]  ____sys_sendmsg+0x350/0x4e0
[  139.372026][ T9556]  __sys_sendmsg+0x1a0/0x240
[  139.372130][ T9556]  __x64_sys_sendmsg+0x46/0x50
[  139.372161][ T9556]  x64_sys_call+0x26f3/0x2e10
[  139.372184][ T9556]  do_syscall_64+0xc9/0x1c0
[  139.372223][ T9556]  ? clear_bhb_loop+0x25/0x80
[  139.372289][ T9556]  ? clear_bhb_loop+0x25/0x80
[  139.372369][ T9556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.372394][ T9556] RIP: 0033:0x7fc3628fd169
[  139.372529][ T9556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.372548][ T9556] RSP: 002b:00007fc360f67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  139.372566][ T9556] RAX: ffffffffffffffda RBX: 00007fc362b15fa0 RCX: 00007fc3628fd169
[  139.372577][ T9556] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[  139.372594][ T9556] RBP: 00007fc360f67090 R08: 0000000000000000 R09: 0000000000000000
[  139.372606][ T9556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.372620][ T9556] R13: 0000000000000000 R14: 00007fc362b15fa0 R15: 00007fff3813ed28
[  139.372722][ T9556]  </TASK>
[  139.591995][   T29] audit: type=1326 audit(1744730162.626:31468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.616646][   T29] audit: type=1326 audit(1744730162.626:31469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.640264][   T29] audit: type=1326 audit(1744730162.626:31470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.664675][   T29] audit: type=1326 audit(1744730162.626:31471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.688312][   T29] audit: type=1326 audit(1744730162.626:31472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.712280][   T29] audit: type=1326 audit(1744730162.626:31473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9571 comm="syz.2.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  139.739417][ T9575] FAULT_INJECTION: forcing a failure.
[  139.739417][ T9575] name failslab, interval 1, probability 0, space 0, times 0
[  139.752154][ T9575] CPU: 0 UID: 0 PID: 9575 Comm: syz.2.2093 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  139.752182][ T9575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  139.752197][ T9575] Call Trace:
[  139.752206][ T9575]  <TASK>
[  139.752215][ T9575]  dump_stack_lvl+0xf6/0x150
[  139.752255][ T9575]  dump_stack+0x15/0x1a
[  139.752275][ T9575]  should_fail_ex+0x261/0x270
[  139.752307][ T9575]  should_failslab+0x8f/0xb0
[  139.752347][ T9575]  __kvmalloc_node_noprof+0x12c/0x520
[  139.752442][ T9575]  ? io_alloc_cache_init+0x33/0xa0
[  139.752463][ T9575]  ? percpu_ref_init+0x96/0x240
[  139.752611][ T9575]  io_alloc_cache_init+0x33/0xa0
[  139.752710][ T9575]  io_ring_ctx_alloc+0x2aa/0x690
[  139.752745][ T9575]  io_uring_create+0x10a/0x670
[  139.752777][ T9575]  __se_sys_io_uring_setup+0x1f7/0x210
[  139.752811][ T9575]  __x64_sys_io_uring_setup+0x31/0x40
[  139.752904][ T9575]  x64_sys_call+0x1741/0x2e10
[  139.752933][ T9575]  do_syscall_64+0xc9/0x1c0
[  139.753035][ T9575]  ? clear_bhb_loop+0x25/0x80
[  139.753056][ T9575]  ? clear_bhb_loop+0x25/0x80
[  139.753079][ T9575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.753111][ T9575] RIP: 0033:0x7f16f760d169
[  139.753128][ T9575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.753146][ T9575] RSP: 002b:00007f16f5c76fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[  139.753164][ T9575] RAX: ffffffffffffffda RBX: 00007f16f7825fa0 RCX: 00007f16f760d169
[  139.753255][ T9575] RDX: 0000200000000180 RSI: 0000200000000040 RDI: 000000000000362a
[  139.753266][ T9575] RBP: 0000200000000040 R08: 0000000000000000 R09: 0000200000000180
[  139.753278][ T9575] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  139.753289][ T9575] R13: 0000200000000140 R14: 000000000000362a R15: 0000200000000180
[  139.753307][ T9575]  </TASK>
[  139.955235][   T29] audit: type=1400 audit(1744730163.206:31474): avc:  denied  { append } for  pid=9581 comm="syz.0.2094" name="loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  139.955648][ T9582] loop9: detected capacity change from 0 to 7
[  140.009866][ T8544] EXT4-fs unmount: 48 callbacks suppressed
[  140.009898][ T8544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.034696][ T9582] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.056104][ T9588] loop3: detected capacity change from 0 to 512
[  140.074619][ T9582] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.082609][ T9582]  loop9: unable to read partition table
[  140.098886][ T9582] loop_reread_partitions: partition scan of loop9 (þ被üŸ¿®³Þ„;½�âœ*ŽãUªÿÿÿÿÿÿ) failed (rc=-5)
[  140.113849][ T9595] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2100'.
[  140.137784][ T9588] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.181361][ T9588] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  140.200041][ T9588] EXT4-fs (loop3): 1 truncate cleaned up
[  140.206313][ T9588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.253457][   T29] audit: type=1400 audit(1744730163.506:31475): avc:  denied  { create } for  pid=9608 comm="syz.0.2106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  140.253922][ T9609] unsupported nla_type 52263
[  140.287536][   T29] audit: type=1400 audit(1744730163.506:31476): avc:  denied  { write } for  pid=9608 comm="syz.0.2106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  140.308833][ T9606] loop2: detected capacity change from 0 to 512
[  140.346988][ T9611] loop5: detected capacity change from 0 to 151
[  140.350292][ T9606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.369185][ T9606] ext4 filesystem being mounted at /452/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.383738][ T9606] tipc: New replicast peer: 255.255.255.83
[  140.389629][ T9606] tipc: Enabled bearer <udp:£>, priority 10
[  140.409295][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.516669][ T9628] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2114'.
[  140.573002][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.576630][ T9633] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2116'.
[  140.592114][ T9632] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  140.657005][ T9641] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2120'.
[  140.765671][ T9658] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2127'.
[  140.906009][ T9680] netlink: 'syz.5.2133': attribute type 3 has an invalid length.
[  141.144441][ T9702] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  141.165192][ T9702] SELinux: failed to load policy
[  141.211897][ T9706] bridge0: port 3(vlan2) entered blocking state
[  141.218261][ T9706] bridge0: port 3(vlan2) entered disabled state
[  141.225213][ T9706] vlan2: entered allmulticast mode
[  141.230382][ T9706] bridge0: entered allmulticast mode
[  141.238364][ T9706] vlan2: left allmulticast mode
[  141.243339][ T9706] bridge0: left allmulticast mode
[  141.279735][ T9715] loop6: detected capacity change from 0 to 512
[  141.408920][ T9731] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2150'.
[  141.944724][ T9774] lo speed is unknown, defaulting to 1000
[  142.009153][ T9788] loop3: detected capacity change from 0 to 512
[  142.035643][ T9788] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  142.076227][ T9788] EXT4-fs (loop3): 1 truncate cleaned up
[  142.082617][ T9788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.229881][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.239350][ T9802] lo speed is unknown, defaulting to 1000
[  142.286918][ T9805] smc: net device bond0 applied user defined pnetid SYZ0
[  142.447621][ T9810] lo speed is unknown, defaulting to 1000
[  142.467449][ T9785] netlink: 'syz.0.2169': attribute type 10 has an invalid length.
