last executing test programs:

5m26.967199183s ago: executing program 2 (id=817):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f00000000c0)={@local, @private}, &(0x7f0000000100)=0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msgget$private(0x0, 0x3ac)

5m26.918830096s ago: executing program 2 (id=818):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000200000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x2f, 0x4, 0x6, 0x800, 0x59, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, 0x700, 0x8000, 0x8000, 0x6}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000500)={'vcan0\x00'})
r2 = getpid()
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
read(r3, &(0x7f0000000080)=""/1, 0x1)
write$cgroup_pid(r3, &(0x7f00000000c0)=r2, 0x12)
close(r3)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/cpuset.cpus\x00', 0x2, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/devices.allow\x00', 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r6)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000001900)={'wg2\x00', <r8=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e0100000", @ANYRES16=r7, @ANYBLOB="0500000000000000000001000000060006004e240000901008809005008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b24000100000000000000000000000000000000000000000000000000000000000000000024000200fcbefe9641719404cc5c9ab2766dd4793e367b0ea55e65e2e3416ac9d4e68841240002001171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec24000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691cb40409807c000080060001000a00000014000200000000000000000000000000000000010500030002000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200ff0100000000000000000000000000010500030001000000060001000200000008000200e00000010500030000000000f4000080060001000a00000014000200fc0000000000000000000000000000000500030001000000060001000a00000014000200fc0200000000000000000000000000010500030000000000060001000200000008000200e00000020500030003000000060001000200000008000200000000000500030000000000060001000200000008000200ac1414bb0500030001000000060001000200000008000200ac1414bb0500030000000000060001000a00000014000200000000000000000000000000000000010500030002000000060001000a00000014000200fc0200000000000000000000000000000500030003000000340000800600010002000000080002000a0101010500030004000000060001000200000008000200ac1414aa050003000300000064000080060001000a00000014000200200100000000000000000000000000000500030002000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200ff010000000000000000000000000001050003000200000094000080060001000200000008000200ac1e00010500030002000000060001000200000008000200e00000010500030002000000060001000a00000014000200fc0000000000000000000000000000000500030002000000060001000200000008000200000000000500030003000000060001000a00000014000200fe80000000000000000000000000000e050003000000000040000080060001000a00000014000200fc0200000000000000000000000000000500030002000000060001000200000008000200ac1414aa050003000000000064000080060001000a00000014000200200100000000000000000000000000020500030001000000060001000a00000014000200fc02000000000000000000000000000105000300020000000600010002000000080002000a010100050003000200000070000080060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000a00000014000200000000000000000000000000000000000500030002000000060001000a0000001400020000000000000000000000000000000001050003000000000000010080060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000200000008000200000000000500030003000000060001000200000008000200640101000500030002000000060001000200000008000200640101010500030001000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fe8000000000000000000000000000bb05000300020000000600010002000000080002007f0000010500030002000000060001000a00000014000200fc0200000000000000000000000000010500030003000000060001000200000008000200640101010500030001000000240002005da952055e5857d673cddd36909746c80efa3ff95c317de1063db32bc80a0b3e1803008024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39220600050005000000e802098058000080060001000200000008000200ac1e00010500030001000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200ffffffff05000300010000007c000080060001000a00000014000200000000000000000000000000000000010500030002000000060001000200000008000200ac1414bb0500030002000000060001000a000000140002000000000000000000000000000000000105000300020000000600010002000000080002000a0101010500030003000000f4000080060001000a0000001400020000000000000000000000ffffac1414aa0500030003000000060001000200000008000200ac1414aa05000300000000000600010002000000080002000a01010205000300020000000600010002000000080002007f00000105000300000000000600010002000000080002000a0101010500030003000000060001000200000008000200e00000010500030003000000060001000a00000014000200fc01000000000000000000000000000005000300010000000600010002000000080002000a0101000500030000000000060001000200000008000200ac1e0101050003000200000094000080060001000a00000014000200fc0200000000000000000000000000010500030002000000060001000a00000014000200ff0100000000000000000000000000010500030001000000060001000200000008000200e00000010500030002000000060001000200000008000200ac1414bb0500030001000000060001000200000008000200ffffffff050003000200000088000080060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fe8800000000000000000000000001010500030002000000060001000a00000014000200ff02000000000000000000000000000105000300020000007c000080200004000a004e2100000006fc0100000000000000000000000000010400000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000300000024000200379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a549780000800800030001000000080003000400000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000000000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e22000000000000000000000000e4060080dc020980f4000080060001000a00000014000200000000000000000000000000000000000500030002000000060001000a00000014000200fc0000000000000000000000000000000500030001000000060001000200000008000200ffffffff050003000100000006d4e23d7500000008000200ac1e00010500030001000000060001000200000008000200e000000105000300020000000600010002000000080002007f0000010500030002000000060001000a00000014000200000000000000000000000000000000010500030001000000060001000a00000014000200fc010000000000000000000000000001050003000300000034000080060001000200000008000200640101000500030001000000060001000200000008000200ac1414bb050003000200000000010080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300020000000600010002000000080002006401010005000300020000000600010002000000080002007f00000105000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e00000010500030003000000060001000a00000014000200fc0100000000000000000000000000010500030000000000940000800600010002000000080002006401010005000300010000000600010002000000080002006401010205000300000000000600010002000000080002007f0000010500030003000000060001000200000008000200e00000020500030003000000060001000200000008000200ac1414120500030002000000060001000200000008000200ac14142d05000300020000001c000080060001000200000008000200ffffffff05000300030000000800030002000000200004000a004e2000000005fc010000000000000000000000000001000000009403098094000080060001000a0000001400020000000000000000000000ffffac1414bb0500030003000000060001000a00000014000200fe8800000000000000000000000000010500030002000000060001000a00000014000200ff0100000000000000000000000000010500030003000000060001000a00000014000200fe880000000000000000000000000101050003000100000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ac1414bb0500030001000000060001000a0000001400020000000000000000000000ffffe00000020500030003000000f4000080060001000200000008000200000000000500030001000000060001000a00000014000200000000000000000000000000000000010500030003000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe80000000000000000000000000003e05000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200ff0200000000000000000000000000010500030001000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200", @ANYRES32=r8, @ANYBLOB="240003"], 0x10e0}}, 0xd014)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000005c0)={'syztnl1\x00', &(0x7f0000000540)={'ip6tnl0\x00', 0x0, 0x29, 0x2, 0x8, 0x0, 0x20, @remote, @remote, 0x8, 0x40, 0xe48}})
getsockname$packet(r4, &(0x7f0000000600), &(0x7f0000000640)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000680))
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000700)={'erspan0\x00', &(0x7f0000001980)={'tunl0\x00', 0x0, 0x8000, 0x20, 0xc4a5, 0x0, {{0x2f, 0x4, 0x3, 0x9, 0xbc, 0x64, 0x7, 0x7, 0x29, 0x0, @private=0xa010100, @remote, {[@timestamp={0x44, 0x8, 0x4f, 0x0, 0xe, [0x7ff]}, @rr={0x7, 0x1f, 0x9a, [@multicast2, @remote, @remote, @rand_addr=0x64010102, @loopback, @local, @private=0xa010101]}, @timestamp_prespec={0x44, 0x14, 0x5f, 0x3, 0x2, [{@private=0xa010101, 0xd1}, {@empty, 0x1}]}, @end, @lsrr={0x83, 0xb, 0xd3, [@dev={0xac, 0x14, 0x14, 0x13}, @rand_addr=0x64010100]}, @timestamp={0x44, 0x14, 0x26, 0x0, 0xf, [0x7, 0x8, 0x11, 0xe]}, @rr={0x7, 0x13, 0x56, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1f}, @local, @loopback]}, @timestamp={0x44, 0x20, 0x90, 0x0, 0x8, [0x2, 0xa0, 0x8, 0x3, 0x8, 0x1, 0x10000]}, @rr={0x7, 0x17, 0xbb, [@multicast1, @remote, @multicast1, @local, @dev={0xac, 0x14, 0x14, 0x1e}]}]}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r10=>0x0})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r11, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r10], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

5m26.841097763s ago: executing program 2 (id=819):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
ioprio_set$uid(0x3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0)
ioprio_get$pid(0x3, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
preadv(r4, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/215, 0xd7}], 0x1, 0xfffffffd, 0x8)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r2, &(0x7f00000003c0)=""/4096, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
write(r1, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b7", 0x23)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)

5m25.845957645s ago: executing program 2 (id=835):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c0000000a000000000000000000000b02000000000000000300000d000000000300000003000000000000000300000004000000030000000000000000000005000000000000005f2e"], 0x0, 0x5e, 0x0, 0x1}, 0x28)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x20040800)
r1 = socket(0x1d, 0x2, 0x6)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x6a, 0x3, 0x0, &(0x7f0000000280)=0xfffffffffffffdeb)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x14, 0x7, 0x1, 0x801, 0x0, 0x0, {0x7, 0x0, 0x6}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040044}, 0x20008040)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x525, &(0x7f0000000100)="$eJzs3c9vG1kdAPCv3fxw03SThT0sCNiyLBRU1U7c3Wi1B1guSGi1WqRlTwh1o8SNothxFDulCZFIJW5ckajECf4EDkgckHrizg1uXIoEUoGKqkFCyGjscZo4dhM1cdzGn4808ps3k/l+n6V5L37+8QIYWlciYicixiLi04iYSusz6Rbvt7bkvCePthd2H20vZKLR+PifI+mZ2wvt89supdfMRXyU7I93iVvb3FqZL5dL6+l+oV5ZK9Q2t64vV+aXSkul1WJxbnZu5t0b7xRPra1vVH7z8DvLH3zy+9998cEfd77x4yTnb7UOjSVtO7VA+7Sel9GY3FeXPHMf9CPYAFxI2zM26ER4LtmI+ExEvJmW9+QGlxMA0F+NxlQ0pvbv95Y5xjkAwIsvec0/GZlsPn39PxnZbD7fnMPLvRYT2XK1Vr92q7qxuhjNOazpGM3eWi6XZtK5wukYzST7s83y0/1ix/6NiHg1In4+frG5n1+olhcH9U8PAAy5Sx3j/+Px1vh/DN4hAICXmZEcAIbP4fF/dCB5AABnx+t/ABg++8b/bt/VBQDOoVzHd/8BgPPvyPn/1+MnPzybVACAM+L9fwAYKt/78MNka+ymv3+9eHtzY6V6+/piqbaSr2ws5Beq62v5pWp1qfmbPZWjrleuVtdm346NO4V6qVYv1Da3blaqG6v1m83f9b5Z8sUCABi8V9+4/+dMROy8d7G5RXstBx8IgHPPbQ7D68KgEwAGZmTQCQADYz4eyBxxvOdHhO71/puLJ8gH6L+rn+sx/9/tf4O7e6X/Nc4uRaBPzP/D8DrZ/L/ZA3iZmf+H4dVoZKznDwBD5hiv4H1EEM65537/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIbYZHPLZPPpWuCTkc3m8xGXI2I6RjO3lsulmYh4JSL+ND46nuzPDjppAOCEsn/PpOt/XZ16a7Lz6FjmP+PNx4j40S8//sWd+Xp9fTap/9deff1eWl/sGmC8/20AAPYZ6axoj9Ptcby9vu+TR9sL7e0sE3z47dbioknc3XRrp95KPhejETHx78yBxmROaWHinbsR8Xpn+7N7x6fTlU874yexL/ctfjRbOHkgfvZA/GzzWOsxeS4+ewq5wLC5n/Q/73e7/7JxpfmY3n+Zg51pLn52uHN9Du3+b7fR2f+17vePLueafU23/u/KcWO8/Yfv9jx290Lj8yMRu4f63/aK0LlmqVv8t7pd8KfffLzRUfWXL3zpzV7xG7+KuBrPit8qFeqVtUJtc+v6cmV+qbRUWi0W52bnZt698U6x0JyjLrRnqg/7x3vXXund/oiJHvFzR7T/q70u2uHX//30B19+Rvyvf6Vb/Gy89oz4yZj4tWPGn5/4bc/lu5P4iz3aP3Ig/tiBv0vqrh0z/oO/bi0e81QA4AzUNrdW5svl0rrCSQu5fl350gvSQIUehb99cuCeGng+p1IYWJcEnJGnN/2gMwEAAAAAAAAAAAAAAHqpfT/9yb8+fhlu0G0EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg/Pp/AAAA///RQMtW")
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000040)=0x80)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000007c0), &(0x7f0000000800)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001600)=@newtaction={0x894, 0x30, 0x12f, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000, 0x0, 0x80000000, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0xb25d, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1, 0x401]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x6, 0xffffffff, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x4, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7ff, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x0, 0xf, 0x80000001, 0x7, 0xfffffffb, 0x1, 0x20, 0x5, 0x8, 0x1, 0x2f2, 0x7fff, 0x0, 0x81, 0x206, 0x1ff, 0x7, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x713, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x2000009, 0x9, 0x10, 0x9, 0x7, 0xffffff00, 0x97, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x7, 0x80, 0x9f79, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x8, 0xfffffff7, 0x4, 0x9, 0x1, 0x4, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x25, 0x9dc5, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x0, 0x7, 0x5, 0x9, 0xa, 0xa, 0x9, 0x5, 0xdb5, 0x101, 0x4, 0x74e4, 0x7fff, 0x7, 0x7ff, 0x1, 0xd70, 0x1, 0x8, 0xa, 0x7, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x9, 0x1c, 0x767, 0x7, 0x9, 0x10, 0xc2a, 0xff, 0x7, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x3, 0xfff, 0x8, 0x2, 0x2, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffff7, 0x4, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0x9, 0x40007, 0x2, 0x7, 0x4, 0x200, 0x4, 0x7, 0x2, 0x0, 0x1, 0x3, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x2, 0x4, 0x7fff, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x0, 0x8000, 0xa, 0x9, 0xca000000, 0x2, 0xfffffffa, 0x3, 0x7, 0x9, 0x7, 0x65fe, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x7, 0x1, 0xb, 0x80, 0x2, 0x3, 0x6, 0x9, 0x4, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000002, 0xb, 0x7, 0x5, 0x2, 0x4]}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x9}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x7, 0x4, 0x1, {0x7, 0x0, 0x3, 0x7, 0x7, 0x80000001}, {0x4, 0x2, 0x2, 0xa, 0x1ff, 0x1c0000}, 0x9, 0xbc, 0xdf72c67}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
close(r0)

5m25.688848968s ago: executing program 2 (id=840):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x28000600)
r3 = inotify_init1(0x800)
inotify_add_watch(r3, &(0x7f0000000100)='./cgroup\x00', 0x24000042)
close_range(r2, 0xffffffffffffffff, 0x2)

5m25.460772057s ago: executing program 2 (id=845):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e00000000000000050000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001440)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000020000000000000002018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private0, @in=@loopback, 0x0, 0x0, 0x4e20, 0xfffe, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x10}, {0x0, 0x3, 0x0, 0xffff}, 0x0, 0x0, 0x1}, {{@in6=@remote, 0x0, 0x32}, 0x1, @in6=@mcast2, 0x3506, 0x4}}, 0xe8)
sendmmsg$inet6(r3, &(0x7f0000000a80)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000300)='nilfs2_mdt_submit_block\x00', r1, 0x0, 0x8}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r7 = socket$netlink(0x10, 0x3, 0xc)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @loopback}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000090601020000000000000000000000000900020073797a31000000000500010007000000100007800c000180080001407f000041"], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00\n'], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$IPSET_CMD_LIST(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x7, 0x6, 0x401, 0x0, 0x0, {0xc, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x8800)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r10 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
writev(r10, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000680)="aa1d484ea0000000f7fc08fcd15ec0fa5983e11a11fbdf23ea32db0e8f21d5bc27e9d85e440000000000", 0x2a}], 0x2)