[  142.597080][ T9814] lo speed is unknown, defaulting to 1000
[  142.956389][ T9838] loop3: detected capacity change from 0 to 2048
[  142.981450][ T9842] loop6: detected capacity change from 0 to 512
[  142.998619][ T9842] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  143.008450][ T9838] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.013291][ T9842] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  143.036131][ T9842] EXT4-fs error (device loop6): ext4_iget_extra_inode:4693: inode #15: comm syz.6.2191: corrupted in-inode xattr: e_value size too large
[  143.043957][ T9838] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  143.081264][ T9838] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  143.094361][ T9838] EXT4-fs (loop3): This should not happen!! Data will be lost
[  143.094361][ T9838] 
[  143.104057][ T9838] EXT4-fs (loop3): Total free blocks count 0
[  143.105682][ T9842] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.2191: couldn't read orphan inode 15 (err -117)
[  143.110190][ T9838] EXT4-fs (loop3): Free/Dirty block details
[  143.128651][ T9838] EXT4-fs (loop3): free_blocks=2415919104
[  143.134616][ T9838] EXT4-fs (loop3): dirty_blocks=32
[  143.139757][ T9838] EXT4-fs (loop3): Block reservation details
[  143.145850][ T9838] EXT4-fs (loop3): i_reserved_data_blocks=2
[  143.166120][ T9842] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.187698][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.248798][ T8544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.298365][ T9856] loop3: detected capacity change from 0 to 128
[  143.322190][ T9856] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  143.371028][ T9856] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  143.530537][ T6797] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  143.722579][ T9893] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  143.779882][ T9893] bridge0: entered promiscuous mode
[  143.851890][ T9899] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9899 comm=syz.2.2214
[  143.996063][ T9915] FAULT_INJECTION: forcing a failure.
[  143.996063][ T9915] name failslab, interval 1, probability 0, space 0, times 0
[  144.008867][ T9915] CPU: 1 UID: 0 PID: 9915 Comm: syz.3.2215 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  144.008893][ T9915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.008907][ T9915] Call Trace:
[  144.008915][ T9915]  <TASK>
[  144.008924][ T9915]  dump_stack_lvl+0xf6/0x150
[  144.008951][ T9915]  dump_stack+0x15/0x1a
[  144.008972][ T9915]  should_fail_ex+0x261/0x270
[  144.009064][ T9915]  should_failslab+0x8f/0xb0
[  144.009098][ T9915]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  144.009178][ T9915]  ? __alloc_skb+0x10d/0x320
[  144.009282][ T9915]  __alloc_skb+0x10d/0x320
[  144.009311][ T9915]  netlink_alloc_large_skb+0xad/0xe0
[  144.009365][ T9915]  netlink_sendmsg+0x3da/0x720
[  144.009400][ T9915]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.009431][ T9915]  __sock_sendmsg+0x140/0x180
[  144.009453][ T9915]  ____sys_sendmsg+0x350/0x4e0
[  144.009487][ T9915]  __sys_sendmsg+0x1a0/0x240
[  144.009616][ T9915]  __x64_sys_sendmsg+0x46/0x50
[  144.009646][ T9915]  x64_sys_call+0x26f3/0x2e10
[  144.009668][ T9915]  do_syscall_64+0xc9/0x1c0
[  144.009720][ T9915]  ? clear_bhb_loop+0x25/0x80
[  144.009789][ T9915]  ? clear_bhb_loop+0x25/0x80
[  144.009816][ T9915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.009841][ T9915] RIP: 0033:0x7f15cb40d169
[  144.009858][ T9915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.009879][ T9915] RSP: 002b:00007f15c9a2d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  144.009896][ T9915] RAX: ffffffffffffffda RBX: 00007f15cb626160 RCX: 00007f15cb40d169
[  144.009908][ T9915] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000009
[  144.009978][ T9915] RBP: 00007f15c9a2d090 R08: 0000000000000000 R09: 0000000000000000
[  144.009992][ T9915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.010006][ T9915] R13: 0000000000000000 R14: 00007f15cb626160 R15: 00007ffdec7c6108
[  144.010028][ T9915]  </TASK>
[  144.247520][ T9906] lo speed is unknown, defaulting to 1000
[  144.347706][   T29] kauditd_printk_skb: 421 callbacks suppressed
[  144.347723][   T29] audit: type=1400 audit(1744730167.596:31898): avc:  denied  { create } for  pid=9930 comm="syz.0.2228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  144.404584][   T29] audit: type=1400 audit(1744730167.596:31899): avc:  denied  { connect } for  pid=9930 comm="syz.0.2228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  144.447503][   T29] audit: type=1326 audit(1744730167.686:31900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.471786][   T29] audit: type=1326 audit(1744730167.686:31901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.495540][   T29] audit: type=1326 audit(1744730167.686:31902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.519954][   T29] audit: type=1326 audit(1744730167.686:31903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.544333][   T29] audit: type=1326 audit(1744730167.686:31904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.567852][   T29] audit: type=1326 audit(1744730167.686:31905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.592106][   T29] audit: type=1326 audit(1744730167.686:31906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.615854][   T29] audit: type=1326 audit(1744730167.686:31907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9936 comm="syz.6.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  144.861436][ T9959] loop3: detected capacity change from 0 to 512
[  145.304702][ T9969] lo speed is unknown, defaulting to 1000
[  145.502574][ T9982] lo speed is unknown, defaulting to 1000
[  145.891677][T10004] usb usb6: usbfs: process 10004 (syz.3.2254) did not claim interface 0 before use
[  145.903118][T10004] __nla_validate_parse: 2 callbacks suppressed
[  145.903133][T10004] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2254'.
[  145.931861][T10007] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  146.187944][T10028] netlink: 'syz.3.2262': attribute type 11 has an invalid length.
[  146.202851][T10028] netlink: 448 bytes leftover after parsing attributes in process `syz.3.2262'.
[  146.253900][T10035] loop3: detected capacity change from 0 to 1024
[  146.290023][T10037] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2266'.
[  146.323941][T10041] FAULT_INJECTION: forcing a failure.
[  146.323941][T10041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.337098][T10041] CPU: 1 UID: 0 PID: 10041 Comm: syz.6.2267 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  146.337129][T10041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  146.337143][T10041] Call Trace:
[  146.337151][T10041]  <TASK>
[  146.337160][T10041]  dump_stack_lvl+0xf6/0x150
[  146.337183][T10041]  dump_stack+0x15/0x1a
[  146.337281][T10041]  should_fail_ex+0x261/0x270
[  146.337314][T10041]  should_fail+0xb/0x10
[  146.337340][T10041]  should_fail_usercopy+0x1a/0x20
[  146.337458][T10041]  copy_page_from_iter_atomic+0x232/0xfa0
[  146.337497][T10041]  ? shmem_write_begin+0xa7/0x190
[  146.337600][T10041]  ? shmem_write_begin+0xdf/0x190
[  146.337699][T10041]  generic_perform_write+0x2d2/0x4b0
[  146.337728][T10041]  shmem_file_write_iter+0xc2/0xe0
[  146.337754][T10041]  vfs_write+0x79b/0x950
[  146.337853][T10041]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  146.337903][T10041]  ksys_write+0xeb/0x1b0
[  146.338017][T10041]  __x64_sys_write+0x42/0x50
[  146.338053][T10041]  x64_sys_call+0x2a45/0x2e10
[  146.338151][T10041]  do_syscall_64+0xc9/0x1c0
[  146.338186][T10041]  ? clear_bhb_loop+0x25/0x80
[  146.338210][T10041]  ? clear_bhb_loop+0x25/0x80
[  146.338239][T10041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.338263][T10041] RIP: 0033:0x7fc3628fbc1f
[  146.338282][T10041] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  146.338303][T10041] RSP: 002b:00007fc360f66df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  146.338325][T10041] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fc3628fbc1f
[  146.338339][T10041] RDX: 0000000000040000 RSI: 00007fc358b47000 RDI: 0000000000000006
[  146.338353][T10041] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000004c0
[  146.338422][T10041] R10: 00000000000003c8 R11: 0000000000000293 R12: 0000000000000006
[  146.338435][T10041] R13: 00007fc360f66ef0 R14: 00007fc360f66eb0 R15: 00007fc358b47000
[  146.338458][T10041]  </TASK>
[  146.537418][T10041] loop6: detected capacity change from 0 to 512
[  146.561527][T10041] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  146.573121][T10041] EXT4-fs (loop6): orphan cleanup on readonly fs
[  146.580105][T10041] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.2267: invalid indirect mapped block 256 (level 2)
[  146.597812][T10049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2270'.
[  146.673737][T10041] EXT4-fs (loop6): 2 truncates cleaned up
[  146.690124][T10041] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.703066][T10041] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.725907][T10050] loop3: detected capacity change from 0 to 512
[  146.733587][T10052] tc_dump_action: action bad kind
[  146.742538][T10050] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  146.779749][T10050] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.2271: invalid indirect mapped block 4294967295 (level 0)
[  146.804866][T10050] EXT4-fs (loop3): Remounting filesystem read-only
[  146.820634][T10050] EXT4-fs (loop3): 1 orphan inode deleted
[  146.826393][T10050] EXT4-fs (loop3): 1 truncate cleaned up
[  146.864296][T10050] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.065809][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.105858][T10084] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2283'.
[  147.294373][T10100] lo speed is unknown, defaulting to 1000
[  147.334117][T10103] FAULT_INJECTION: forcing a failure.
[  147.334117][T10103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.347372][T10103] CPU: 0 UID: 0 PID: 10103 Comm: syz.5.2289 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  147.347481][T10103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.347494][T10103] Call Trace:
[  147.347502][T10103]  <TASK>
[  147.347510][T10103]  dump_stack_lvl+0xf6/0x150
[  147.347581][T10103]  dump_stack+0x15/0x1a
[  147.347597][T10103]  should_fail_ex+0x261/0x270
[  147.347624][T10103]  should_fail+0xb/0x10
[  147.347727][T10103]  should_fail_usercopy+0x1a/0x20
[  147.347759][T10103]  copy_page_from_iter_atomic+0x232/0xfa0
[  147.347806][T10103]  ? shmem_write_begin+0xa7/0x190
[  147.347869][T10103]  ? shmem_write_begin+0xdf/0x190
[  147.347911][T10103]  generic_perform_write+0x2d2/0x4b0
[  147.347943][T10103]  shmem_file_write_iter+0xc2/0xe0
[  147.348092][T10103]  vfs_write+0x79b/0x950
[  147.348127][T10103]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  147.348159][T10103]  ksys_write+0xeb/0x1b0
[  147.348187][T10103]  __x64_sys_write+0x42/0x50
[  147.348214][T10103]  x64_sys_call+0x2a45/0x2e10
[  147.348281][T10103]  do_syscall_64+0xc9/0x1c0
[  147.348319][T10103]  ? clear_bhb_loop+0x25/0x80
[  147.348347][T10103]  ? clear_bhb_loop+0x25/0x80
[  147.348374][T10103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.348475][T10103] RIP: 0033:0x7fc38ec9bc1f
[  147.348490][T10103] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  147.348507][T10103] RSP: 002b:00007fc38d2dddf0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  147.348530][T10103] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fc38ec9bc1f
[  147.348545][T10103] RDX: 0000000000040000 RSI: 00007fc384ebe000 RDI: 0000000000000007
[  147.348558][T10103] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000429
[  147.348573][T10103] R10: 0000200000000942 R11: 0000000000000293 R12: 0000000000000007
[  147.348588][T10103] R13: 00007fc38d2ddef0 R14: 00007fc38d2ddeb0 R15: 00007fc384ebe000
[  147.348639][T10103]  </TASK>
[  147.546008][T10103] loop5: detected capacity change from 0 to 512
[  147.561256][T10103] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  147.589918][T10103] EXT4-fs (loop5): 1 truncate cleaned up
[  147.600498][T10103] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.657103][T10110] loop3: detected capacity change from 0 to 512
[  147.689203][T10110] EXT4-fs (loop3): too many log groups per flexible block group
[  147.697038][T10110] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  147.704640][T10110] EXT4-fs (loop3): mount failed
[  147.737979][T10114] netlink: 'syz.3.2294': attribute type 2 has an invalid length.
[  147.745786][T10114] netlink: 51 bytes leftover after parsing attributes in process `syz.3.2294'.
[  147.795923][ T6828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.858511][T10120] lo speed is unknown, defaulting to 1000
[  147.870362][T10125] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2295'.
[  147.936389][T10136] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2298'.
[  148.064036][T10151] loop6: detected capacity change from 0 to 2364
[  148.212862][T10163] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2308'.
[  148.241900][T10166] SELinux: syz.3.2309 (10166) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  149.258586][T10206] loop5: detected capacity change from 0 to 1024
[  149.269532][T10206] EXT4-fs: Ignoring removed bh option
[  149.274761][T10212] loop6: detected capacity change from 0 to 512
[  149.285736][T10214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2325'.
[  149.298297][T10206] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.300522][T10212] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  149.322377][T10212] EXT4-fs (loop6): can't mount with journal_checksum, fs mounted w/o journal
[  149.361075][T10206] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.2323: Allocating blocks 481-513 which overlap fs metadata
[  149.380178][T10206] EXT4-fs (loop5): Remounting filesystem read-only
[  149.468056][ T6828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.479583][   T29] kauditd_printk_skb: 302 callbacks suppressed
[  149.479597][   T29] audit: type=1326 audit(1744730172.726:32210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.514457][   T29] audit: type=1326 audit(1744730172.726:32211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.538189][   T29] audit: type=1326 audit(1744730172.726:32212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.561883][   T29] audit: type=1326 audit(1744730172.726:32213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.586318][   T29] audit: type=1326 audit(1744730172.726:32214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.610205][   T29] audit: type=1326 audit(1744730172.726:32215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.633904][   T29] audit: type=1326 audit(1744730172.726:32216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.658508][   T29] audit: type=1326 audit(1744730172.886:32217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.682849][   T29] audit: type=1326 audit(1744730172.886:32218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.706499][   T29] audit: type=1326 audit(1744730172.886:32219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.6.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc3628fd169 code=0x7ffc0000
[  149.809630][T10222] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  149.836017][T10239] loop6: detected capacity change from 0 to 1764
[  149.843027][T10222] FAULT_INJECTION: forcing a failure.