5m25.460232828s ago: executing program 32 (id=845):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e00000000000000050000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001440)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000020000000000000002018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private0, @in=@loopback, 0x0, 0x0, 0x4e20, 0xfffe, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x10}, {0x0, 0x3, 0x0, 0xffff}, 0x0, 0x0, 0x1}, {{@in6=@remote, 0x0, 0x32}, 0x1, @in6=@mcast2, 0x3506, 0x4}}, 0xe8)
sendmmsg$inet6(r3, &(0x7f0000000a80)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000300)='nilfs2_mdt_submit_block\x00', r1, 0x0, 0x8}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r7 = socket$netlink(0x10, 0x3, 0xc)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @loopback}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000090601020000000000000000000000000900020073797a31000000000500010007000000100007800c000180080001407f000041"], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00\n'], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$IPSET_CMD_LIST(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x7, 0x6, 0x401, 0x0, 0x0, {0xc, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x8800)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r10 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
writev(r10, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000680)="aa1d484ea0000000f7fc08fcd15ec0fa5983e11a11fbdf23ea32db0e8f21d5bc27e9d85e440000000000", 0x2a}], 0x2)

4m9.404184863s ago: executing program 4 (id=1813):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x80)
fcntl$setlease(r0, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000002640)=""/102389, 0x18ff5}], 0x1, 0x1903d}}], 0x48}, 0x0)

4m9.379884105s ago: executing program 4 (id=1816):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000200000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x2f, 0x4, 0x6, 0x800, 0x59, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, 0x700, 0x8000, 0x8000, 0x6}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000500)={'vcan0\x00'})
r2 = getpid()
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
read(r3, &(0x7f0000000080)=""/1, 0x1)
write$cgroup_pid(r3, &(0x7f00000000c0)=r2, 0x12)
close(r3)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/cpuset.cpus\x00', 0x2, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/devices.allow\x00', 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r6)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000001900)={'wg2\x00', <r8=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e0100000", @ANYRES16=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="240003"], 0x10e0}}, 0xd014)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000005c0)={'syztnl1\x00', &(0x7f0000000540)={'ip6tnl0\x00', 0x0, 0x29, 0x2, 0x8, 0x0, 0x20, @remote, @remote, 0x8, 0x40, 0xe48}})
getsockname$packet(r4, &(0x7f0000000600), &(0x7f0000000640)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000680))
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000700)={'erspan0\x00', &(0x7f0000001980)={'tunl0\x00', 0x0, 0x8000, 0x20, 0xc4a5, 0x0, {{0x27, 0x4, 0x3, 0x9, 0x9c, 0x64, 0x7, 0x7, 0x29, 0x0, @private=0xa010100, @remote, {[@timestamp={0x44, 0x8, 0x4f, 0x0, 0xe, [0x7ff]}, @rr={0x7, 0x1f, 0x9a, [@multicast2, @remote, @remote, @rand_addr=0x64010102, @loopback, @local, @private=0xa010101]}, @timestamp_prespec={0x44, 0x14, 0x5f, 0x3, 0x2, [{@private=0xa010101, 0xd1}, {@empty, 0x1}]}, @end, @lsrr={0x83, 0xb, 0xd3, [@dev={0xac, 0x14, 0x14, 0x13}, @rand_addr=0x64010100]}, @timestamp={0x44, 0x14, 0x26, 0x0, 0xf, [0x7, 0x8, 0x11, 0xe]}, @rr={0x7, 0x13, 0x56, [@private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1f}, @local, @loopback]}, @rr={0x7, 0x17, 0xbb, [@multicast1, @remote, @multicast1, @local, @dev={0xac, 0x14, 0x14, 0x1e}]}]}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r10=>0x0})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r11, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r10], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

4m9.245911816s ago: executing program 4 (id=1820):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/12], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
syz_clone3(&(0x7f00000006c0)={0x20000000, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, &(0x7f0000000680)=[0xffffffffffffffff], 0x1}, 0x58)

4m9.183711592s ago: executing program 4 (id=1821):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000000), 0xfc, 0x582, &(0x7f0000000b40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x1e5042, 0x1ff)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0xfffffff8, @remote, 0x7}, 0x1c)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="24000000000000002900000032000000fe8000000000000000000000000000435d"], 0x28}, 0x40c0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x8100)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000240)={0x0, 0x2, 0x8})
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1c0000000, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'veth0_virt_wifi\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xffe0}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x3b9aca00}, @TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x48}}, 0x0)
fstat(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@private1, @in6=@remote, 0x4e22, 0x0, 0x4e23, 0x8, 0x2, 0x100, 0x0, 0x11, r5, r6}, {0x3, 0x6, 0x0, 0x7, 0x5, 0x7, 0x7, 0x2}, {0x4, 0x40, 0x7fffffffffffffff, 0x8}, 0x8, 0x0, 0x2, 0x1, 0x2, 0x3}, {{@in=@empty, 0x4d6, 0x2b}, 0xa, @in6=@local, 0x3506, 0x1, 0x1, 0xb3, 0x800, 0x1, 0x6}}, 0xe8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x28200, 0x20)

4m8.328691022s ago: executing program 4 (id=1826):
r0 = mq_open(&(0x7f0000000600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdF\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1b\xf4\xce\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|9\x90\x8d\xf4r\xd9*\xd1\x83\n\x1a\xa8fa2\xd4:^\xd7a\x0f\x12}\a\x9d\xc9h\x02\xbe\xeb\x01\xd39LS\xefJ\xcc<\xc4\xc0\xb4A\xab{\x1b\x15<\x95\x02\xae\xfdT\x98\xf4\x85\a\x01@\x12\xe0<3\xb4\x97\xb6W\x84K\xd7\xc5\xf47\xed\xda4\xe2W\xb6r\xca\x1e\x90\xef\x13\xf1&~\x97n\x9f\x8eS\xa8R\xf6\x9d{9\x1bN\x81\x18~\xd7{', 0x42, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x3, 0x7fe2, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
mq_timedreceive(r0, &(0x7f000001a3c0)=""/102381, 0xffffffffffffff32, 0xffc99a3b00000000, 0x0)

4m7.768017969s ago: executing program 4 (id=1832):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r1, 0x201, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x1c, {0xaaaaaaaaaaaa0201}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

4m7.734312651s ago: executing program 33 (id=1832):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r1, 0x201, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x1c, {0xaaaaaaaaaaaa0201}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2m9.711682982s ago: executing program 0 (id=3396):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x2}, 0x18)
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r4 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain={'key_or_keyring:', r3})
keyctl$KEYCTL_MOVE(0x1e, r3, 0xffffffffffffffff, r4, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {0x7, 0x0, 0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x44000)
ioctl$KDDISABIO(r0, 0x4b37)
write$UHID_INPUT(r0, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)

2m9.61450958s ago: executing program 0 (id=3401):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000001580)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed300444000f8ac89758d3a070000000000000096a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT, @ANYRESHEX], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1) (fail_nth: 3)

2m9.309868016s ago: executing program 0 (id=3402):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffec2)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000400), &(0x7f00000004c0)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

2m9.141001799s ago: executing program 0 (id=3405):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1401000034000100000000000000000001010080"], 0x114}], 0x1}, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="40000000041401002cbd7000fedbdf25080011"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x88c0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(r1, &(0x7f0000000000)='map_files\x00')
fchdir(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3e, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
r4 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000002540)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x7fffffff, 0x7ec, 0x2000010000, 0x2000000000002, 0x3, 0x0, 0x7ffd})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000540)={<r6=>0x0})
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='signal_generate\x00', r10}, 0x10)
ptrace(0x10, r7)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000080)={r6, 0x3, r5})
write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f0000000380)={0xc, 0x8, 0x144, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={<r11=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @loopback, 0x9}, {0xa, 0x0, 0x9, @mcast1}, r11}}, 0x48)
r12 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000200)='ext4_nfs_commit_metadata\x00', r12, 0x0, 0x9f9f}, 0x18)

2m8.332307856s ago: executing program 0 (id=3420):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="001800"/17, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, 0x25, r0}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

2m7.425809242s ago: executing program 0 (id=3424):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c00"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r2)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f00000002c0)='\x04\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000940)="ad", 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000800)='\x00.-&]\xe1\x19\t\xe88\xces`Z1\\\x98\x8b1\xb9\xc9\xe6\xf1\x94\x1e[\x8bs\x94\x80\x96\xf2\x02\x98+vv\x8a\xf7D\x19\x8cd\xa6\a\xe0S\xda2\b\xf1\xb5\x17V\x04\fm\xe4?0\x0fL\xc5\xba\xbb\x1di+Q~\xfa\x9a}m;\xe1\xcef8\xa0\x04\f\x15\x82!-\x91\x81\xac\xa3::\xc6\x9b\xa2\x13\xde&\xc4\x80\x8c\x15\x01\n\x81\xbf1\x96$\xeeQ\xe7\' RI\x1f\x00'/133, 0x0)
close(r2)

2m7.395927534s ago: executing program 34 (id=3424):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c00"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r2)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f00000002c0)='\x04\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000940)="ad", 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000800)='\x00.-&]\xe1\x19\t\xe88\xces`Z1\\\x98\x8b1\xb9\xc9\xe6\xf1\x94\x1e[\x8bs\x94\x80\x96\xf2\x02\x98+vv\x8a\xf7D\x19\x8cd\xa6\a\xe0S\xda2\b\xf1\xb5\x17V\x04\fm\xe4?0\x0fL\xc5\xba\xbb\x1di+Q~\xfa\x9a}m;\xe1\xcef8\xa0\x04\f\x15\x82!-\x91\x81\xac\xa3::\xc6\x9b\xa2\x13\xde&\xc4\x80\x8c\x15\x01\n\x81\xbf1\x96$\xeeQ\xe7\' RI\x1f\x00'/133, 0x0)
close(r2)

2m6.1158881s ago: executing program 3 (id=3437):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x1000005, 0x32, 0x0, 0x471ac000)
faccessat2(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x1200)

2m6.058325634s ago: executing program 3 (id=3438):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000440)={'vxcan1\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000000300)={0x1d, r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000480)={&(0x7f0000000340), 0x10, &(0x7f00000000c0)={&(0x7f0000000580)={0x1, 0x7ab0715dca68fed7, 0x0, {}, {}, {}, 0x4, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "b8ee0816756b62187804752330b2b55830d7228ef1593c0639bd084bba0bfd8db72f70e5b2e7f90e11cbc6ec61a03fc316d5d47970907af5fc4a27f6cf718909"}}, 0x20000600}}, 0x0)

2m6.033019357s ago: executing program 3 (id=3439):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffec2)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000400), &(0x7f00000004c0)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

2m5.956348723s ago: executing program 3 (id=3441):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1401000034000100000000000000000001010080"], 0x114}], 0x1}, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="40000000041401002cbd7000fedbdf25080011"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x88c0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(r1, &(0x7f0000000000)='map_files\x00')
fchdir(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3e, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
r4 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000002540)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x7fffffff, 0x7ec, 0x2000010000, 0x2000000000002, 0x3, 0x0, 0x7ffd})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000540)={<r6=>0x0})
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='signal_generate\x00', r10}, 0x10)
ptrace(0x10, r7)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000080)={r6, 0x3, r5})
write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f0000000380)={0xc, 0x8, 0x144, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={<r11=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @loopback, 0x9}, {0xa, 0x0, 0x9, @mcast1}, r11}}, 0x48)
r12 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000200)='ext4_nfs_commit_metadata\x00', r12, 0x0, 0x9f9f}, 0x18)

2m5.091260905s ago: executing program 3 (id=3462):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffec2)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000400), &(0x7f00000004c0)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

2m4.075670719s ago: executing program 3 (id=3473):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000005c0)=""/249, 0x0, &(0x7f0000000200), 0xa7c, r0}, 0x38)

2m4.013598744s ago: executing program 35 (id=3473):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000005c0)=""/249, 0x0, &(0x7f0000000200), 0xa7c, r0}, 0x38)

33.34228686s ago: executing program 5 (id=4854):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
lsm_get_self_attr(0x68, 0x0, &(0x7f0000000100), 0x0)

32.997121069s ago: executing program 5 (id=4859):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={r2, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0xa, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r3=>0x0, 0xc6, &(0x7f0000000180)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0xb3, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6)

32.98162287s ago: executing program 5 (id=4861):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0xa, 0x5, 0x7, 0xc1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x9, 0xb1, &(0x7f0000000400)=""/177, 0x41100, 0xa0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x92}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000680)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

32.755866309s ago: executing program 5 (id=4866):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4fc, &(0x7f0000001500)="$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")
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x3f00, &(0x7f0000000000))

32.49783551s ago: executing program 5 (id=4871):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000005c0)=[0x0, 0x0], ""/16, <r0=>0x0, 0x0, 0x0, 0x0, 0x9, 0x6, &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r1=>0x0, 0x13, &(0x7f0000000680), 0x0, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x37, 0x8, 0x8, &(0x7f0000000400)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0xfffffffffffffecf, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b000e0000000000000000000000040000000000d605cf82dbee4089b682e7d2c541c3ce", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000800018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x18)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000540)='vegas\x00', 0x6)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000840)="89000000120081ae08060cdc030000fe7f030000000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2}, 0x0)
r6 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r6, &(0x7f00000007c0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000780)={&(0x7f0000002040)={0x10e8, 0x12, 0x8, 0x70bd27, 0x25dfdbff, {0x27, 0x6, 0x40, 0xc4, {0x4e21, 0x4e24, [0xfffffffd, 0x6, 0x0, 0x2], [0x2, 0x9, 0x81, 0x9], r0, [0xbb2, 0x1]}, 0x19, 0x9}, [@INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x56, 0x1, "fb2825eb35459965f60b1f93c955408373ccfacf191a38b128cd6a5dba6eedc9704c271cb81c9719dd9f9937281bcd48aaf1efa799bab6207c347b2833fde280081f70bc702ad75ead70eabae9e5241b5e6f"}, @INET_DIAG_REQ_BYTECODE={0x3e, 0x1, "51c0bf76f2ce93a691c47a5831428aba2a8559df791637b2cca972cba57a7b617a53c72e429e805d2e1005272200def4de3638d77675d99e00a8"}]}, 0x10e8}, 0x1, 0x0, 0x0, 0x885}, 0x800)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000600), 0x400, 0x0)
ioctl$TUNSETLINK(r7, 0x400454cd, 0x301)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r9 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETA(r9, 0x5406, &(0x7f0000000040)={0xfffd, 0xbffd, 0xe, 0xfffb, 0x1b, "092231db4639a0db"})
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000000)=0x9)
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x325541)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x49})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x2083, 0x501c6}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL_INHERIT={0x5}, @IFLA_GENEVE_ID={0x8, 0x1, 0x1}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4000880)
close_range(r8, 0xffffffffffffffff, 0x400000000000000)

32.104959362s ago: executing program 5 (id=4877):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
fallocate(r2, 0x1, 0x4, 0x5379176)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r8, 0x0, 0xffffffffffffffff}, 0x18)
r9 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r6}, &(0x7f0000001c00), &(0x7f0000001c40)=r7}, 0x20)
unshare(0x64000600)
eventfd2(0x0, 0x0)
io_setup(0x81, 0x0)
io_submit(0x0, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100fe0f00000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1], 0xb4}}, 0x4050)