[  149.843027][T10222] name failslab, interval 1, probability 0, space 0, times 0
[  149.856444][T10222] CPU: 0 UID: 0 PID: 10222 Comm: syz.2.2330 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  149.856476][T10222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  149.856491][T10222] Call Trace:
[  149.856497][T10222]  <TASK>
[  149.856503][T10222]  dump_stack_lvl+0xf6/0x150
[  149.856526][T10222]  dump_stack+0x15/0x1a
[  149.856546][T10222]  should_fail_ex+0x261/0x270
[  149.856594][T10222]  should_failslab+0x8f/0xb0
[  149.856629][T10222]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  149.856657][T10222]  ? __alloc_skb+0x10d/0x320
[  149.856685][T10222]  __alloc_skb+0x10d/0x320
[  149.856762][T10222]  rtmsg_ifinfo_build_skb+0x63/0x1b0
[  149.856796][T10222]  ? mac802154_slave_close+0x199/0x200
[  149.856836][T10222]  rtmsg_ifinfo+0x6b/0x100
[  149.856864][T10222]  dev_close_many+0x153/0x250
[  149.856904][T10222]  ? _raw_spin_unlock+0x26/0x50
[  149.856929][T10222]  __dev_change_net_namespace+0x689/0x1480
[  149.856964][T10222]  ? __nla_validate_parse+0x1843/0x1f60
[  149.857045][T10222]  dev_change_net_namespace+0x2a/0x40
[  149.857069][T10222]  cfg802154_switch_netns+0x85/0x290
[  149.857115][T10222]  nl802154_wpan_phy_netns+0xc9/0x150
[  149.857187][T10222]  genl_rcv_msg+0x69b/0x6f0
[  149.857223][T10222]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  149.857247][T10222]  ? __pfx_nl802154_wpan_phy_netns+0x10/0x10
[  149.857349][T10222]  ? __pfx_nl802154_post_doit+0x10/0x10
[  149.857378][T10222]  ? should_fail_ex+0x31/0x270
[  149.857407][T10222]  ? __rcu_read_unlock+0x4e/0x70
[  149.857444][T10222]  netlink_rcv_skb+0x12f/0x230
[  149.857517][T10222]  ? __pfx_genl_rcv_msg+0x10/0x10
[  149.857563][T10222]  genl_rcv+0x28/0x40
[  149.857632][T10222]  netlink_unicast+0x605/0x6c0
[  149.857662][T10222]  netlink_sendmsg+0x609/0x720
[  149.857697][T10222]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.857724][T10222]  __sock_sendmsg+0x140/0x180
[  149.857849][T10222]  ____sys_sendmsg+0x350/0x4e0
[  149.857908][T10222]  __sys_sendmsg+0x1a0/0x240
[  149.857951][T10222]  __x64_sys_sendmsg+0x46/0x50
[  149.857984][T10222]  x64_sys_call+0x26f3/0x2e10
[  149.858010][T10222]  do_syscall_64+0xc9/0x1c0
[  149.858106][T10222]  ? clear_bhb_loop+0x25/0x80
[  149.858195][T10222]  ? clear_bhb_loop+0x25/0x80
[  149.858222][T10222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.858246][T10222] RIP: 0033:0x7f16f760d169
[  149.858279][T10222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.858356][T10222] RSP: 002b:00007f16f5c77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.858380][T10222] RAX: ffffffffffffffda RBX: 00007f16f7825fa0 RCX: 00007f16f760d169
[  149.858394][T10222] RDX: 0000000000000000 RSI: 0000200000000f40 RDI: 000000000000000a
[  149.858408][T10222] RBP: 00007f16f5c77090 R08: 0000000000000000 R09: 0000000000000000
[  149.858423][T10222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.858451][T10222] R13: 0000000000000000 R14: 00007f16f7825fa0 R15: 00007ffc728d9038
[  149.858543][T10222]  </TASK>
[  150.178880][T10239] loop6: detected capacity change from 0 to 512
[  150.264127][T10239] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.282501][T10239] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.497464][ T8544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.529574][T10245] netlink: 'syz.0.2337': attribute type 10 has an invalid length.
[  150.555549][T10266] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=10266 comm=syz.2.2346
[  150.568314][T10266] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10266 comm=syz.2.2346
[  150.583838][T10268] tipc: Started in network mode
[  150.588750][T10268] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711
[  150.595989][T10268] tipc: Enabled bearer <eth:syz_tun>, priority 10
[  150.625080][T10268] loop6: detected capacity change from 0 to 1764
[  150.655306][T10274] FAULT_INJECTION: forcing a failure.
[  150.655306][T10274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.668437][T10274] CPU: 1 UID: 0 PID: 10274 Comm: kfree Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  150.668469][T10274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.668483][T10274] Call Trace:
[  150.668489][T10274]  <TASK>
[  150.668498][T10274]  dump_stack_lvl+0xf6/0x150
[  150.668525][T10274]  dump_stack+0x15/0x1a
[  150.668544][T10274]  should_fail_ex+0x261/0x270
[  150.668626][T10274]  should_fail+0xb/0x10
[  150.668658][T10274]  should_fail_usercopy+0x1a/0x20
[  150.668696][T10274]  _copy_from_user+0x1c/0xa0
[  150.668737][T10274]  copy_msghdr_from_user+0x54/0x2b0
[  150.668806][T10274]  do_recvmmsg+0x24d/0x6e0
[  150.668858][T10274]  __x64_sys_recvmmsg+0xe4/0x170
[  150.668939][T10274]  x64_sys_call+0x1b90/0x2e10
[  150.668966][T10274]  do_syscall_64+0xc9/0x1c0
[  150.669003][T10274]  ? clear_bhb_loop+0x25/0x80
[  150.669030][T10274]  ? clear_bhb_loop+0x25/0x80
[  150.669116][T10274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.669140][T10274] RIP: 0033:0x7f16f760d169
[  150.669160][T10274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.669184][T10274] RSP: 002b:00007f16f5c77038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  150.669207][T10274] RAX: ffffffffffffffda RBX: 00007f16f7825fa0 RCX: 00007f16f760d169
[  150.669231][T10274] RDX: 000000000400007c RSI: 0000200000000f40 RDI: 0000000000000004
[  150.669247][T10274] RBP: 00007f16f5c77090 R08: 0000000000000000 R09: 0000000000000000
[  150.669315][T10274] R10: 0000000000002302 R11: 0000000000000246 R12: 0000000000000002
[  150.669330][T10274] R13: 0000000000000000 R14: 00007f16f7825fa0 R15: 00007ffc728d9038
[  150.669353][T10274]  </TASK>
[  150.951310][T10283] __nla_validate_parse: 3 callbacks suppressed
[  150.951382][T10283] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2352'.
[  151.080519][T10291] pim6reg: entered allmulticast mode
[  151.139887][T10293] loop6: detected capacity change from 0 to 1024
[  151.154401][T10296] loop5: detected capacity change from 0 to 512
[  151.170726][T10296] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  151.180410][T10293] EXT4-fs: Ignoring removed oldalloc option
[  151.204757][T10293] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  151.217893][T10296] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.265531][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  151.293432][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 12: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  151.326486][T10293] EXT4-fs error (device loop6): ext4_orphan_get:1416: comm syz.6.2355: bad orphan inode 16777216
[  151.370410][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 13: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  151.395485][T10307] SELinux: syz.0.2359 (10307) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  151.413629][T10293] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.451017][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 14: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  151.484459][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 15: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  151.533263][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 16: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  151.560872][ T8544] EXT4-fs error (device loop6): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /94/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.597743][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 17: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  151.624973][ T8544] EXT4-fs error (device loop6): ext4_empty_dir:3086: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.645468][T10296] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #2: block 18: comm syz.5.2356: lblock 23 mapped to illegal pblock 18 (length 1)
[  151.711182][ T2968] tipc: Node number set to 43690
[  151.738013][T10312] netlink: 'syz.3.2360': attribute type 10 has an invalid length.
[  151.745954][T10312] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2360'.
[  151.768207][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  151.784956][ T8544] EXT4-fs error (device loop6): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /94/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.817016][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 19: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  151.839616][ T8544] EXT4-fs error (device loop6): ext4_empty_dir:3086: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.859562][T10296] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 20: comm syz.5.2356: path /232/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  151.898802][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  151.921807][ T8544] EXT4-fs error (device loop6): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /94/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.949427][ T8544] EXT4-fs error (device loop6): ext4_empty_dir:3086: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  151.973242][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  151.995067][ T8544] EXT4-fs error (device loop6): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /94/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  152.035458][ T8544] EXT4-fs error (device loop6): ext4_empty_dir:3086: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  152.055859][ T6828] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  152.110517][ T6828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.135550][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.149408][ T8544] EXT4-fs error (device loop6): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /94/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  152.216336][ T8544] EXT4-fs error (device loop6): ext4_empty_dir:3086: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  152.264449][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.285702][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.326406][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.347388][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.360445][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.386476][ T8544] EXT4-fs warning (device loop6): ext4_empty_dir:3088: inode #11: comm syz-executor: directory missing '.'
[  152.429260][T10385] FAULT_INJECTION: forcing a failure.
[  152.429260][T10385] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.443109][T10385] CPU: 0 UID: 0 PID: 10385 Comm: syz.0.2375 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  152.443139][T10385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.443171][T10385] Call Trace:
[  152.443179][T10385]  <TASK>
[  152.443186][T10385]  dump_stack_lvl+0xf6/0x150
[  152.443214][T10385]  dump_stack+0x15/0x1a
[  152.443265][T10385]  should_fail_ex+0x261/0x270
[  152.443357][T10385]  should_fail+0xb/0x10
[  152.443380][T10385]  should_fail_usercopy+0x1a/0x20
[  152.443415][T10385]  _copy_from_user+0x1c/0xa0
[  152.443479][T10385]  bpf_test_init+0xeb/0x160
[  152.443502][T10385]  bpf_prog_test_run_flow_dissector+0x12d/0x370
[  152.443564][T10385]  ? kstrtouint_from_user+0xbf/0x100
[  152.443654][T10385]  ? __pfx_bpf_prog_test_run_flow_dissector+0x10/0x10
[  152.443682][T10385]  bpf_prog_test_run+0x20e/0x3a0
[  152.443711][T10385]  __sys_bpf+0x440/0x800
[  152.443746][T10385]  __x64_sys_bpf+0x43/0x50
[  152.443768][T10385]  x64_sys_call+0x23da/0x2e10
[  152.443852][T10385]  do_syscall_64+0xc9/0x1c0
[  152.443889][T10385]  ? clear_bhb_loop+0x25/0x80
[  152.443915][T10385]  ? clear_bhb_loop+0x25/0x80
[  152.443938][T10385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.444029][T10385] RIP: 0033:0x7f36792cd169
[  152.444047][T10385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.444068][T10385] RSP: 002b:00007f367792f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  152.444108][T10385] RAX: ffffffffffffffda RBX: 00007f36794e5fa0 RCX: 00007f36792cd169
[  152.444123][T10385] RDX: 0000000000000010 RSI: 0000200000000340 RDI: 000000000000000a
[  152.444135][T10385] RBP: 00007f367792f090 R08: 0000000000000000 R09: 0000000000000000
[  152.444146][T10385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.444157][T10385] R13: 0000000000000000 R14: 00007f36794e5fa0 R15: 00007ffc5beaae28
[  152.444245][T10385]  </TASK>
[  152.681718][T10388] binfmt_misc: register: failed to install interpreter file ./file2
[  152.748433][ T8544] tipc: Resetting bearer <eth:syz_tun>
[  152.789056][ T8544] tipc: Disabling bearer <eth:syz_tun>
[  152.802654][T10398] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2381'.
[  152.952990][ T8544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.979431][T10420] 9pnet_fd: Insufficient options for proto=fd
[  153.111753][T10430] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(14)
[  153.118407][T10430] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  153.126767][T10430] vhci_hcd vhci_hcd.0: Device attached
[  153.275498][T10408] netlink: 'syz.0.2385': attribute type 10 has an invalid length.
[  153.283717][T10408] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2385'.
[  153.310730][ T3378] vhci_hcd: vhci_device speed not set
[  153.328096][T10449] loop5: detected capacity change from 0 to 2048
[  153.350299][T10434] lo speed is unknown, defaulting to 1000
[  153.365663][T10449] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.376750][ T3378] usb 5-1: new full-speed USB device number 2 using vhci_hcd
[  153.525807][ T6828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.557177][T10434] chnl_net:caif_netlink_parms(): no params data found
[  153.632682][T10456] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2396'.
[  153.644210][T10434] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.651375][T10434] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.665253][T10434] bridge_slave_0: entered allmulticast mode
[  153.672647][T10434] bridge_slave_0: entered promiscuous mode
[  153.680030][T10434] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.687207][T10434] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.695730][T10434] bridge_slave_1: entered allmulticast mode
[  153.702882][T10434] bridge_slave_1: entered promiscuous mode
[  153.724895][T10434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.736160][T10434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.767121][T10434] team0: Port device team_slave_0 added
[  153.779317][T10434] team0: Port device team_slave_1 added
[  153.814159][T10478] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2402'.
[  153.824293][T10434] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.831406][T10434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.832567][T10475] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2401'.
[  153.858149][T10434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.884155][T10434] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.891282][T10434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.900525][T10431] vhci_hcd: connection reset by peer
[  153.918022][T10434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.033148][T10484] FAULT_INJECTION: forcing a failure.
[  154.033148][T10484] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  154.046456][T10484] CPU: 0 UID: 0 PID: 10484 Comm: syz.0.2404 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  154.046484][T10484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  154.046510][T10484] Call Trace:
[  154.046518][T10484]  <TASK>
[  154.046527][T10484]  dump_stack_lvl+0xf6/0x150
[  154.046551][T10484]  dump_stack+0x15/0x1a
[  154.046568][T10484]  should_fail_ex+0x261/0x270
[  154.046601][T10484]  should_fail_alloc_page+0xfd/0x110
[  154.046686][T10484]  __alloc_frozen_pages_noprof+0x11d/0x360
[  154.046721][T10484]  alloc_pages_mpol+0xb6/0x260
[  154.046769][T10484]  vma_alloc_folio_noprof+0x19c/0x300
[  154.046797][T10484]  handle_mm_fault+0xdda/0x2e80
[  154.046830][T10484]  ? mas_walk+0x204/0x320
[  154.046870][T10484]  ? __rcu_read_unlock+0x4e/0x70
[  154.046952][T10484]  exc_page_fault+0x3b9/0x6a0
[  154.046984][T10484]  asm_exc_page_fault+0x26/0x30
[  154.047005][T10484] RIP: 0033:0x7f367918fc90
[  154.047021][T10484] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  154.047096][T10484] RSP: 002b:00007f367792e4a0 EFLAGS: 00010206
[  154.047110][T10484] RAX: 000000000000e000 RBX: 00007f367792e540 RCX: 0000000000000021
[  154.047122][T10484] RDX: 0000000000003f63 RSI: 0000000000005f64 RDI: 00007f367792e5e0
[  154.047133][T10484] RBP: 0000000000000022 R08: 00007f366f50f000 R09: 0000000000000022
[  154.047145][T10484] R10: 00002000000003c2 R11: 00000000000009fe R12: 0000000000004001
[  154.047204][T10484] R13: 00007f3679369b40 R14: 000000000000001c R15: 00007f367792e5e0
[  154.047264][T10484]  </TASK>
[  154.047275][T10484] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  154.068331][ T6797] vhci_hcd: stop threads
[  154.068347][ T6797] vhci_hcd: release socket
[  154.068363][ T6797] vhci_hcd: disconnect device
[  154.251624][T10434] hsr_slave_0: entered promiscuous mode
[  154.257908][T10434] hsr_slave_1: entered promiscuous mode
[  154.264493][T10434] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.272809][T10434] Cannot create hsr debugfs directory
[  154.429738][T10494] raw_sendmsg: syz.0.2408 forgot to set AF_INET. Fix it!