32.104636883s ago: executing program 36 (id=4877):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
fallocate(r2, 0x1, 0x4, 0x5379176)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r8, 0x0, 0xffffffffffffffff}, 0x18)
r9 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r6}, &(0x7f0000001c00), &(0x7f0000001c40)=r7}, 0x20)
unshare(0x64000600)
eventfd2(0x0, 0x0)
io_setup(0x81, 0x0)
io_submit(0x0, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100fe0f00000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1], 0xb4}}, 0x4050)

1.897760563s ago: executing program 8 (id=5248):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a00000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7}, 0x18)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2400c09d}, 0x20)

1.886189494s ago: executing program 8 (id=5249):
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x42002, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>0xffffffffffffffff], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x4054)
r5 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000680), 0x80c02, 0x0)
write$cgroup_int(r5, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYRES64=r4, @ANYRES32=r3, @ANYBLOB="f5cff7ee21f101", @ANYRES64=r4, @ANYRESHEX=r5, @ANYRES8=r2, @ANYRES64=r2, @ANYRESDEC=r2, @ANYRESDEC=r0], &(0x7f0000000240)='GPL\x00', 0x800000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
io_setup(0x1, &(0x7f0000000b80))

1.583917009s ago: executing program 6 (id=5255):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300)={0x0, r0}, 0x8) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000640), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x3}, 0x18)
socket$inet6(0xa, 0x1, 0xfffeffff) (async)
r3 = socket$inet6(0xa, 0x1, 0xfffeffff)
setsockopt$inet6_buf(r3, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES64=r0], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES64=r0], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffffffffffffffffff0095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) (async)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffffffffffffffffff0095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140), 0x13f, 0x6}}, 0x20) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={<r8=>0xffffffffffffffff}, 0x13f, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r7, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {r8, 0x10, 0x10, 0x10, 0x0, @in={0x2, 0x9b, @dev={0xac, 0x14, 0x14, 0x43}}, @in={0x2, 0x4e22, @multicast2}}}, 0x118)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000580)={@fallback=r7, 0x36, 0x0, 0x1000, &(0x7f0000000340)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000380)=[0x0], &(0x7f00000003c0)=[0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0]}, 0x40)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0) (async)
r10 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r10, 0x0, 0x400000002000000, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r11=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r11, 0x25, 0xb, @val=@tracing={0x0, 0x20000004}}, 0x20) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r11, 0x25, 0xb, @val=@tracing={0x0, 0x20000004}}, 0x20)
openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0) (async)
r12 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
read$char_usb(r12, 0x0, 0x0) (async)
read$char_usb(r12, 0x0, 0x0)
write$binfmt_elf64(r12, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"/2491], 0x9b1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180200000000000000000000000000001800000008000000000000006e14000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)

1.420960782s ago: executing program 6 (id=5257):
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000000}, 0x0, 0xc8, 0xffff, 0x7, 0xf9, 0x0, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000700)={@map, r1, 0x25, 0xc, r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r0}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000fffe8000000000000010"], 0xfdef)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0xffffffffffffffae}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfdef)

1.368928587s ago: executing program 6 (id=5260):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = epoll_create(0x4)
epoll_pwait(r2, &(0x7f0000000200)=[{}], 0x1, 0xb, 0x0, 0x0)

1.348200809s ago: executing program 7 (id=5261):
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffff}, 0x1f8c8, 0xc8, 0x0, 0x3, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0xffffffffffffffff, 0x101, 0xffffffffffffffff, 0xa)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x23, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033300fe08000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfe1c)

1.232393708s ago: executing program 6 (id=5264):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0xa, 0x5, 0x7, 0xc1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x9, 0xb1, &(0x7f0000000400)=""/177, 0x41100, 0xa0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x92}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000680)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

1.2053989s ago: executing program 7 (id=5265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
lsm_get_self_attr(0x68, 0x0, &(0x7f0000000100), 0x0)

1.161078234s ago: executing program 1 (id=5266):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="001800"/17, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, 0x25, r0}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

1.121578057s ago: executing program 7 (id=5268):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
prlimit64(0x0, 0x4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
pidfd_send_signal(0xffffffffffffffff, 0xd, &(0x7f0000000b80)={0x2a, 0x6, 0xffff}, 0x0)

1.120804227s ago: executing program 1 (id=5269):
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff87, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522ec, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0xf}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) (fail_nth: 5)

839.955801ms ago: executing program 7 (id=5271):
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000000}, 0x0, 0xc8, 0xffff, 0x7, 0xf9, 0x0, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000800000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000700)={@map, r1, 0x25, 0xc, r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r0}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000fffe8000000000000010"], 0xfdef)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0xffffffffffffffae}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfdef)

835.452861ms ago: executing program 6 (id=5272):
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x4, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x818, 0x10000, 0xffffffff, 0x1, 0xa, 0x7, 0x7ff, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAW(r1, 0x5407, &(0x7f0000000100)={0x4, 0x3, 0x7, 0x6, 0x8d, "bca2eab1eaabc68a"})
ioctl$TIOCMSET(r1, 0x5418, &(0x7f0000000000)=0x8001)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r3, 0x2)
flock(r3, 0x2)
dup3(r3, r2, 0x0)
ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000000280)={0x0, 0x4})
bpf$PROG_LOAD(0x5, 0xfffffffffffffffc, 0x15)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r5, 0x400, 0x1)
fremovexattr(r5, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

826.663582ms ago: executing program 8 (id=5273):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000540)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', 0x0, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x20004804)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000700)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0, 0x0, 0x0, 0xfffffffffffffffd}}], 0x48}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00'})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
recvmmsg(0xffffffffffffffff, &(0x7f0000005e00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/119, 0x77}, {&(0x7f0000000080)=""/252, 0xfc}, {&(0x7f0000000280)=""/245, 0xf5}, {&(0x7f0000000a80)=""/4096, 0x1000}], 0x4, &(0x7f0000000380)=""/149, 0x95}, 0x2}, {{&(0x7f00000004c0)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000002b00)=[{&(0x7f0000000680)=""/245, 0xf5}, {&(0x7f0000000540)=""/104, 0x68}, {&(0x7f0000000780)=""/252, 0xfc}, {&(0x7f0000000880)=""/150, 0x96}, {&(0x7f0000000940)=""/3, 0x3}, {&(0x7f0000001a80)=""/80, 0x50}, {&(0x7f0000001b00)=""/4096, 0x1000}, {&(0x7f0000000980)=""/62, 0x3e}], 0x8, &(0x7f0000002b80)=""/154, 0x9a}, 0x7f}, {{&(0x7f0000002c40)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f0000002dc0)=[{&(0x7f0000002cc0)=""/247, 0xf7}], 0x1, &(0x7f0000002e00)=""/21, 0x15}, 0xa}, {{&(0x7f0000002e40)=@nfc_llcp, 0x80, &(0x7f0000003240)=[{&(0x7f0000002ec0)=""/231, 0xe7}, {&(0x7f0000002fc0)=""/76, 0x4c}, {&(0x7f0000003040)=""/229, 0xe5}, {&(0x7f0000003140)=""/224, 0xe0}], 0x4}, 0x5}, {{&(0x7f0000003280)=@nfc_llcp, 0x80, &(0x7f00000043c0)=[{&(0x7f0000003300)=""/78, 0x4e}, {&(0x7f0000003380)=""/4096, 0x1000}, {&(0x7f0000004380)=""/31, 0x1f}], 0x3, &(0x7f0000004400)=""/96, 0x60}}, {{&(0x7f0000004480)=@xdp, 0x80, &(0x7f0000005740)=[{&(0x7f0000004500)=""/217, 0xd9}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/252, 0xfc}, {&(0x7f0000005700)=""/61, 0x3d}], 0x4}, 0x6}, {{&(0x7f0000005780)=@in={0x2, 0x0, @local}, 0x80, &(0x7f00000058c0)=[{&(0x7f0000005800)=""/188, 0xbc}], 0x1, &(0x7f0000005900)=""/202, 0xca}, 0xfffffffc}, {{0x0, 0x0, &(0x7f0000005c80)=[{&(0x7f0000005a00)=""/218, 0xda}, {&(0x7f0000005b00)=""/124, 0x7c}, {&(0x7f0000005b80)=""/113, 0x71}, {&(0x7f0000005c00)=""/59, 0x3b}, {&(0x7f0000005c40)=""/58, 0x3a}], 0x5, &(0x7f0000005d00)=""/250, 0xfa}, 0x7}], 0x8, 0x20, &(0x7f0000006000)={0x77359400})
r6 = accept4$vsock_stream(r5, &(0x7f0000006040)={0x28, 0x0, 0x2711}, 0x10, 0x80000)
connect$vsock_stream(r6, &(0x7f0000006080)={0x28, 0x0, 0x0, @host}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x19)

788.140345ms ago: executing program 1 (id=5274):
creat(&(0x7f0000000080)='./file0\x00', 0xa)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=', @ANYRESHEX])

753.617598ms ago: executing program 9 (id=5275):
creat(&(0x7f0000000080)='./file0\x00', 0xa)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=', @ANYRESHEX]) (fail_nth: 1)

724.75852ms ago: executing program 7 (id=5276):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001c40)={{r0}, &(0x7f0000001bc0), &(0x7f0000001c00)='%ps    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r2, 0xfffffffffffffffe, 0x2)
getdents64(r2, 0x0, 0x0)

703.932522ms ago: executing program 6 (id=5277):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000011c0)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYRESHEX=r0], 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
pwritev2(r1, &(0x7f0000001100)=[{&(0x7f0000000340)="77dea376d927864f74856d75287d06ba95192e42ead9ef1a5b1f7526a9af758ab312c204aa857a7a1a30d05d8f67af5023b1cab605da0d3ebdd06b084a6238c3554f41f2f55614131a4e001ccb4c3838f447522cd50ea7ea9dc1b46ce7488ac61d93dc73f56d96", 0x67}, {&(0x7f0000000540)="b59c0e3db2f47f0de91724e5488d18d6d28451cd77467761088e9eacc50ebcddda6a2bde2f9f2813445c4d63671db9896f7dbf3ca9ae46aec582d8871dc184d1dc99e18013c0fc3abd88051875f0d22bfbc9669675f6f3045807ad522d879f1a94409faf69d864836b00c639ebdd1abe9f84b99d9890b7da677e34b187744b722de93de841d5b0aba7bd5f912997f920bdb0d1b9222ea289ce5403d568276781c312f5a3f9bda08bb0032dfd1b3275e3ba35", 0xb2}, {&(0x7f0000000c80)="d872af9a9c1540ff6c776fac4e9c744828a2225590f5363f08424ccb8021683669ea40a8c36ce591b45e2a311228170b37fa320a454693d5ea3a4b804aa363656088b1a5c48b06318cafeb09146291f8dc24d9c764c7e1eb4c79f74e1d62ca9066eb90f65094b6a75340d9d14b6477e11e229fe1619e600901361d150696be2e256ab87326c41c0b661f12c70dd80af1dd85fecd106bb02309c0304c5ffbdf82140834c0352981fa74ea5078d6e9baf2b68d23e3a3894b3cb461de074dfe07087d9f6910f9d3cb5353204e516666635190f80c466df4fcb0bb8971de", 0xdc}, {&(0x7f0000000400)="ecb1261dc8ad45a561dc571bcba3c2909357", 0x12}, {&(0x7f0000000d80)="b6a2b9a63121689a83e62e11a063e4675547a6e530b895af6573edc672fa8a2e5ff4b18be879e17c117b178fdc30af4af8d753f4ec6cc5cbcbc7afa7ac16a0e4e45281b88f9bb8703d03c97e83159ea8e36dcce24a6fa7c0a9c8aa1efa79b6f38f9e7a218dac2411b2c3d81bacefe7de71e9415c057c4954dd85121ab418b546fb2aa2f4", 0x84}, {&(0x7f0000000e40)="e21cad9d3b366d6391d6b8b273244f363ae152cff6236cbce548356b07a828d47faf5663d10f706172c37e01bd90bc75cc5a9daed40122f14be41a710f124abdd5c9a461016a1895b1824f4e59f9923c49332c2da73190e4c55d5d3be80cdd90cb10a31012983ebe8e1ff512be348c650ac0d00cd2e8ece3a5cec6bb96340753e431393887875c14283208cf41454cb6a8393350077524cee52e8e338300ee581a69020b7e7d4d610962117c", 0xac}, {&(0x7f0000000b80)="a6cab9fabdec4088d86da98900eaee0c29759d85eadd4a35e5f5e8b9bba91f115eca66e0fc871f0fc6a1d6e188ff582d2add9427a58391aa145308cf9ee799fc5873ad270c01bdce4477d3a829499e5147c97645bb7c05f4c079", 0x5a}, {&(0x7f0000000f80)="56539055be0b34b8d4356977a9d86a8d9dad70d081dd45b82f7fd41181704f66f8b69331e8e1404e3ff6e938c639a4694d36880a932f252d15c0921841e09ac2c54fec1c083941867f230afaf74fe2594f9016a742e0f15b5212e9040b8a7a69a1081fa49ea41b95ed97960ccef9cf191b7e65d9c5069f5220da1cac18ce4fc12f8085802aceeb2cef14ab40b7b27e4584a3235303a6403bcda6de34c7b9f9e186a44e40be80cc539c778a94cffe5fc137af4838f6c3cce66f135d", 0xbb}, {&(0x7f0000001040)="4eeadc4209d7cd382d1941996cba9b98a15fecca87abe2b194f19dea04761be97dc7b9b7eddd8f5082ed187d1cd87448ba5a86607a786aefc5b6e8316d193d4f269c15b6631c139125ed6793a6d9a4cb34984bf10b0092c1d5b33cead4125b16a44dd80d543179498864b3a936c7a020eb71f3a5dba5e4acba5cfb2eddc8a9af7b016eca80dce8184240e22d75d9146c828f28e9fbcf38b5d77cbdec879cd0af02567e9ec7518995afe87ebecfce4c40f68111", 0xb3}], 0x9, 0x16a, 0x800, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r3, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="6400000002070103000000000000000002000007240005800800024000000003080001400000000408000240000007c90800024008001125f4b74aa10e00000c00064000000000000000000c00024000000000000000060c000640000000008000000108"], 0x64}, 0x1, 0x0, 0x0, 0x440c0}, 0x4040804)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028008000800810000000600"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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")
r4 = gettid()
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0}, 0x4000001)
socket$inet_mptcp(0x2, 0x1, 0x106)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r5, 0x2)
r6 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r6, 0x2)

610.99175ms ago: executing program 9 (id=5278):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x2, &(0x7f0000000200)=@raw=[@jmp={0x4, 0x0, 0x5, 0x1, 0x0, 0x0, 0x10}, @exit], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
ioctl$IMGETDEVINFO(0xffffffffffffffff, 0x80044944, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
inotify_init1(0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r2, 0xc0305302, &(0x7f00000000c0)={0x2, 0xaded, 0x0, 0x8, 0x0, 0xd58})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x40000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000840)={@map=r3, 0xc, 0x1, 0xfffffff6, &(0x7f0000000500)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000540)=[0x0, 0x0], &(0x7f0000000780)=[0x0], &(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0xa, 0x3, 0xc7)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'bond0\x00', <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x80044940, &(0x7f0000001fc0)={0x0, ""/256, <r8=>0x0, <r9=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r10=>0x0, <r11=>0x0, <r12=>0x0, <r13=>0x0})
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000004140)=ANY=[@ANYRES16=r13, @ANYRES64=r11, @ANYRES16=r10, @ANYRES16=r13, @ANYRESDEC=r12, @ANYRES16=r9, @ANYRES16, @ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES32=r8], 0x5, 0x0, &(0x7f0000000000))
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f00000006c0)={{r8, 0x0, 0x0, 0x7, 0x2, 0x2, 0x4, 0x9, 0x7f, 0x8, 0x6, 0x0, 0x4, 0x2, 0x3}})
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000000)={@local, 0x78, r7})
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0))
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth1_virt_wifi\x00', <r14=>0x0})
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r15=>0xffffffffffffffff})
vmsplice(r15, &(0x7f0000001740), 0x0, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000007c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r14, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