[  154.450009][T10434] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  154.462164][T10434] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  154.485482][   T29] kauditd_printk_skb: 538 callbacks suppressed
[  154.485523][   T29] audit: type=1326 audit(1744730177.736:32758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16f7604127 code=0x7ffc0000
[  154.521879][T10434] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  154.527442][   T29] audit: type=1326 audit(1744730177.766:32759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16f75a9359 code=0x7ffc0000
[  154.552924][   T29] audit: type=1326 audit(1744730177.766:32760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16f7604127 code=0x7ffc0000
[  154.576695][   T29] audit: type=1326 audit(1744730177.766:32761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16f75a9359 code=0x7ffc0000
[  154.600520][   T29] audit: type=1326 audit(1744730177.766:32762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  154.625111][   T29] audit: type=1326 audit(1744730177.776:32763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16f7604127 code=0x7ffc0000
[  154.649397][   T29] audit: type=1326 audit(1744730177.776:32764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16f75a9359 code=0x7ffc0000
[  154.673682][   T29] audit: type=1326 audit(1744730177.776:32765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10422 comm="syz.2.2389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  154.699528][T10494] lo speed is unknown, defaulting to 1000
[  154.711402][T10434] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  154.847235][T10434] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.877327][T10434] 8021q: adding VLAN 0 to HW filter on device team0
[  154.894821][T10141] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.902004][T10141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.952396][T10141] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.959521][T10141] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.006186][T10521] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2419'.
[  155.016059][T10521] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2419'.
[  155.017473][T10476] syz.3.2398 (10476) used greatest stack depth: 6312 bytes left
[  155.152152][   T29] audit: type=1326 audit(1744730178.396:32766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10526 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  155.176650][   T29] audit: type=1326 audit(1744730178.396:32767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10526 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16f760d169 code=0x7ffc0000
[  155.198979][T10434] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.259371][T10552] netlink: 'syz.2.2421': attribute type 1 has an invalid length.
[  155.288315][T10552] 8021q: adding VLAN 0 to HW filter on device bond2
[  155.313935][T10552] bond2: (slave veth5): Enslaving as an active interface with a down link
[  155.477368][T10434] veth0_vlan: entered promiscuous mode
[  155.492892][T10434] veth1_vlan: entered promiscuous mode
[  155.527796][T10434] veth0_macvtap: entered promiscuous mode
[  155.557375][T10434] veth1_macvtap: entered promiscuous mode
[  155.583195][T10572] bridge0: Device is already in use.
[  155.592043][T10542] netlink: 'syz.3.2424': attribute type 10 has an invalid length.
[  155.599896][T10542] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2424'.
[  155.626604][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.637264][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.647813][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.658374][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.668247][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.679370][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.689287][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.699806][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.710324][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.721510][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.732196][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.742658][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.758626][T10434] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.866995][    C0] bridge0: received packet on geneve0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  156.496772][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.507423][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.517315][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.528548][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.538392][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.548883][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.559460][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.570070][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.579910][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.591239][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.601123][T10434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.611583][T10434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.628454][T10434] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.682335][T10589] __nla_validate_parse: 1 callbacks suppressed
[  156.682353][T10589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2435'.
[  156.698592][T10578] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  156.720119][T10434] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.729069][T10434] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.737850][T10434] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.747314][T10434] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.343844][T10640] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2448'.
[  157.500865][T10646] netlink: 'syz.5.2451': attribute type 21 has an invalid length.
[  157.508768][T10646] netlink: 168 bytes leftover after parsing attributes in process `syz.5.2451'.
[  157.598720][T10649] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2445'.
[  157.641924][T10646] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2451'.
[  157.724633][T10649] hsr0: entered promiscuous mode
[  158.461172][T10689] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2464'.
[  158.481175][ T3378] usb 5-1: enqueue for inactive port 0
[  158.487922][ T3378] usb 5-1: enqueue for inactive port 0
[  158.571888][T10697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2468'.
[  158.581074][ T3378] vhci_hcd: vhci_device speed not set
[  158.626147][T10699] lo speed is unknown, defaulting to 1000
[  158.754906][T10712] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  158.848367][T10699] lo speed is unknown, defaulting to 1000
[  158.893640][T10725] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2479'.
[  159.000293][T10725] bridge_slave_1: left allmulticast mode
[  159.006133][T10725] bridge_slave_1: left promiscuous mode
[  159.012018][T10725] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.020199][T10725] bridge_slave_0: left allmulticast mode
[  159.026648][T10725] bridge_slave_0: left promiscuous mode
[  159.032584][T10725] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.168186][T10699] lo speed is unknown, defaulting to 1000
[  159.275136][T10699] lo speed is unknown, defaulting to 1000
[  159.399503][T10699] lo speed is unknown, defaulting to 1000
[  159.766460][ T6781] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  159.798859][   T29] kauditd_printk_skb: 89 callbacks suppressed
[  159.798875][   T29] audit: type=1400 audit(1744730183.046:32857): avc:  denied  { ioctl } for  pid=10754 comm="syz.5.2487" path="socket:[28749]" dev="sockfs" ino=28749 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  159.868663][   T29] audit: type=1400 audit(1744730183.116:32858): avc:  denied  { bind } for  pid=10756 comm="syz.7.2488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  159.889281][   T29] audit: type=1400 audit(1744730183.146:32859): avc:  denied  { connect } for  pid=10756 comm="syz.7.2488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  160.628877][   T29] audit: type=1400 audit(1744730183.876:32860): avc:  denied  { read } for  pid=10780 comm="syz.5.2494" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  160.698389][   T29] audit: type=1400 audit(1744730183.946:32861): avc:  denied  { read } for  pid=10780 comm="syz.5.2494" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  160.722070][   T29] audit: type=1400 audit(1744730183.946:32862): avc:  denied  { open } for  pid=10780 comm="syz.5.2494" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  161.674974][T10808] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.747707][T10808] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.200165][T10827] netlink: 'syz.3.2510': attribute type 10 has an invalid length.
[  162.208126][T10827] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2510'.
[  162.273761][T10836] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  162.282118][T10836] SELinux: failed to load policy
[  162.317127][T10838] ref_ctr_offset mismatch. inode: 0xb10 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc
[  162.328341][T10838] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[  162.337469][T10838] ref_ctr decrement failed for inode: 0xb10 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88811957d280
[  162.348726][T10838] uprobe: syz.3.2514:10838 failed to unregister, leaking uprobe
[  162.376011][T10842] x_tables: duplicate underflow at hook 1
[  162.376378][   T29] audit: type=1400 audit(1744730185.626:32863): avc:  denied  { setopt } for  pid=10840 comm="syz.5.2515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  162.417998][T10833] netlink: 'syz.2.2512': attribute type 10 has an invalid length.
[  162.425995][T10833] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2512'.
[  162.430063][T10844] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2516'.
[  162.435359][T10833] dummy0: entered promiscuous mode
[  162.436463][T10833] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  162.490179][T10849] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2518'.
[  162.499459][T10849] unsupported nlmsg_type 40
[  162.547461][T10861] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  162.557234][T10861] SELinux: failed to load policy
[  162.633141][   T29] audit: type=1400 audit(1744730185.886:32864): avc:  denied  { listen } for  pid=10868 comm="syz.2.2524" lport=50337 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  162.657289][   T29] audit: type=1400 audit(1744730185.886:32865): avc:  denied  { accept } for  pid=10868 comm="syz.2.2524" lport=50337 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  162.704765][   T29] audit: type=1400 audit(1744730185.886:32866): avc:  denied  { write } for  pid=10868 comm="syz.2.2524" lport=50337 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  162.923367][T10870] netlink: 'syz.3.2523': attribute type 10 has an invalid length.
[  162.932137][T10870] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2523'.
[  162.950114][T10883] FAULT_INJECTION: forcing a failure.
[  162.950114][T10883] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.963987][T10883] CPU: 0 UID: 0 PID: 10883 Comm: syz.7.2529 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  162.964067][T10883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  162.964085][T10883] Call Trace:
[  162.964093][T10883]  <TASK>
[  162.964102][T10883]  dump_stack_lvl+0xf6/0x150
[  162.964131][T10883]  dump_stack+0x15/0x1a
[  162.964151][T10883]  should_fail_ex+0x261/0x270
[  162.964259][T10883]  should_fail+0xb/0x10
[  162.964287][T10883]  should_fail_usercopy+0x1a/0x20
[  162.964322][T10883]  _copy_from_iter+0xd8/0xd10
[  162.964355][T10883]  ? kmalloc_reserve+0x16e/0x190
[  162.964377][T10883]  ? __build_skb_around+0x199/0x1f0
[  162.964419][T10883]  ? __alloc_skb+0x227/0x320
[  162.964446][T10883]  ? __virt_addr_valid+0x1ed/0x250
[  162.964467][T10883]  ? __check_object_size+0x367/0x510
[  162.964557][T10883]  netlink_sendmsg+0x492/0x720
[  162.964594][T10883]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.964658][T10883]  __sock_sendmsg+0x140/0x180
[  162.964719][T10883]  ____sys_sendmsg+0x350/0x4e0
[  162.964749][T10883]  __sys_sendmsg+0x1a0/0x240
[  162.964824][T10883]  __x64_sys_sendmsg+0x46/0x50
[  162.964852][T10883]  x64_sys_call+0x26f3/0x2e10
[  162.964874][T10883]  do_syscall_64+0xc9/0x1c0
[  162.964912][T10883]  ? clear_bhb_loop+0x25/0x80
[  162.964937][T10883]  ? clear_bhb_loop+0x25/0x80
[  162.964963][T10883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.964987][T10883] RIP: 0033:0x7fb7608dd169
[  162.965002][T10883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.965084][T10883] RSP: 002b:00007fb75ef3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.965104][T10883] RAX: ffffffffffffffda RBX: 00007fb760af5fa0 RCX: 00007fb7608dd169
[  162.965118][T10883] RDX: 0000000020040880 RSI: 0000200000000280 RDI: 0000000000000004
[  162.965132][T10883] RBP: 00007fb75ef3f090 R08: 0000000000000000 R09: 0000000000000000
[  162.965146][T10883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.965193][T10883] R13: 0000000000000000 R14: 00007fb760af5fa0 R15: 00007ffe7628b318
[  162.965215][T10883]  </TASK>
[  164.256745][T10931] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2545'.
[  164.320353][T10939] SELinux: syz.7.2548 (10939) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  164.468569][T10929] netlink: 'syz.3.2544': attribute type 10 has an invalid length.
[  164.477251][T10929] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2544'.
[  164.749885][T10964] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  165.121905][T10973] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10973 comm=syz.5.2556
[  165.168434][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  165.168524][   T29] audit: type=1326 audit(1744730188.416:32874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.205025][T10975] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2557'.
[  165.227459][   T29] audit: type=1326 audit(1744730188.446:32875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.251848][   T29] audit: type=1326 audit(1744730188.446:32876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.275616][   T29] audit: type=1326 audit(1744730188.446:32877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.300038][   T29] audit: type=1326 audit(1744730188.446:32878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb7608dbad0 code=0x7ffc0000
[  165.324778][   T29] audit: type=1326 audit(1744730188.456:32879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb7608de997 code=0x7ffc0000
[  165.348453][   T29] audit: type=1326 audit(1744730188.456:32880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.372966][   T29] audit: type=1326 audit(1744730188.456:32881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb7608de997 code=0x7ffc0000
[  165.396741][   T29] audit: type=1326 audit(1744730188.456:32882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb7608dbdca code=0x7ffc0000
[  165.420844][   T29] audit: type=1326 audit(1744730188.456:32883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.7.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7608dd169 code=0x7ffc0000
[  165.451534][T10899] syz.0.2534 (10899) used greatest stack depth: 5576 bytes left
[  165.706848][T11006] SELinux: syz.0.2567 (11006) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  165.770633][T11010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2569'.
[  165.782468][T11009] netlink: 'syz.3.2568': attribute type 13 has an invalid length.
[  165.856665][T11012] dccp_xmit_packet: Payload too large (65475) for featneg.
[  165.935050][T11009] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  165.950741][ T3440] lo speed is unknown, defaulting to 1000
[  165.956491][ T3440] syz0: Port: 1 Link ACTIVE
[  166.583110][T11052] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  167.082405][T11070] netlink: 'syz.2.2591': attribute type 10 has an invalid length.
[  167.091487][T11070] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  167.561617][T11108] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  167.572799][T11108] SELinux: failed to load policy
[  167.645386][T11112] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  167.645386][T11112]    program wÞ£ÿ not setting count and/or reply_len properly
[  167.688050][T11116] FAULT_INJECTION: forcing a failure.