607.02667ms ago: executing program 1 (id=5279):
creat(&(0x7f0000000080)='./file0\x00', 0xa)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x18)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000000)=@known='trusted.overlay.opaque\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=', @ANYRESHEX])

552.629204ms ago: executing program 8 (id=5280):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r3, 0xfffffffffffffffe, 0x2)
getdents64(r3, 0x0, 0x0)

330.292913ms ago: executing program 9 (id=5281):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
prlimit64(0x0, 0x4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
pidfd_send_signal(0xffffffffffffffff, 0xd, &(0x7f0000000b80)={0x2a, 0x6, 0xffff}, 0x0)

236.62216ms ago: executing program 1 (id=5282):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000001b80), 0x1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x5, 0x0, r1, 0xd3, '\x00', 0x0, r2, 0x0, 0x3, 0x5}, 0x50)
mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=tcp'])

235.33109ms ago: executing program 9 (id=5283):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0xa, 0x5, 0x7, 0xc1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x9, 0xb1, &(0x7f0000000400)=""/177, 0x41100, 0xa0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x92}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000680)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_BIND_MAP(0x23, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

90.315453ms ago: executing program 1 (id=5284):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x5, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0xfff, 0x0, 0x1, 0x2, 0x20005, 0xb, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYRES16=r0], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085e3ffff02000000650000000800000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r5 = epoll_create1(0x80000)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f00000000c0)={0xe000001a})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a300000000014000000090a0104000000000000007b18b899c580ad1d000c0a015f00000000000000000900000004000380140000001000010000000000000000000084000a"], 0x74}}, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), &(0x7f00000001c0)=@v2={0x2000000, [{0x0, 0x5}, {0x4, 0x1ff}]}, 0x14, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1000000000000}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r6, &(0x7f0000000000))
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x42, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0xfcfa, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x0, 0x2d, 0x200, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4}}}, 0x24}}, 0x50)
r9 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000000c0)={'dummy0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES8], 0xb4}}, 0x20000040)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)

88.977363ms ago: executing program 8 (id=5285):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
lsm_get_self_attr(0x68, 0x0, &(0x7f0000000100), 0x0)

77.473553ms ago: executing program 9 (id=5286):
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000000}, 0x0, 0xc8, 0xffff, 0x7, 0xf9, 0x0, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000800000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000700)={@map, r1, 0x25, 0xc, r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r0}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000fffe8000000000000010"], 0xfdef)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0xffffffffffffffae}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfdef)

37.791367ms ago: executing program 7 (id=5287):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mq_open(0x0, 0x0, 0x26, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
fdatasync(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team_slave_1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000001d00), &(0x7f0000001d40)=0x4)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x10, 0x3}, @TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x3}]}}]}, 0x40}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000001d80))
sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000001fc0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4008014)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000200), 0x290600, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x5, 0x6}}, './file0\x00'})
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
r7 = socket$nl_route(0x10, 0x3, 0x0)
creat(&(0x7f0000000600)='./file0\x00', 0x5c)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='\x00\x00\x00\x00\x00')
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x14806, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0x0, 0x70a, &(0x7f00000232c0)="$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")
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=@newtaction={0x6c, 0x30, 0xb, 0x5, 0x0, {}, [{0x58, 0x1, [@m_ct={0x54, 0x1, 0x0, 0x0, {{0x7}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x3, 0x0, 0x400}}, @TCA_CT_ACTION={0x6, 0x3, 0x1b}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @private=0xa010102}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs2/custom0\x00', 0x2, 0x0)
r9 = accept4$tipc(r5, 0x0, &(0x7f00000003c0), 0x800)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000400)={<r10=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH(r9, 0xd0009411, &(0x7f0000000a00)={{r10, 0x2, 0xffffffff, 0x7fffffffffffffff, 0x10000, 0x6, 0x8000000000000001, 0x6, 0xfffffffa, 0x7, 0x7, 0x1, 0x7, 0x7, 0x1}})
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000300)={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x27}}, {0x6, @local}, 0x12, {0x2, 0x4e22, @rand_addr=0x64010102}, 'syzkaller1\x00'})

753.37µs ago: executing program 8 (id=5288):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030007e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038004000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x18)
socket$key(0xf, 0x3, 0x2)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[], 0x38}}, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r7, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001, 0x1000009}, 0x8)
recvmmsg(0xffffffffffffffff, &(0x7f00000046c0)=[{{0x0, 0x0, 0x0}, 0x40}], 0x1, 0x40000000, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r8 = fsopen(0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x1)
getsockopt$inet6_buf(r3, 0x29, 0x2b, &(0x7f0000000380)=""/75, &(0x7f0000000080)=0x4b)
r9 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r9, 0x29, 0x1d, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r8, 0x7, 0x0, 0x0, 0x0)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
semtimedop(0x0, &(0x7f0000000000)=[{0x1, 0x7fff, 0x3800}], 0x1, &(0x7f00000000c0))

0s ago: executing program 9 (id=5289):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000010c0)=@newlink={0x50, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x2}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x21ef}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e23}]}}}]}, 0x50}}, 0x40080c0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r5, 0x0, 0x2}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd2(0x4b, 0x80802)
syz_genetlink_get_family_id$fou(0x0, 0xffffffffffffffff)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000000)={@rand_addr=' \x01\x00', 0x32, r7})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

kernel console output (not intermixed with test programs):