[  167.688050][T11116] name failslab, interval 1, probability 0, space 0, times 0
[  167.700877][T11116] CPU: 1 UID: 0 PID: 11116 Comm: syz.0.2608 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  167.700903][T11116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  167.700997][T11116] Call Trace:
[  167.701003][T11116]  <TASK>
[  167.701011][T11116]  dump_stack_lvl+0xf6/0x150
[  167.701040][T11116]  dump_stack+0x15/0x1a
[  167.701075][T11116]  should_fail_ex+0x261/0x270
[  167.701168][T11116]  should_failslab+0x8f/0xb0
[  167.701231][T11116]  __kmalloc_cache_noprof+0x55/0x320
[  167.701258][T11116]  ? bpf_prog_alloc_no_stats+0xc3/0x390
[  167.701284][T11116]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  167.701365][T11116]  bpf_prog_alloc_no_stats+0xc3/0x390
[  167.701393][T11116]  bpf_prog_alloc+0x3a/0x150
[  167.701418][T11116]  bpf_prog_load+0x532/0x10e0
[  167.701458][T11116]  __sys_bpf+0x533/0x800
[  167.701564][T11116]  __x64_sys_bpf+0x43/0x50
[  167.701583][T11116]  x64_sys_call+0x23da/0x2e10
[  167.701629][T11116]  do_syscall_64+0xc9/0x1c0
[  167.701693][T11116]  ? clear_bhb_loop+0x25/0x80
[  167.701720][T11116]  ? clear_bhb_loop+0x25/0x80
[  167.701743][T11116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.701763][T11116] RIP: 0033:0x7f36792cd169
[  167.701778][T11116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.701847][T11116] RSP: 002b:00007f367792f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  167.701867][T11116] RAX: ffffffffffffffda RBX: 00007f36794e5fa0 RCX: 00007f36792cd169
[  167.701883][T11116] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[  167.701897][T11116] RBP: 00007f367792f090 R08: 0000000000000000 R09: 0000000000000000
[  167.701911][T11116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.701924][T11116] R13: 0000000000000000 R14: 00007f36794e5fa0 R15: 00007ffc5beaae28
[  167.701943][T11116]  </TASK>
[  168.082262][T11127] netlink: 'syz.7.2613': attribute type 1 has an invalid length.
[  168.139536][T11127] 8021q: adding VLAN 0 to HW filter on device bond1
[  168.196650][T11130] bond1: (slave veth3): Enslaving as an active interface with a down link
[  168.224203][T11127] bond1: (slave veth0_to_bond): making interface the new active one
[  168.239264][T11127] veth0_to_bond: entered promiscuous mode
[  168.275527][T11127] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  168.331357][T11137] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  168.339099][T11137] SELinux: failed to load policy
[  168.604227][T11159] FAULT_INJECTION: forcing a failure.
[  168.604227][T11159] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  168.617679][T11159] CPU: 1 UID: 0 PID: 11159 Comm: syz.3.2628 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  168.617786][T11159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  168.617801][T11159] Call Trace:
[  168.617808][T11159]  <TASK>
[  168.617817][T11159]  dump_stack_lvl+0xf6/0x150
[  168.617846][T11159]  dump_stack+0x15/0x1a
[  168.617866][T11159]  should_fail_ex+0x261/0x270
[  168.617900][T11159]  should_fail_alloc_page+0xfd/0x110
[  168.618006][T11159]  __alloc_frozen_pages_noprof+0x11d/0x360
[  168.618040][T11159]  alloc_pages_mpol+0xb6/0x260
[  168.618089][T11159]  folio_alloc_mpol_noprof+0x36/0x80
[  168.618118][T11159]  shmem_get_folio_gfp+0x3c1/0xd30
[  168.618156][T11159]  shmem_write_begin+0xa7/0x190
[  168.618199][T11159]  generic_perform_write+0x189/0x4b0
[  168.618231][T11159]  shmem_file_write_iter+0xc2/0xe0
[  168.618252][T11159]  vfs_write+0x79b/0x950
[  168.618285][T11159]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  168.618367][T11159]  ksys_write+0xeb/0x1b0
[  168.618401][T11159]  __x64_sys_write+0x42/0x50
[  168.618429][T11159]  x64_sys_call+0x2a45/0x2e10
[  168.618452][T11159]  do_syscall_64+0xc9/0x1c0
[  168.618519][T11159]  ? clear_bhb_loop+0x25/0x80
[  168.618546][T11159]  ? clear_bhb_loop+0x25/0x80
[  168.618571][T11159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.618719][T11159] RIP: 0033:0x7f15cb40bc1f
[  168.618738][T11159] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  168.618831][T11159] RSP: 002b:00007f15c9a6edf0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  168.618853][T11159] RAX: ffffffffffffffda RBX: 0000000000080000 RCX: 00007f15cb40bc1f
[  168.618868][T11159] RDX: 0000000000080000 RSI: 00007f15c164f000 RDI: 0000000000000008
[  168.618882][T11159] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000005f6
[  168.618896][T11159] R10: 00000000000003c4 R11: 0000000000000293 R12: 0000000000000008
[  168.618911][T11159] R13: 00007f15c9a6eef0 R14: 00007f15c9a6eeb0 R15: 00007f15c164f000
[  168.618933][T11159]  </TASK>
[  169.470628][T11189] __nla_validate_parse: 3 callbacks suppressed
[  169.470645][T11189] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2636'.
[  169.503562][T11189] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2636'.
[  169.512683][T11189] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2636'.
[  169.521874][T11189] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2636'.
[  170.143266][T11237] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  170.172092][T11237] SELinux: failed to load policy
[  170.317264][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  170.317282][   T29] audit: type=1400 audit(1744730193.566:32913): avc:  denied  { read } for  pid=11242 comm="syz.5.2654" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  170.521300][T11265] netlink: 'syz.2.2663': attribute type 3 has an invalid length.
[  170.794294][T11274] lo speed is unknown, defaulting to 1000
[  170.811007][ T3312] ==================================================================
[  170.819137][ T3312] BUG: KCSAN: data-race in free_pid / zap_pid_ns_processes
[  170.826380][ T3312] 
[  170.828711][ T3312] read-write to 0xffff88811613a148 of 4 bytes by task 4822 on cpu 0:
[  170.836788][ T3312]  free_pid+0x7e/0x180
[  170.840886][ T3312]  free_pids+0x7a/0xb0
[  170.844977][ T3312]  release_task+0xa32/0xba0
[  170.849512][ T3312]  do_exit+0xef8/0x17e0
[  170.853690][ T3312]  do_group_exit+0x102/0x150
[  170.858303][ T3312]  get_signal+0xf35/0x1080
[  170.862759][ T3312]  arch_do_signal_or_restart+0x9a/0x4b0
[  170.868325][ T3312]  syscall_exit_to_user_mode+0x62/0x120
[  170.873886][ T3312]  do_syscall_64+0xd6/0x1c0
[  170.878404][ T3312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.884302][ T3312] 
[  170.886626][ T3312] read to 0xffff88811613a148 of 4 bytes by task 3312 on cpu 1:
[  170.894167][ T3312]  zap_pid_ns_processes+0x1f9/0x2d0
[  170.899386][ T3312]  do_exit+0x1533/0x17e0
[  170.903641][ T3312]  do_group_exit+0x102/0x150
[  170.908243][ T3312]  get_signal+0xf35/0x1080
[  170.912675][ T3312]  arch_do_signal_or_restart+0x9a/0x4b0
[  170.918238][ T3312]  syscall_exit_to_user_mode+0x62/0x120
[  170.923807][ T3312]  do_syscall_64+0xd6/0x1c0
[  170.928349][ T3312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.934288][ T3312] 
[  170.936616][ T3312] value changed: 0x00000002 -> 0x00000001
[  170.942333][ T3312] 
[  170.944657][ T3312] Reported by Kernel Concurrency Sanitizer on:
[  170.950805][ T3312] CPU: 1 UID: 0 PID: 3312 Comm: syz-executor Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  170.961660][ T3312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  170.971717][ T3312] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  171.039804][   T29] audit: type=1400 audit(1744730194.246:32914): avc:  denied  { write } for  pid=3291 comm="syz-executor" path="pipe:[2060]" dev="pipefs" ino=2060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  179.611353][ T6789] veth0_to_bond: left promiscuous mode