rnal. Quota mode: writeback.
[  383.056501][T17446] loop7: detected capacity change from 0 to 1024
[  383.097374][T17446] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  383.107300][T17446] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  383.117441][T17446] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  383.128006][T17446] EXT4-fs error (device loop7): ext4_get_journal_inode:5796: inode #32: comm syz.7.4826: iget: special inode unallocated
[  383.141597][T17446] EXT4-fs (loop7): no journal found
[  383.146908][T17446] EXT4-fs (loop7): can't get journal size
[  383.218488][T17446] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  383.250247][T17446] EXT4-fs error (device loop7): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.7.4826: path /298/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  383.312056][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.342633][T17465] loop1: detected capacity change from 0 to 1024
[  383.364634][T17465] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  383.374572][T17465] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  383.387220][T17465] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  383.397642][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.421931][T17465] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.4835: iget: special inode unallocated
[  383.460912][T17465] EXT4-fs (loop1): no journal found
[  383.466218][T17465] EXT4-fs (loop1): can't get journal size
[  383.481262][T17465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  383.578758][T17465] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.4835: path /403/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  383.617958][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.799145][T17471] netlink: '+}[@': attribute type 10 has an invalid length.
[  383.810338][T17471] team0: Port device dummy0 added
[  383.823159][T17471] netlink: '+}[@': attribute type 10 has an invalid length.
[  383.840615][T17471] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  383.880097][T17471] team0: Failed to send options change via netlink (err -105)
[  383.895807][T17471] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  383.908363][T17471] team0: Port device dummy0 removed
[  383.919840][T17471] 
: (slave dummy0): Enslaving as an active interface with an up link
[  383.954943][T17488] netlink: 'syz.7.4843': attribute type 5 has an invalid length.
[  383.962785][T17488] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4843'.
[  383.998933][T17488] netlink: 'syz.7.4843': attribute type 8 has an invalid length.
[  384.053660][T17488] loop7: detected capacity change from 0 to 512
[  384.094196][T17488] EXT4-fs warning (device loop7): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  384.126978][T17496] FAULT_INJECTION: forcing a failure.
[  384.126978][T17496] name failslab, interval 1, probability 0, space 0, times 0
[  384.139725][T17496] CPU: 1 UID: 0 PID: 17496 Comm: syz.8.4845 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  384.139772][T17496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  384.139788][T17496] Call Trace:
[  384.139797][T17496]  <TASK>
[  384.139808][T17496]  __dump_stack+0x1d/0x30
[  384.139834][T17496]  dump_stack_lvl+0xe8/0x140
[  384.139859][T17496]  dump_stack+0x15/0x1b
[  384.139907][T17496]  should_fail_ex+0x265/0x280
[  384.139935][T17496]  should_failslab+0x8c/0xb0
[  384.139965][T17496]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  384.139997][T17496]  ? __d_alloc+0x3d/0x340
[  384.140092][T17496]  __d_alloc+0x3d/0x340
[  384.140184][T17496]  d_alloc_parallel+0x53/0xc60
[  384.140221][T17496]  ? __rcu_read_unlock+0x4f/0x70
[  384.140294][T17496]  ? __d_lookup+0x316/0x340
[  384.140380][T17496]  ? try_to_unlazy+0x25e/0x3a0
[  384.140417][T17496]  path_openat+0x6b5/0x2170
[  384.140448][T17496]  do_filp_open+0x109/0x230
[  384.140485][T17496]  do_open_execat+0xd8/0x260
[  384.140560][T17496]  open_exec+0x3d/0x60
[  384.140581][T17496]  bm_register_write+0x8e9/0xbf0
[  384.140697][T17496]  ? __pfx_bm_register_write+0x10/0x10
[  384.140802][T17496]  vfs_write+0x269/0x960
[  384.140830][T17496]  ? __rcu_read_unlock+0x4f/0x70
[  384.140857][T17496]  ? __fget_files+0x184/0x1c0
[  384.140889][T17496]  ksys_write+0xda/0x1a0
[  384.140916][T17496]  __x64_sys_write+0x40/0x50
[  384.141005][T17496]  x64_sys_call+0x27fe/0x2ff0
[  384.141032][T17496]  do_syscall_64+0xd2/0x200
[  384.141066][T17496]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  384.141098][T17496]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  384.141121][T17496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.141148][T17496] RIP: 0033:0x7f648a47ebe9
[  384.141167][T17496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.141190][T17496] RSP: 002b:00007f6488ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  384.141267][T17496] RAX: ffffffffffffffda RBX: 00007f648a6a5fa0 RCX: 00007f648a47ebe9
[  384.141283][T17496] RDX: 000000000000002a RSI: 0000200000000000 RDI: 0000000000000005
[  384.141298][T17496] RBP: 00007f6488ee7090 R08: 0000000000000000 R09: 0000000000000000
[  384.141311][T17496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.141323][T17496] R13: 00007f648a6a6038 R14: 00007f648a6a5fa0 R15: 00007fffd63e7278
[  384.141382][T17496]  </TASK>
[  384.241543][T17488] EXT4-fs (loop7): mount failed
[  384.248770][T17496] binfmt_misc: register: failed to install interpreter file ./file2
[  384.427811][T17499] netlink: 'syz.1.4847': attribute type 21 has an invalid length.
[  384.435715][T17499] netlink: 'syz.1.4847': attribute type 4 has an invalid length.
[  384.502311][T17499] random: crng reseeded on system resumption
[  384.502977][T17506] loop7: detected capacity change from 0 to 512
[  384.535606][T17499] Restarting kernel threads ...
[  384.561128][T17506] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  384.585108][T17499] Done restarting kernel threads.
[  384.605713][T17506] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  384.614930][T17506] EXT4-fs error (device loop7): ext4_iget_extra_inode:5104: inode #15: comm syz.7.4849: corrupted in-inode xattr: e_value size too large
[  384.645509][T17511] netlink: 'syz.8.4850': attribute type 21 has an invalid length.
[  384.653591][T17511] netlink: 'syz.8.4850': attribute type 4 has an invalid length.
[  384.678933][T17512] loop5: detected capacity change from 0 to 512
[  384.691098][T17506] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.4849: couldn't read orphan inode 15 (err -117)
[  384.750481][T17511] random: crng reseeded on system resumption
[  384.751933][T17506] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.769182][T17511] Restarting kernel threads ...
[  384.776410][T17512] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.789358][T17511] Done restarting kernel threads.
[  384.880370][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.918578][T15614] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.616042][T17552] loop5: detected capacity change from 0 to 512
[  385.637976][T17552] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  385.651179][T17546] loop8: detected capacity change from 0 to 512
[  385.677898][T17546] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  385.745519][T15614] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz-executor: path /115/file0: bad entry in directory: rec_len is too small for name_len - offset=24, inode=11, rec_len=20, size=4096 fake=0
[  385.796762][T17546] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  385.818465][T17566] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4872'.
[  385.859285][T17566] netlink: 'syz.7.4872': attribute type 1 has an invalid length.
[  385.867158][T17566] netlink: 'syz.7.4872': attribute type 2 has an invalid length.
[  385.869889][T17546] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.4863: corrupted in-inode xattr: e_value size too large
[  385.885612][T17566] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4872'.
[  385.919377][T17546] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.4863: couldn't read orphan inode 15 (err -117)
[  385.979112][T17546] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.051667][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.100528][T17579] netlink: 'syz.1.4874': attribute type 21 has an invalid length.
[  386.108387][T17579] netlink: 'syz.1.4874': attribute type 4 has an invalid length.
[  386.140203][ T5477] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.156877][T17581] random: crng reseeded on system resumption
[  386.167810][T17581] Restarting kernel threads ...
[  386.179605][T17581] Done restarting kernel threads.
[  386.227099][ T5477] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.302004][T17590] FAULT_INJECTION: forcing a failure.
[  386.302004][T17590] name failslab, interval 1, probability 0, space 0, times 0
[  386.314879][T17590] CPU: 1 UID: 0 PID: 17590 Comm: syz.7.4881 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  386.314915][T17590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  386.314931][T17590] Call Trace:
[  386.314940][T17590]  <TASK>
[  386.315018][T17590]  __dump_stack+0x1d/0x30
[  386.315042][T17590]  dump_stack_lvl+0xe8/0x140
[  386.315088][T17590]  dump_stack+0x15/0x1b
[  386.315108][T17590]  should_fail_ex+0x265/0x280
[  386.315134][T17590]  should_failslab+0x8c/0xb0
[  386.315166][T17590]  __kmalloc_noprof+0xa5/0x3e0
[  386.315201][T17590]  ? bpf_test_init+0xa9/0x160
[  386.315243][T17590]  bpf_test_init+0xa9/0x160
[  386.315315][T17590]  bpf_prog_test_run_xdp+0x274/0x910
[  386.315340][T17590]  ? kstrtouint+0x76/0xc0
[  386.315407][T17590]  ? __rcu_read_unlock+0x4f/0x70
[  386.315438][T17590]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  386.315460][T17590]  bpf_prog_test_run+0x227/0x390
[  386.315494][T17590]  __sys_bpf+0x4b9/0x7b0
[  386.315601][T17590]  __x64_sys_bpf+0x41/0x50
[  386.315626][T17590]  x64_sys_call+0x2aea/0x2ff0
[  386.315652][T17590]  do_syscall_64+0xd2/0x200
[  386.315700][T17590]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  386.315729][T17590]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  386.315759][T17590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.315784][T17590] RIP: 0033:0x7ff7752febe9
[  386.315807][T17590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.315825][T17590] RSP: 002b:00007ff773d5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  386.315843][T17590] RAX: ffffffffffffffda RBX: 00007ff775525fa0 RCX: 00007ff7752febe9
[  386.315856][T17590] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  386.315871][T17590] RBP: 00007ff773d5f090 R08: 0000000000000000 R09: 0000000000000000
[  386.315885][T17590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.315939][T17590] R13: 00007ff775526038 R14: 00007ff775525fa0 R15: 00007ffc711ed808
[  386.315958][T17590]  </TASK>
[  386.522859][ T5477] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.656257][ T5477] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.772202][ T5477] bridge_slave_1: left allmulticast mode
[  386.777882][ T5477] bridge_slave_1: left promiscuous mode
[  386.783634][ T5477] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.820811][ T5477] bridge_slave_0: left promiscuous mode
[  386.826566][ T5477] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.400578][T17611] loop7: detected capacity change from 0 to 1024
[  387.408547][T17611] EXT4-fs: inline encryption not supported
[  387.416852][   T29] kauditd_printk_skb: 1175 callbacks suppressed
[  387.416905][   T29] audit: type=1400 audit(388.386:31035): avc:  denied  { ioctl } for  pid=17595 comm="syz.7.4883" path="/dev/loop7" dev="devtmpfs" ino=107 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  387.448221][   T29] audit: type=1400 audit(388.386:31036): avc:  denied  { mounton } for  pid=17595 comm="syz.7.4883" path="/315/file2" dev="tmpfs" ino=1682 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  387.487564][ T5477] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  387.526009][ T5477] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  387.565911][ T5477] bond0 (unregistering): Released all slaves
[  387.643431][T17611] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.810968][   T29] audit: type=1400 audit(388.476:31037): avc:  denied  { read write } for  pid=8651 comm="syz-executor" name="loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  387.834862][   T29] audit: type=1400 audit(388.476:31038): avc:  denied  { open } for  pid=8651 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  387.834898][   T29] audit: type=1400 audit(388.476:31039): avc:  denied  { ioctl } for  pid=8651 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  387.834935][   T29] audit: type=1400 audit(388.506:31040): avc:  denied  { module_request } for  pid=17592 comm="syz.8.4882" kmod="netdev-bond0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  387.834980][   T29] audit: type=1400 audit(388.506:31041): avc:  denied  { create } for  pid=17592 comm="syz.8.4882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  387.835007][   T29] audit: type=1400 audit(388.506:31042): avc:  denied  { write } for  pid=17592 comm="syz.8.4882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  387.835032][   T29] audit: type=1400 audit(388.506:31043): avc:  denied  { read } for  pid=17592 comm="syz.8.4882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  387.835074][   T29] audit: type=1400 audit(388.546:31044): avc:  denied  { prog_load } for  pid=17618 comm="syz.6.4885" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  388.176748][ T5477] hsr_slave_0: left promiscuous mode
[  388.184220][ T5477] hsr_slave_1: left promiscuous mode
[  388.184602][ T5477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.184620][ T5477] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.184973][ T5477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.184988][ T5477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.188498][ T5477] veth1_vlan: left promiscuous mode
[  388.188549][ T5477] veth0_vlan: left promiscuous mode
[  388.302841][ T5477] pimreg (unregistering): left allmulticast mode
[  388.365183][ T5477] team0 (unregistering): Port device team_slave_1 removed
[  388.375344][ T5477] team0 (unregistering): Port device team_slave_0 removed
[  388.643020][T17644] binfmt_misc: register: failed to install interpreter file ./file2
[  388.655568][T17589] chnl_net:caif_netlink_parms(): no params data found
[  388.820153][T17589] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.827272][T17589] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.904634][T17589] bridge_slave_0: entered allmulticast mode
[  388.929763][T17589] bridge_slave_0: entered promiscuous mode
[  388.937451][T17656] loop8: detected capacity change from 0 to 8192
[  388.971878][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.977853][T17589] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.988198][T17589] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.004034][T17589] bridge_slave_1: entered allmulticast mode
[  389.011377][T17589] bridge_slave_1: entered promiscuous mode
[  389.048299][T17656] netlink: 'syz.8.4896': attribute type 3 has an invalid length.
[  389.112200][T17662] loop6: detected capacity change from 0 to 128
[  389.120680][T17662] ext4: Unknown parameter 'func'
[  389.266348][T17665] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4897'.
[  389.452244][T17667] loop8: detected capacity change from 0 to 512
[  389.489330][T17667] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  389.729245][T17667] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  389.738488][T17667] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.4898: corrupted in-inode xattr: e_value size too large
[  389.753746][T17667] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.4898: couldn't read orphan inode 15 (err -117)
[  389.766466][T17667] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.798157][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.033004][T17653] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.040270][T17653] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.120901][T17653] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  390.131388][T17653] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  390.153314][T17653] vlan2: left allmulticast mode
[  390.181914][   T12] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  390.202844][T17589] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  390.220046][   T12] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  390.251809][   T12] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  390.264693][T17589] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  390.293265][   T12] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  390.345703][T17589] team0: Port device team_slave_0 added
[  390.367213][T17589] team0: Port device team_slave_1 added
[  390.392045][T17681] loop7: detected capacity change from 0 to 512
[  390.422012][T17681] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.452325][T17589] batman_adv: batadv0: Adding interface: batadv_slave_0
[  390.459324][T17589] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.485376][T17589] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  390.556213][T17589] batman_adv: batadv0: Adding interface: batadv_slave_1
[  390.563300][T17589] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.589331][T17589] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  390.658349][T17589] hsr_slave_0: entered promiscuous mode
[  390.665390][T17589] hsr_slave_1: entered promiscuous mode
[  390.667412][T17691] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4903'.
[  390.673516][T17589] debugfs: 'hsr0' already exists in 'hsr'
[  390.685803][T17589] Cannot create hsr debugfs directory
[  390.694358][T17691] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.4903: corrupted inode contents
[  390.709427][T17691] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.4903: mark_inode_dirty error
[  390.722509][T17691] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.4903: corrupted inode contents
[  390.898160][T17685] sd 0:0:1:0: device reset
[  390.924433][T17589] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  390.938581][T17589] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  390.951552][T17685] syzkaller0: entered allmulticast mode
[  390.957450][T17696] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4907'.
[  390.966456][T17589] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  390.975498][T17685] syzkaller0: entered promiscuous mode
[  390.981543][T17589] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  391.017395][T17684] syzkaller0: left promiscuous mode
[  391.022849][T17684] syzkaller0: left allmulticast mode
[  391.056885][T17589] 8021q: adding VLAN 0 to HW filter on device bond0
[  391.081266][T17589] 8021q: adding VLAN 0 to HW filter on device team0
[  391.103235][ T5477] bridge0: port 1(bridge_slave_0) entered blocking state
[  391.110506][ T5477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  391.149328][ T5477] bridge0: port 2(bridge_slave_1) entered blocking state
[  391.156470][ T5477] bridge0: port 2(bridge_slave_1) entered forwarding state
[  391.214673][T17589] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  391.234807][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.251987][T17712] FAULT_INJECTION: forcing a failure.
[  391.251987][T17712] name failslab, interval 1, probability 0, space 0, times 0
[  391.264741][T17712] CPU: 0 UID: 0 PID: 17712 Comm: syz.1.4911 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  391.264770][T17712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  391.264811][T17712] Call Trace:
[  391.264819][T17712]  <TASK>
[  391.264829][T17712]  __dump_stack+0x1d/0x30
[  391.264933][T17712]  dump_stack_lvl+0xe8/0x140
[  391.264956][T17712]  dump_stack+0x15/0x1b
[  391.264972][T17712]  should_fail_ex+0x265/0x280
[  391.264995][T17712]  should_failslab+0x8c/0xb0
[  391.265024][T17712]  kmem_cache_alloc_noprof+0x50/0x310
[  391.265134][T17712]  ? security_file_alloc+0x32/0x100
[  391.265171][T17712]  security_file_alloc+0x32/0x100
[  391.265241][T17712]  init_file+0x5c/0x1d0
[  391.265273][T17712]  alloc_empty_file+0x8b/0x200
[  391.265301][T17712]  alloc_file_pseudo+0xc6/0x160
[  391.265411][T17712]  __shmem_file_setup+0x1de/0x210
[  391.265514][T17712]  shmem_file_setup+0x3b/0x50
[  391.265619][T17712]  __se_sys_memfd_create+0x2c3/0x590
[  391.265663][T17712]  __x64_sys_memfd_create+0x31/0x40
[  391.265775][T17712]  x64_sys_call+0x2abe/0x2ff0
[  391.265796][T17712]  do_syscall_64+0xd2/0x200
[  391.265824][T17712]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  391.265846][T17712]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  391.265932][T17712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.265952][T17712] RIP: 0033:0x7fb43eb9ebe9
[  391.266018][T17712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.266039][T17712] RSP: 002b:00007fb43d606e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  391.266061][T17712] RAX: ffffffffffffffda RBX: 000000000000046f RCX: 00007fb43eb9ebe9
[  391.266075][T17712] RDX: 00007fb43d606ef0 RSI: 0000000000000000 RDI: 00007fb43ec227e8
[  391.266087][T17712] RBP: 0000200000001200 R08: 00007fb43d606bb7 R09: 00007fb43d606e40
[  391.266159][T17712] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000000c0
[  391.266169][T17712] R13: 00007fb43d606ef0 R14: 00007fb43d606eb0 R15: 0000200000000000
[  391.266240][T17712]  </TASK>
[  391.331609][T17589] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.513528][T17721] loop6: detected capacity change from 0 to 128
[  391.532741][T17725] loop1: detected capacity change from 0 to 256
[  391.539841][T17721] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  391.569294][T17725] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  391.580491][T17721] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  391.629984][T17725] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  391.638578][T17725] FAT-fs (loop1): Filesystem has been set read-only
[  391.646595][T17735] FAULT_INJECTION: forcing a failure.
[  391.646595][T17735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.659744][T17735] CPU: 0 UID: 0 PID: 17735 Comm: syz.8.4918 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  391.659787][T17735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  391.659801][T17735] Call Trace:
[  391.659807][T17735]  <TASK>
[  391.659816][T17735]  __dump_stack+0x1d/0x30
[  391.659840][T17735]  dump_stack_lvl+0xe8/0x140
[  391.659898][T17735]  dump_stack+0x15/0x1b
[  391.659917][T17735]  should_fail_ex+0x265/0x280
[  391.659982][T17735]  should_fail+0xb/0x20
[  391.660021][T17735]  should_fail_usercopy+0x1a/0x20
[  391.660082][T17735]  _copy_to_user+0x20/0xa0
[  391.660144][T17735]  simple_read_from_buffer+0xb5/0x130
[  391.660167][T17735]  proc_fail_nth_read+0x10e/0x150
[  391.660192][T17735]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  391.660215][T17735]  vfs_read+0x1a8/0x770
[  391.660238][T17735]  ? __rcu_read_unlock+0x4f/0x70
[  391.660329][T17735]  ? __fget_files+0x184/0x1c0
[  391.660355][T17735]  ksys_read+0xda/0x1a0
[  391.660462][T17735]  __x64_sys_read+0x40/0x50
[  391.660482][T17735]  x64_sys_call+0x27bc/0x2ff0
[  391.660503][T17735]  do_syscall_64+0xd2/0x200
[  391.660528][T17735]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  391.660624][T17735]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  391.660648][T17735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.660710][T17735] RIP: 0033:0x7f648a47d5fc
[  391.660724][T17735] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  391.660747][T17735] RSP: 002b:00007f6488ee7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  391.660770][T17735] RAX: ffffffffffffffda RBX: 00007f648a6a5fa0 RCX: 00007f648a47d5fc
[  391.660849][T17735] RDX: 000000000000000f RSI: 00007f6488ee70a0 RDI: 0000000000000006
[  391.660864][T17735] RBP: 00007f6488ee7090 R08: 0000000000000000 R09: 0000000000000000
[  391.660883][T17735] R10: 00000000ffffff33 R11: 0000000000000246 R12: 0000000000000001
[  391.660894][T17735] R13: 00007f648a6a6038 R14: 00007f648a6a5fa0 R15: 00007fffd63e7278
[  391.660982][T17735]  </TASK>
[  391.888708][T17589] veth0_vlan: entered promiscuous mode
[  391.901933][T17589] veth1_vlan: entered promiscuous mode
[  391.941586][T17589] veth0_macvtap: entered promiscuous mode
[  391.950625][T17589] veth1_macvtap: entered promiscuous mode
[  391.978795][T17747] loop1: detected capacity change from 0 to 512
[  391.982506][T17589] batman_adv: batadv0: Interface activated: batadv_slave_0
[  392.007324][T17748] loop8: detected capacity change from 0 to 1024
[  392.012445][T17589] batman_adv: batadv0: Interface activated: batadv_slave_1
[  392.030271][T17748] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  392.040160][T17748] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  392.050975][T17748] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  392.062808][T17747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.075335][   T12] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  392.086637][   T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  392.096625][   T12] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  392.099948][T17748] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #32: comm syz.8.4921: iget: special inode unallocated
[  392.105760][   T12] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  392.147962][T17748] EXT4-fs (loop8): no journal found
[  392.153335][T17748] EXT4-fs (loop8): can't get journal size
[  392.167875][T17748] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.221084][T17748] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.8.4921: path /257/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  392.306252][ T5479] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  392.316930][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.356150][T17767] sctp: [Deprecated]: syz.6.4925 (pid 17767) Use of int in maxseg socket option.
[  392.356150][T17767] Use struct sctp_assoc_value instead
[  392.392989][T17764] loop9: detected capacity change from 0 to 8192
[  392.419772][   T29] kauditd_printk_skb: 822 callbacks suppressed
[  392.419789][   T29] audit: type=1400 audit(393.396:31865): avc:  denied  { prog_load } for  pid=17762 comm="syz.9.4878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  392.421890][T17772] loop6: detected capacity change from 0 to 256
[  392.426011][   T29] audit: type=1400 audit(393.396:31866): avc:  denied  { read write } for  pid=17771 comm="syz.6.4928" name="loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.474512][   T29] audit: type=1400 audit(393.406:31867): avc:  denied  { read write open } for  pid=17771 comm="syz.6.4928" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.475049][T17772] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  392.499039][   T29] audit: type=1400 audit(393.406:31868): avc:  denied  { bpf } for  pid=17762 comm="syz.9.4878" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  392.499074][   T29] audit: type=1400 audit(393.406:31869): avc:  denied  { perfmon } for  pid=17762 comm="syz.9.4878" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  392.558115][   T29] audit: type=1400 audit(393.406:31870): avc:  denied  { ioctl } for  pid=17771 comm="syz.6.4928" path="/dev/loop6" dev="devtmpfs" ino=106 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.583270][   T29] audit: type=1400 audit(393.426:31871): avc:  denied  { read write } for  pid=13602 comm="syz-executor" name="loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.607074][   T29] audit: type=1400 audit(393.426:31872): avc:  denied  { open } for  pid=13602 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.630952][   T29] audit: type=1400 audit(393.426:31873): avc:  denied  { ioctl } for  pid=13602 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  392.656174][   T29] audit: type=1400 audit(393.436:31874): avc:  denied  { mounton } for  pid=17771 comm="syz.6.4928" path="/582/file0" dev="tmpfs" ino=3105 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  392.684976][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.690642][T17772] FAT-fs (loop6): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  392.702582][T17772] FAT-fs (loop6): Filesystem has been set read-only
[  392.752598][T17776] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4930'.
[  392.773323][T17776] hsr_slave_1 (unregistering): left promiscuous mode
[  392.842844][T17786] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4934'.
[  392.869767][T17786] hsr_slave_1 (unregistering): left promiscuous mode
[  392.925051][T17791] loop6: detected capacity change from 0 to 1024
[  392.937232][T17792] ref_ctr_offset mismatch. inode: 0x568 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x200000000200
[  392.950636][T17791] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  392.960438][T17791] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  392.972872][T17791] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  392.983088][T17791] EXT4-fs error (device loop6): ext4_get_journal_inode:5796: inode #32: comm syz.6.4937: iget: special inode unallocated
[  392.996964][T17791] EXT4-fs (loop6): no journal found
[  393.002551][T17791] EXT4-fs (loop6): can't get journal size
[  393.019895][T17791] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  393.055756][T17791] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.6.4937: path /583/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  393.149793][ T8651] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.171333][T17805] loop1: detected capacity change from 0 to 8192
[  393.242719][T17810] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  393.260535][T17810] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  393.283574][T17813] loop6: detected capacity change from 0 to 512
[  393.301976][T17813] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  393.427972][T17821] loop6: detected capacity change from 0 to 512
[  393.435926][T17821] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  393.436070][T17820] loop1: detected capacity change from 0 to 2048
[  393.453719][T17821] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  393.461765][T17820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.475504][T17821] EXT4-fs error (device loop6): ext4_iget_extra_inode:5104: inode #15: comm syz.6.4948: corrupted in-inode xattr: e_value size too large
[  393.490658][T17821] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.4948: couldn't read orphan inode 15 (err -117)
[  393.503117][T17821] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.535227][ T8651] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.619196][T17826] loop6: detected capacity change from 0 to 8192
[  393.727616][T17832] loop6: detected capacity change from 0 to 2048
[  393.752956][T17832] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.782830][ T8651] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.909226][T17840] netlink: 'syz.6.4954': attribute type 5 has an invalid length.
[  393.917054][T17840] netlink: 44 bytes leftover after parsing attributes in process `syz.6.4954'.
[  393.934061][T17840] netlink: 'syz.6.4954': attribute type 8 has an invalid length.
[  393.959046][T17840] loop6: detected capacity change from 0 to 512
[  393.985502][T17840] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  394.008084][T17840] EXT4-fs (loop6): mount failed
[  394.212434][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.284177][T17853] loop1: detected capacity change from 0 to 512
[  394.420710][T17853] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  394.431993][T17853] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  394.444076][T17853] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.4959: corrupted in-inode xattr: e_value size too large
[  394.534951][T17853] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.4959: couldn't read orphan inode 15 (err -117)
[  394.559981][T17853] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  394.606945][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.669139][T17863] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  394.693245][T17863] SELinux: failed to load policy
[  395.016228][T17877] FAULT_INJECTION: forcing a failure.
[  395.016228][T17877] name failslab, interval 1, probability 0, space 0, times 0
[  395.029045][T17877] CPU: 0 UID: 0 PID: 17877 Comm: syz.1.4968 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  395.029118][T17877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  395.029131][T17877] Call Trace:
[  395.029137][T17877]  <TASK>
[  395.029145][T17877]  __dump_stack+0x1d/0x30
[  395.029170][T17877]  dump_stack_lvl+0xe8/0x140
[  395.029222][T17877]  dump_stack+0x15/0x1b
[  395.029243][T17877]  should_fail_ex+0x265/0x280
[  395.029274][T17877]  ? uprobe_register+0xf9/0x750
[  395.029307][T17877]  should_failslab+0x8c/0xb0
[  395.029413][T17877]  __kmalloc_cache_noprof+0x4c/0x320
[  395.029445][T17877]  uprobe_register+0xf9/0x750
[  395.029473][T17877]  bpf_uprobe_multi_link_attach+0x7e3/0x910
[  395.029569][T17877]  link_create+0x680/0x6e0
[  395.029616][T17877]  __sys_bpf+0x61d/0x7b0
[  395.029660][T17877]  __x64_sys_bpf+0x41/0x50
[  395.029684][T17877]  x64_sys_call+0x2aea/0x2ff0
[  395.029778][T17877]  do_syscall_64+0xd2/0x200
[  395.029920][T17877]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  395.029993][T17877]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  395.030020][T17877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.030125][T17877] RIP: 0033:0x7fb43eb9ebe9
[  395.030143][T17877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.030162][T17877] RSP: 002b:00007fb43d607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  395.030183][T17877] RAX: ffffffffffffffda RBX: 00007fb43edc5fa0 RCX: 00007fb43eb9ebe9
[  395.030197][T17877] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  395.030250][T17877] RBP: 00007fb43d607090 R08: 0000000000000000 R09: 0000000000000000
[  395.030262][T17877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  395.030273][T17877] R13: 00007fb43edc6038 R14: 00007fb43edc5fa0 R15: 00007ffcc8922958
[  395.030367][T17877]  </TASK>
[  395.566692][T17887] loop6: detected capacity change from 0 to 512
[  395.600892][T17887] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  395.623243][T17887] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  395.681928][T17887] EXT4-fs error (device loop6): ext4_iget_extra_inode:5104: inode #15: comm syz.6.4972: corrupted in-inode xattr: e_value size too large
[  395.750008][T17887] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.4972: couldn't read orphan inode 15 (err -117)
[  395.785099][T17887] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.857786][ T8651] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.008945][T17909] loop6: detected capacity change from 0 to 2048
[  396.028797][T17912] FAULT_INJECTION: forcing a failure.
[  396.028797][T17912] name failslab, interval 1, probability 0, space 0, times 0
[  396.041630][T17912] CPU: 1 UID: 0 PID: 17912 Comm: syz.9.4983 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  396.041722][T17912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  396.041809][T17912] Call Trace:
[  396.041817][T17912]  <TASK>
[  396.041827][T17912]  __dump_stack+0x1d/0x30
[  396.041847][T17912]  dump_stack_lvl+0xe8/0x140
[  396.041866][T17912]  dump_stack+0x15/0x1b
[  396.041881][T17912]  should_fail_ex+0x265/0x280
[  396.041902][T17912]  should_failslab+0x8c/0xb0
[  396.042029][T17912]  __kvmalloc_node_noprof+0x123/0x4e0
[  396.042081][T17912]  ? vmemdup_user+0x26/0xd0
[  396.042106][T17912]  ? should_fail_usercopy+0x1a/0x20
[  396.042130][T17912]  vmemdup_user+0x26/0xd0
[  396.042155][T17912]  path_setxattrat+0x1b6/0x310
[  396.042237][T17912]  __x64_sys_fsetxattr+0x6b/0x80
[  396.042309][T17912]  x64_sys_call+0x1ced/0x2ff0
[  396.042374][T17912]  do_syscall_64+0xd2/0x200
[  396.042399][T17912]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  396.042616][T17912]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  396.042643][T17912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.042667][T17912] RIP: 0033:0x7fb9f5a2ebe9
[  396.042683][T17912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.042700][T17912] RSP: 002b:00007fb9f448f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  396.042758][T17912] RAX: ffffffffffffffda RBX: 00007fb9f5c55fa0 RCX: 00007fb9f5a2ebe9
[  396.042841][T17912] RDX: 0000200000000380 RSI: 0000200000000340 RDI: 0000000000000003
[  396.042854][T17912] RBP: 00007fb9f448f090 R08: 0000000000000002 R09: 0000000000000000
[  396.042867][T17912] R10: 0000000000000015 R11: 0000000000000246 R12: 0000000000000001
[  396.042879][T17912] R13: 00007fb9f5c56038 R14: 00007fb9f5c55fa0 R15: 00007fff3211a888
[  396.042898][T17912]  </TASK>
[  396.043896][T17908] loop1: detected capacity change from 0 to 8192
[  396.111547][T17913] FAULT_INJECTION: forcing a failure.
[  396.111547][T17913] name failslab, interval 1, probability 0, space 0, times 0
[  396.244322][T17913] CPU: 1 UID: 0 PID: 17913 Comm: syz.8.4984 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  396.244348][T17913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  396.244360][T17913] Call Trace:
[  396.244366][T17913]  <TASK>
[  396.244374][T17913]  __dump_stack+0x1d/0x30
[  396.244451][T17913]  dump_stack_lvl+0xe8/0x140
[  396.244473][T17913]  dump_stack+0x15/0x1b
[  396.244508][T17913]  should_fail_ex+0x265/0x280
[  396.244535][T17913]  should_failslab+0x8c/0xb0
[  396.244595][T17913]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  396.244659][T17913]  ? sidtab_sid2str_get+0xa0/0x130
[  396.244678][T17913]  ? skb_put+0xa9/0xf0
[  396.244777][T17913]  kmemdup_noprof+0x2b/0x70
[  396.244811][T17913]  sidtab_sid2str_get+0xa0/0x130
[  396.244838][T17913]  security_sid_to_context_core+0x1eb/0x2e0
[  396.244862][T17913]  security_sid_to_context+0x27/0x40
[  396.244886][T17913]  avc_audit_post_callback+0x9d/0x520
[  396.244962][T17913]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  396.245038][T17913]  common_lsm_audit+0x1b8/0x230
[  396.245076][T17913]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  396.245102][T17913]  slow_avc_audit+0x104/0x140
[  396.245232][T17913]  avc_has_perm+0x13a/0x180
[  396.245261][T17913]  selinux_socket_setsockopt+0x17c/0x1e0
[  396.245344][T17913]  security_socket_setsockopt+0x46/0x80
[  396.245379][T17913]  __sys_setsockopt+0x98/0x200
[  396.245405][T17913]  __x64_sys_setsockopt+0x64/0x80
[  396.245497][T17913]  x64_sys_call+0x20ec/0x2ff0
[  396.245518][T17913]  do_syscall_64+0xd2/0x200
[  396.245556][T17913]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  396.245593][T17913]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  396.245642][T17913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.245663][T17913] RIP: 0033:0x7f648a47ebe9
[  396.245677][T17913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.245694][T17913] RSP: 002b:00007f6488ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  396.245782][T17913] RAX: ffffffffffffffda RBX: 00007f648a6a5fa0 RCX: 00007f648a47ebe9
[  396.245797][T17913] RDX: 0000000000000036 RSI: 0000000000000029 RDI: 0000000000000003
[  396.245812][T17913] RBP: 00007f6488ee7090 R08: 0000000000000008 R09: 0000000000000000
[  396.245825][T17913] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  396.245836][T17913] R13: 00007f648a6a6038 R14: 00007f648a6a5fa0 R15: 00007fffd63e7278
[  396.245918][T17913]  </TASK>
[  396.247382][T17909] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.467585][T17921] loop8: detected capacity change from 0 to 256
[  396.551613][T17921] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  396.577323][T17924] bridge_slave_0: left allmulticast mode
[  396.583089][T17924] bridge_slave_0: left promiscuous mode
[  396.588956][T17924] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.599178][T17921] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  396.607842][T17921] FAT-fs (loop8): Filesystem has been set read-only
[  396.616066][T17924] bridge_slave_1: left allmulticast mode
[  396.621817][T17924] bridge_slave_1: left promiscuous mode
[  396.627515][T17924] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.640987][T17924] bond0: (slave bond_slave_0): Releasing backup interface
[  396.657494][T17924] bond0: (slave bond_slave_1): Releasing backup interface
[  396.673792][T17924] team0: Failed to send options change via netlink (err -105)
[  396.681908][T17924] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  396.692888][T17930] loop7: detected capacity change from 0 to 8192
[  396.700288][T17924] team0: Port device team_slave_0 removed
[  396.710469][T17924] team0: Failed to send options change via netlink (err -105)
[  396.720341][T17924] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  396.730533][T17924] team0: Port device team_slave_1 removed
[  396.738254][T17924] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  396.745758][T17924] batman_adv: batadv0: Removing interface: batadv_slave_0
[  396.786566][T17924] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.794110][T17924] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.808366][T17938] loop8: detected capacity change from 0 to 512
[  396.837086][T17931] team0: Failed to send options change via netlink (err -105)
[  396.844704][T17931] team0: Mode changed to "activebackup"
[  396.906870][T17938] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4994'.
[  396.916179][T17938] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4994'.
[  396.940938][T17944] netlink: 'syz.1.4995': attribute type 6 has an invalid length.
[  396.960423][T17938] bridge0: port 3(syz_tun) entered blocking state
[  396.966934][T17938] bridge0: port 3(syz_tun) entered disabled state
[  396.998156][T17938] syz_tun: entered allmulticast mode
[  397.013872][T17951] EXT4-fs error (device loop8): ext4_lookup:1787: inode #12: comm syz.8.4994: iget: bad i_size value: 2533274857506816
[  397.020259][T17938] syz_tun: entered promiscuous mode
[  397.034921][T17952] FAULT_INJECTION: forcing a failure.
[  397.034921][T17952] name failslab, interval 1, probability 0, space 0, times 0
[  397.047691][T17952] CPU: 0 UID: 0 PID: 17952 Comm: syz.7.4998 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  397.047833][T17952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  397.047849][T17952] Call Trace:
[  397.047856][T17952]  <TASK>
[  397.047865][T17952]  __dump_stack+0x1d/0x30
[  397.047888][T17952]  dump_stack_lvl+0xe8/0x140
[  397.047906][T17952]  dump_stack+0x15/0x1b
[  397.048000][T17952]  should_fail_ex+0x265/0x280
[  397.048023][T17952]  should_failslab+0x8c/0xb0
[  397.048056][T17952]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  397.048103][T17952]  ? cond_bools_copy+0x30/0x80
[  397.048137][T17952]  ? __pfx_cond_bools_destroy+0x10/0x10
[  397.048163][T17952]  kmemdup_noprof+0x2b/0x70
[  397.048187][T17952]  ? __pfx_cond_bools_destroy+0x10/0x10
[  397.048236][T17952]  cond_bools_copy+0x30/0x80
[  397.048259][T17952]  ? __pfx_cond_bools_destroy+0x10/0x10
[  397.048282][T17952]  hashtab_duplicate+0x11e/0x360
[  397.048319][T17952]  ? __pfx_cond_bools_copy+0x10/0x10
[  397.048416][T17952]  cond_policydb_dup+0xd2/0x4e0
[  397.048451][T17952]  security_set_bools+0xa0/0x340
[  397.048499][T17952]  sel_commit_bools_write+0x1ea/0x270
[  397.048605][T17952]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  397.048633][T17952]  vfs_write+0x269/0x960
[  397.048733][T17952]  ? __rcu_read_unlock+0x4f/0x70
[  397.048761][T17952]  ? __fget_files+0x184/0x1c0
[  397.048806][T17952]  __x64_sys_pwrite64+0xfd/0x150
[  397.048895][T17952]  x64_sys_call+0xc4d/0x2ff0
[  397.048923][T17952]  do_syscall_64+0xd2/0x200
[  397.048957][T17952]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  397.048988][T17952]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  397.049084][T17952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.049106][T17952] RIP: 0033:0x7ff7752febe9
[  397.049122][T17952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.049145][T17952] RSP: 002b:00007ff773d5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  397.049174][T17952] RAX: ffffffffffffffda RBX: 00007ff775525fa0 RCX: 00007ff7752febe9
[  397.049190][T17952] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003
[  397.049206][T17952] RBP: 00007ff773d5f090 R08: 0000000000000000 R09: 0000000000000000
[  397.049301][T17952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  397.049343][T17952] R13: 00007ff775526038 R14: 00007ff775525fa0 R15: 00007ffc711ed808
[  397.049410][T17952]  </TASK>
[  397.289499][T17938] bridge0: port 3(syz_tun) entered blocking state
[  397.295971][T17938] bridge0: port 3(syz_tun) entered forwarding state
[  397.346383][T17956] loop6: detected capacity change from 0 to 8192
[  397.354478][T17951] EXT4-fs (loop8): Remounting filesystem read-only
[  397.431708][   T29] kauditd_printk_skb: 1517 callbacks suppressed
[  397.431725][   T29] audit: type=1400 audit(398.417:33391): avc:  denied  { prog_load } for  pid=17955 comm="syz.6.4999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  397.456674][   T29] audit: type=1400 audit(398.417:33392): avc:  denied  { bpf } for  pid=17955 comm="syz.6.4999" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  397.476794][   T29] audit: type=1400 audit(398.417:33393): avc:  denied  { perfmon } for  pid=17955 comm="syz.6.4999" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  397.523809][   T29] audit: type=1400 audit(398.487:33394): avc:  denied  { prog_run } for  pid=17955 comm="syz.6.4999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  397.542553][   T29] audit: type=1400 audit(398.497:33395): avc:  denied  { read write } for  pid=13439 comm="syz-executor" name="loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  397.566468][   T29] audit: type=1400 audit(398.497:33396): avc:  denied  { open } for  pid=13439 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  397.590205][   T29] audit: type=1400 audit(398.497:33397): avc:  denied  { ioctl } for  pid=13439 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  397.727067][   T29] audit: type=1400 audit(398.607:33398): avc:  denied  { unmount } for  pid=8651 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  397.746649][   T29] audit: type=1400 audit(398.637:33399): avc:  denied  { map_create } for  pid=17958 comm="syz.7.5000" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  397.765475][   T29] audit: type=1400 audit(398.637:33400): avc:  denied  { bpf } for  pid=17958 comm="syz.7.5000" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  397.976743][T17972] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5007'.
[  398.008474][ T5475] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.090829][ T5475] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.165739][T17981] loop8: detected capacity change from 0 to 8192
[  398.182547][ T5475] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.217020][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811563e400: rx timeout, send abort
[  398.241568][ T5475] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.353708][ T5475] bridge_slave_1: left allmulticast mode
[  398.359432][ T5475] bridge_slave_1: left promiscuous mode
[  398.365108][ T5475] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.389937][ T5475] bridge_slave_0: left promiscuous mode
[  398.395648][ T5475] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.406661][T17997] loop1: detected capacity change from 0 to 512
[  398.415386][ T5475] team0: left allmulticast mode
[  398.420445][ T5475] team_slave_0: left allmulticast mode
[  398.425961][ T5475] team_slave_1: left allmulticast mode
[  398.431264][T17997] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  398.431607][ T5475] team0: left promiscuous mode
[  398.444408][ T5475] team_slave_0: left promiscuous mode
[  398.450098][ T5475] team_slave_1: left promiscuous mode
[  398.452200][T17997] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  398.455765][ T5475] kfree: port 1(team0) entered disabled state
[  398.470294][T17997] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.5013: corrupted in-inode xattr: e_value size too large
[  398.475880][T18000] netlink: 'syz.8.5014': attribute type 10 has an invalid length.
[  398.492391][T18000] netlink: 40 bytes leftover after parsing attributes in process `syz.8.5014'.
[  398.499155][T17997] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.5013: couldn't read orphan inode 15 (err -117)
[  398.585695][ T5475] dvmrp0 (unregistering): left allmulticast mode
[  398.705934][T18007] loop1: detected capacity change from 0 to 512
[  398.717013][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811563e800: rx timeout, send abort
[  398.725590][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811563e400: abort rx timeout. Force session deactivation
[  398.737400][T18007] EXT4-fs: Ignoring removed oldalloc option
[  398.745358][T18007] ext4: Unknown parameter 'smackfsfloor'
[  398.783160][T18011] FAULT_INJECTION: forcing a failure.
[  398.783160][T18011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.796267][T18011] CPU: 1 UID: 0 PID: 18011 Comm: syz.7.5017 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  398.796308][T18011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  398.796365][T18011] Call Trace:
[  398.796373][T18011]  <TASK>
[  398.796381][T18011]  __dump_stack+0x1d/0x30
[  398.796402][T18011]  dump_stack_lvl+0xe8/0x140
[  398.796505][T18011]  dump_stack+0x15/0x1b
[  398.796526][T18011]  should_fail_ex+0x265/0x280
[  398.796552][T18011]  should_fail+0xb/0x20
[  398.796574][T18011]  should_fail_usercopy+0x1a/0x20
[  398.796602][T18011]  _copy_to_user+0x20/0xa0
[  398.796703][T18011]  simple_read_from_buffer+0xb5/0x130
[  398.796730][T18011]  proc_fail_nth_read+0x10e/0x150
[  398.796823][T18011]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  398.796857][T18011]  vfs_read+0x1a8/0x770
[  398.796876][T18011]  ? __rcu_read_unlock+0x4f/0x70
[  398.796915][T18011]  ? __fget_files+0x184/0x1c0
[  398.796984][T18011]  ksys_read+0xda/0x1a0
[  398.797007][T18011]  __x64_sys_read+0x40/0x50
[  398.797110][T18011]  x64_sys_call+0x27bc/0x2ff0
[  398.797137][T18011]  do_syscall_64+0xd2/0x200
[  398.797223][T18011]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  398.797254][T18011]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  398.797305][T18011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.797331][T18011] RIP: 0033:0x7ff7752fd5fc
[  398.797349][T18011] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  398.797373][T18011] RSP: 002b:00007ff773d5f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  398.797461][T18011] RAX: ffffffffffffffda RBX: 00007ff775525fa0 RCX: 00007ff7752fd5fc
[  398.797474][T18011] RDX: 000000000000000f RSI: 00007ff773d5f0a0 RDI: 0000000000000005
[  398.797486][T18011] RBP: 00007ff773d5f090 R08: 0000000000000000 R09: 0000000000000000
[  398.797497][T18011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  398.797509][T18011] R13: 00007ff775526038 R14: 00007ff775525fa0 R15: 00007ffc711ed808
[  398.797571][T18011]  </TASK>
[  399.082900][ T5475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  399.093305][ T5475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  399.113766][ T5475] bond0 (unregistering): Released all slaves
[  399.137006][T18000] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  399.167036][ T5475] tipc: Left network mode
[  399.225270][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811563e800: abort rx timeout. Force session deactivation
[  399.279497][T17973] chnl_net:caif_netlink_parms(): no params data found
[  399.297753][ T5475] hsr_slave_0: left promiscuous mode
[  399.324831][ T5475] hsr_slave_1: left promiscuous mode
[  399.357333][ T5475] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  399.364920][ T5475] batman_adv: batadv0: Removing interface: batadv_slave_0
[  399.400777][ T5475] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  399.408244][ T5475] batman_adv: batadv0: Removing interface: batadv_slave_1
[  399.462054][ T5475] veth1_vlan: left promiscuous mode
[  399.467384][ T5475] veth0_vlan: left promiscuous mode
[  399.544266][T18034] loop7: detected capacity change from 0 to 512
[  399.554181][T18034] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  399.566381][T18034] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  399.584587][T18034] EXT4-fs error (device loop7): ext4_iget_extra_inode:5104: inode #15: comm syz.7.5025: corrupted in-inode xattr: e_value size too large
[  399.584620][ T5475] pim6reg (unregistering): left allmulticast mode
[  399.605906][T18034] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.5025: couldn't read orphan inode 15 (err -117)
[  399.663486][ T5475] team0 (unregistering): Port device team_slave_1 removed
[  399.676196][ T5475] team0 (unregistering): Port device team_slave_0 removed
[  399.720874][T18044] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5029'.
[  399.772368][T18047] netlink: 'syz.7.5030': attribute type 21 has an invalid length.
[  399.780389][T18047] netlink: 'syz.7.5030': attribute type 4 has an invalid length.
[  399.799819][T18038] netlink: 200 bytes leftover after parsing attributes in process `syz.8.5028'.
[  399.813806][T18047] random: crng reseeded on system resumption
[  399.848000][T18047] Restarting kernel threads ...
[  399.854412][T18047] Done restarting kernel threads.
[  399.897021][T17973] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.904220][T17973] bridge0: port 1(bridge_slave_0) entered disabled state
[  399.920345][T17973] bridge_slave_0: entered allmulticast mode
[  399.927142][T17973] bridge_slave_0: entered promiscuous mode
[  399.950843][T17973] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.957966][T17973] bridge0: port 2(bridge_slave_1) entered disabled state
[  399.996563][T17973] bridge_slave_1: entered allmulticast mode
[  400.014168][T17973] bridge_slave_1: entered promiscuous mode
[  400.102347][T17973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  400.114638][T17973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  400.158743][T18061] syz_tun: left allmulticast mode
[  400.164075][T18061] syz_tun: left promiscuous mode
[  400.169277][T18061] bridge0: port 3(syz_tun) entered disabled state
[  400.191672][T18061] 
: (slave dummy0): Releasing backup interface
[  400.210942][T18061] bridge_slave_0: left promiscuous mode
[  400.216697][T18061] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.227287][T18061] bridge_slave_1: left allmulticast mode
[  400.233069][T18061] bridge_slave_1: left promiscuous mode
[  400.238833][T18061] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.249875][T18061] 
: (slave bond_slave_0): Releasing backup interface
[  400.266618][T18061] 
: (slave bond_slave_1): Releasing backup interface
[  400.288365][T18061] team0: Failed to send options change via netlink (err -105)
[  400.327248][T18061] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  400.337279][T18061] team0: Port device team_slave_0 removed
[  400.346982][T18061] team0: Failed to send options change via netlink (err -105)
[  400.354800][T18061] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  400.365871][T18061] team0: Port device team_slave_1 removed
[  400.387031][T17973] team0: Port device team_slave_0 added
[  400.398069][T17973] team0: Port device team_slave_1 added
[  400.461329][T18065] team0: Failed to send options change via netlink (err -105)
[  400.469012][T18065] team0: Mode changed to "activebackup"
[  400.524208][T17973] batman_adv: batadv0: Adding interface: batadv_slave_0
[  400.531268][T17973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.557271][T17973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  400.631780][T17973] batman_adv: batadv0: Adding interface: batadv_slave_1
[  400.638763][T17973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.663396][T18087] loop1: detected capacity change from 0 to 512
[  400.664882][T17973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  400.688566][T18087] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  400.712045][T18086] loop8: detected capacity change from 0 to 512
[  400.732296][T18086] EXT4-fs (loop8): orphan cleanup on readonly fs
[  400.739352][T18086] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.5039: bg 0: block 248: padding at end of block bitmap is not set
[  400.761424][T18087] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  400.774769][T17973] hsr_slave_0: entered promiscuous mode
[  400.776391][T18086] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.5039: Failed to acquire dquot type 1
[  400.795162][T17973] hsr_slave_1: entered promiscuous mode
[  400.801094][T18087] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.5040: corrupted in-inode xattr: e_value size too large
[  400.804122][T17973] debugfs: 'hsr0' already exists in 'hsr'
[  400.820996][T17973] Cannot create hsr debugfs directory
[  400.829610][T18086] EXT4-fs (loop8): 1 truncate cleaned up
[  400.830011][T18087] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.5040: couldn't read orphan inode 15 (err -117)
[  400.975583][T18092] netlink: 200 bytes leftover after parsing attributes in process `syz.7.5041'.
[  400.992788][T18100] netlink: 108 bytes leftover after parsing attributes in process `syz.8.5045'.
[  401.132932][T18107] FAULT_INJECTION: forcing a failure.
[  401.132932][T18107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  401.146179][T18107] CPU: 1 UID: 0 PID: 18107 Comm: syz.8.5048 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  401.146354][T18107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  401.146370][T18107] Call Trace:
[  401.146378][T18107]  <TASK>
[  401.146387][T18107]  __dump_stack+0x1d/0x30
[  401.146408][T18107]  dump_stack_lvl+0xe8/0x140
[  401.146428][T18107]  dump_stack+0x15/0x1b
[  401.146445][T18107]  should_fail_ex+0x265/0x280
[  401.146483][T18107]  should_fail+0xb/0x20
[  401.146502][T18107]  should_fail_usercopy+0x1a/0x20
[  401.146523][T18107]  _copy_to_user+0x20/0xa0
[  401.146574][T18107]  simple_read_from_buffer+0xb5/0x130
[  401.146597][T18107]  proc_fail_nth_read+0x10e/0x150
[  401.146684][T18107]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  401.146710][T18107]  vfs_read+0x1a8/0x770
[  401.146733][T18107]  ? __rcu_read_unlock+0x4f/0x70
[  401.146758][T18107]  ? __fget_files+0x184/0x1c0
[  401.146850][T18107]  ksys_read+0xda/0x1a0
[  401.146877][T18107]  __x64_sys_read+0x40/0x50
[  401.146899][T18107]  x64_sys_call+0x27bc/0x2ff0
[  401.146921][T18107]  do_syscall_64+0xd2/0x200
[  401.147017][T18107]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  401.147039][T18107]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  401.147062][T18107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.147082][T18107] RIP: 0033:0x7f648a47d5fc
[  401.147097][T18107] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  401.147158][T18107] RSP: 002b:00007f6488ee7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  401.147176][T18107] RAX: ffffffffffffffda RBX: 00007f648a6a5fa0 RCX: 00007f648a47d5fc
[  401.147188][T18107] RDX: 000000000000000f RSI: 00007f6488ee70a0 RDI: 0000000000000005
[  401.147199][T18107] RBP: 00007f6488ee7090 R08: 0000000000000000 R09: 0000000000000000
[  401.147228][T18107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  401.147242][T18107] R13: 00007f648a6a6038 R14: 00007f648a6a5fa0 R15: 00007fffd63e7278
[  401.147263][T18107]  </TASK>
[  401.353271][T18109] netlink: 'syz.1.5049': attribute type 13 has an invalid length.
[  401.362429][T18109] FAULT_INJECTION: forcing a failure.
[  401.362429][T18109] name failslab, interval 1, probability 0, space 0, times 0
[  401.375117][T18109] CPU: 0 UID: 0 PID: 18109 Comm: syz.1.5049 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  401.375145][T18109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  401.375239][T18109] Call Trace:
[  401.375279][T18109]  <TASK>
[  401.375290][T18109]  __dump_stack+0x1d/0x30
[  401.375317][T18109]  dump_stack_lvl+0xe8/0x140
[  401.375342][T18109]  dump_stack+0x15/0x1b
[  401.375395][T18109]  should_fail_ex+0x265/0x280
[  401.375427][T18109]  ? inet_alloc_ifa+0x2e/0xc0
[  401.375463][T18109]  should_failslab+0x8c/0xb0
[  401.375495][T18109]  __kmalloc_cache_noprof+0x4c/0x320
[  401.375599][T18109]  inet_alloc_ifa+0x2e/0xc0
[  401.375658][T18109]  inetdev_event+0x8a4/0xc10
[  401.375717][T18109]  ? __rcu_read_unlock+0x4f/0x70
[  401.375741][T18109]  ? ib_netdevice_event+0x281/0x5f0
[  401.375769][T18109]  ? __pfx_arp_netdev_event+0x10/0x10
[  401.375793][T18109]  ? __pfx_inetdev_event+0x10/0x10
[  401.375879][T18109]  raw_notifier_call_chain+0x6f/0x1b0
[  401.375904][T18109]  ? call_netdevice_notifiers_info+0x9c/0x100
[  401.375968][T18109]  call_netdevice_notifiers_info+0xae/0x100
[  401.376005][T18109]  __dev_notify_flags+0xff/0x1a0
[  401.376047][T18109]  netif_change_flags+0xac/0xd0
[  401.376088][T18109]  do_setlink+0x9d2/0x2810
[  401.376162][T18109]  ? _raw_spin_unlock+0x26/0x50
[  401.376261][T18109]  ? finish_task_switch+0xad/0x2b0
[  401.376284][T18109]  ? __schedule+0x6b9/0xb30
[  401.376323][T18109]  rtnl_newlink+0xd8b/0x12d0
[  401.376423][T18109]  ? context_struct_compute_av+0x96d/0xaa0
[  401.376471][T18109]  ? __rcu_read_unlock+0x4f/0x70
[  401.376547][T18109]  ? avc_has_perm_noaudit+0x1b1/0x200
[  401.376634][T18109]  ? cred_has_capability+0x210/0x280
[  401.376666][T18109]  ? selinux_capable+0x31/0x40
[  401.376765][T18109]  ? security_capable+0x83/0x90
[  401.376813][T18109]  ? ns_capable+0x7d/0xb0
[  401.376873][T18109]  ? __pfx_rtnl_newlink+0x10/0x10
[  401.376968][T18109]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  401.377003][T18109]  ? avc_has_perm_noaudit+0x1b1/0x200
[  401.377031][T18109]  netlink_rcv_skb+0x120/0x220
[  401.377124][T18109]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  401.377163][T18109]  rtnetlink_rcv+0x1c/0x30
[  401.377189][T18109]  netlink_unicast+0x5c0/0x690
[  401.377357][T18109]  netlink_sendmsg+0x58b/0x6b0
[  401.377389][T18109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  401.377416][T18109]  __sock_sendmsg+0x145/0x180
[  401.377448][T18109]  ____sys_sendmsg+0x31e/0x4e0
[  401.377480][T18109]  ___sys_sendmsg+0x17b/0x1d0
[  401.377593][T18109]  __x64_sys_sendmsg+0xd4/0x160
[  401.377621][T18109]  x64_sys_call+0x191e/0x2ff0
[  401.377650][T18109]  do_syscall_64+0xd2/0x200
[  401.377703][T18109]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  401.377729][T18109]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  401.377761][T18109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.377782][T18109] RIP: 0033:0x7fb43eb9ebe9
[  401.377798][T18109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.377816][T18109] RSP: 002b:00007fb43d607038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  401.377841][T18109] RAX: ffffffffffffffda RBX: 00007fb43edc5fa0 RCX: 00007fb43eb9ebe9
[  401.377864][T18109] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000005
[  401.377880][T18109] RBP: 00007fb43d607090 R08: 0000000000000000 R09: 0000000000000000
[  401.377896][T18109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  401.377912][T18109] R13: 00007fb43edc6038 R14: 00007fb43edc5fa0 R15: 00007ffcc8922958
[  401.377965][T18109]  </TASK>
[  401.835477][T18109] 8021q: adding VLAN 0 to HW filter on device bond0
[  401.843836][T18109] 8021q: adding VLAN 0 to HW filter on device team0
[  401.870307][T18109] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  402.032523][T18118] loop8: detected capacity change from 0 to 512
[  402.039095][T17973] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  402.055562][T17973] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  402.066163][T18118] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  402.080964][T17973] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  402.101743][T17973] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  402.109763][T18118] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  402.146501][T18118] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.5053: corrupted in-inode xattr: e_value size too large
[  402.170796][T18121] loop7: detected capacity change from 0 to 1024
[  402.209457][T18118] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.5053: couldn't read orphan inode 15 (err -117)
[  402.249518][T18121] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  402.259356][T18121] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  402.323785][T17973] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.337697][T17973] 8021q: adding VLAN 0 to HW filter on device team0
[  402.350892][T18121] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  402.357563][ T5479] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.367939][ T5479] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.416017][T18121] EXT4-fs error (device loop7): ext4_get_journal_inode:5796: inode #32: comm syz.7.5055: iget: special inode unallocated
[  402.432843][ T5479] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.439956][ T5479] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.451568][   T29] kauditd_printk_skb: 947 callbacks suppressed
[  402.451591][   T29] audit: type=1400 audit(403.437:34346): avc:  denied  { prog_load } for  pid=18134 comm="syz.8.5058" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  402.476549][   T29] audit: type=1400 audit(403.437:34347): avc:  denied  { bpf } for  pid=18134 comm="syz.8.5058" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  402.519088][   T29] audit: type=1400 audit(403.497:34348): avc:  denied  { perfmon } for  pid=18134 comm="syz.8.5058" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  402.529127][T18121] EXT4-fs (loop7): no journal found
[  402.544934][T18121] EXT4-fs (loop7): can't get journal size
[  402.561338][T18135] loop8: detected capacity change from 0 to 1024
[  402.570103][T18135] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  402.579925][T18135] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  402.590754][   T29] audit: type=1400 audit(403.547:34349): avc:  denied  { read write } for  pid=18134 comm="syz.8.5058" name="loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.614463][   T29] audit: type=1400 audit(403.547:34350): avc:  denied  { open } for  pid=18134 comm="syz.8.5058" path="/dev/loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.638015][   T29] audit: type=1400 audit(403.547:34351): avc:  denied  { ioctl } for  pid=18134 comm="syz.8.5058" path="/dev/loop8" dev="devtmpfs" ino=108 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.663186][   T29] audit: type=1400 audit(403.547:34352): avc:  denied  { mounton } for  pid=18134 comm="syz.8.5058" path="/286/file0" dev="tmpfs" ino=1519 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  402.692275][T18135] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  402.716652][T18137] loop1: detected capacity change from 0 to 1024
[  402.730517][T18135] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #32: comm syz.8.5058: iget: special inode unallocated
[  402.744035][T18121] EXT4-fs error (device loop7): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.7.5055: path /347/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  402.775347][T17973] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  402.785785][T17973] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  402.796900][T18135] EXT4-fs (loop8): no journal found
[  402.798567][T18137] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  402.802228][T18135] EXT4-fs (loop8): can't get journal size
[  402.812064][T18137] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  402.839159][T18137] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  402.850164][T18137] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.5059: iget: special inode unallocated
[  402.863009][   T29] audit: type=1400 audit(403.577:34353): avc:  denied  { read write } for  pid=12035 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.886862][   T29] audit: type=1400 audit(403.577:34354): avc:  denied  { open } for  pid=12035 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.910773][   T29] audit: type=1400 audit(403.577:34355): avc:  denied  { ioctl } for  pid=12035 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  402.912746][T18137] EXT4-fs (loop1): no journal found
[  402.941772][T18137] EXT4-fs (loop1): can't get journal size
[  402.979129][T18137] EXT4-fs mount: 16 callbacks suppressed
[  402.979149][T18137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  403.011137][T18135] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.8.5058: path /286/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  403.069222][T18137] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.5059: path /472/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  403.105156][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.166522][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.195830][T17973] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.383297][T18159] infiniband syz!: set down
[  403.387919][T18159] infiniband syz!: added team_slave_0
[  403.399776][T18159] RDS/IB: syz!: added
[  403.403832][T18159] smc: adding ib device syz! with port count 1
[  403.410187][T18159] smc:    ib device syz! port 1 has pnetid 
[  403.724979][T18187] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5068'.
[  403.854535][T17973] veth0_vlan: entered promiscuous mode
[  403.886283][T17973] veth1_vlan: entered promiscuous mode
[  403.937477][T18198] loop1: detected capacity change from 0 to 1024
[  403.962429][T17973] veth0_macvtap: entered promiscuous mode
[  403.969642][T18198] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  403.979539][T18198] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  404.001892][T17973] veth1_macvtap: entered promiscuous mode
[  404.009032][T18198] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  404.025869][T18198] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.5073: iget: special inode unallocated
[  404.059325][T18198] EXT4-fs (loop1): no journal found
[  404.064652][T18198] EXT4-fs (loop1): can't get journal size
[  404.069019][T17973] batman_adv: batadv0: Interface activated: batadv_slave_0
[  404.083579][T17973] batman_adv: batadv0: Interface activated: batadv_slave_1
[  404.095789][T18198] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  404.117682][T18206] netlink: 200 bytes leftover after parsing attributes in process `syz.8.5074'.
[  404.129045][ T5477] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  404.138130][ T5477] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  404.166285][ T5462] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  404.187248][ T5462] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.187629][T18198] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.5073: path /475/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  404.304970][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.369903][T18217] loop6: detected capacity change from 0 to 256
[  404.431647][T18217] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  404.444372][T18222] openvswitch: netlink: Message has 6 unknown bytes.
[  404.455783][T18217] FAT-fs (loop6): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  404.456570][T18227] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5078'.
[  404.464451][T18217] FAT-fs (loop6): Filesystem has been set read-only
[  404.503637][T18222] loop7: detected capacity change from 0 to 736
[  404.602660][T18234] loop8: detected capacity change from 0 to 1024
[  404.636575][T18234] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  404.646383][T18234] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  404.678868][T18234] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  404.690465][T18234] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #32: comm syz.8.5084: iget: special inode unallocated
[  404.715754][T18235] netlink: 200 bytes leftover after parsing attributes in process `syz.9.5083'.
[  404.730301][T18234] EXT4-fs (loop8): no journal found
[  404.730320][T18234] EXT4-fs (loop8): can't get journal size
[  404.760313][T18234] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  404.770456][T18239] netlink: 200 bytes leftover after parsing attributes in process `syz.7.5085'.
[  404.813178][T18234] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.8.5084: path /293/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  404.840609][T18249] loop1: detected capacity change from 0 to 1024
[  404.866032][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.896229][T18249] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  404.906238][T18249] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  404.943966][T18249] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  404.980850][T18249] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.5088: iget: special inode unallocated
[  405.038857][T18249] EXT4-fs (loop1): no journal found
[  405.044121][T18249] EXT4-fs (loop1): can't get journal size
[  405.061464][T18249] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  405.089450][T18249] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.5088: path /479/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  405.141464][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.195152][T18262] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  405.496756][T18279] netlink: 'syz.1.5100': attribute type 5 has an invalid length.
[  405.504608][T18279] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5100'.
[  405.521035][T18279] netlink: 'syz.1.5100': attribute type 8 has an invalid length.
[  405.535070][T18270] loop8: detected capacity change from 0 to 128
[  405.548195][T18279] loop1: detected capacity change from 0 to 512
[  405.570816][T18282] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5101'.
[  405.639049][T18279] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  405.664355][T18279] EXT4-fs (loop1): mount failed
[  405.837605][T18303] usb usb1: usbfs: process 18303 (wÞ£ÿ) did not claim interface 2 before use
[  406.191204][T18325] FAULT_INJECTION: forcing a failure.
[  406.191204][T18325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.204342][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz.9.5118 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  406.204377][T18325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  406.204394][T18325] Call Trace:
[  406.204403][T18325]  <TASK>
[  406.204413][T18325]  __dump_stack+0x1d/0x30
[  406.204439][T18325]  dump_stack_lvl+0xe8/0x140
[  406.204502][T18325]  dump_stack+0x15/0x1b
[  406.204520][T18325]  should_fail_ex+0x265/0x280
[  406.204547][T18325]  should_fail+0xb/0x20
[  406.204569][T18325]  should_fail_usercopy+0x1a/0x20
[  406.204664][T18325]  _copy_to_user+0x20/0xa0
[  406.204696][T18325]  simple_read_from_buffer+0xb5/0x130
[  406.204725][T18325]  proc_fail_nth_read+0x10e/0x150
[  406.204761][T18325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  406.204871][T18325]  vfs_read+0x1a8/0x770
[  406.204896][T18325]  ? __rcu_read_unlock+0x4f/0x70
[  406.204923][T18325]  ? __fget_files+0x184/0x1c0
[  406.204964][T18325]  ksys_read+0xda/0x1a0
[  406.204989][T18325]  __x64_sys_read+0x40/0x50
[  406.205051][T18325]  x64_sys_call+0x27bc/0x2ff0
[  406.205135][T18325]  do_syscall_64+0xd2/0x200
[  406.205161][T18325]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  406.205184][T18325]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  406.205229][T18325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.205320][T18325] RIP: 0033:0x7fb9f5a2d5fc
[  406.205335][T18325] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  406.205354][T18325] RSP: 002b:00007fb9f448f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  406.205378][T18325] RAX: ffffffffffffffda RBX: 00007fb9f5c55fa0 RCX: 00007fb9f5a2d5fc
[  406.205405][T18325] RDX: 000000000000000f RSI: 00007fb9f448f0a0 RDI: 0000000000000006
[  406.205419][T18325] RBP: 00007fb9f448f090 R08: 0000000000000000 R09: 0000000000000000
[  406.205434][T18325] R10: 8cffffff00000000 R11: 0000000000000246 R12: 0000000000000001
[  406.205450][T18325] R13: 00007fb9f5c56038 R14: 00007fb9f5c55fa0 R15: 00007fff3211a888
[  406.205525][T18325]  </TASK>
[  406.439650][T18319] loop6: detected capacity change from 0 to 32768
[  406.499473][T18319]  loop6: p1 p3 < >
[  406.573890][T18339] FAULT_INJECTION: forcing a failure.
[  406.573890][T18339] name failslab, interval 1, probability 0, space 0, times 0
[  406.586596][T18339] CPU: 1 UID: 0 PID: 18339 Comm: syz.9.5125 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  406.586690][T18339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  406.586713][T18339] Call Trace:
[  406.586743][T18339]  <TASK>
[  406.586753][T18339]  __dump_stack+0x1d/0x30
[  406.586779][T18339]  dump_stack_lvl+0xe8/0x140
[  406.586848][T18339]  dump_stack+0x15/0x1b
[  406.586868][T18339]  should_fail_ex+0x265/0x280
[  406.586894][T18339]  should_failslab+0x8c/0xb0
[  406.586925][T18339]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  406.587041][T18339]  ? sidtab_sid2str_get+0xa0/0x130
[  406.587134][T18339]  kmemdup_noprof+0x2b/0x70
[  406.587172][T18339]  sidtab_sid2str_get+0xa0/0x130
[  406.587199][T18339]  security_sid_to_context_core+0x1eb/0x2e0
[  406.587298][T18339]  security_sid_to_context+0x27/0x40
[  406.587321][T18339]  avc_audit_post_callback+0x9d/0x520
[  406.587352][T18339]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  406.587382][T18339]  common_lsm_audit+0x1b8/0x230
[  406.587480][T18339]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  406.587516][T18339]  slow_avc_audit+0x104/0x140
[  406.587549][T18339]  avc_has_perm+0x13a/0x180
[  406.587584][T18339]  selinux_mount+0x2ba/0x310
[  406.587674][T18339]  security_sb_mount+0x5f/0xb0
[  406.587715][T18339]  ? path_mount+0x89/0xb20
[  406.587741][T18339]  path_mount+0xa9/0xb20
[  406.587767][T18339]  ? user_path_at+0x109/0x130
[  406.587876][T18339]  __se_sys_mount+0x28f/0x2e0
[  406.587898][T18339]  ? fput+0x8f/0xc0
[  406.588008][T18339]  __x64_sys_mount+0x67/0x80
[  406.588033][T18339]  x64_sys_call+0x2b4d/0x2ff0
[  406.588055][T18339]  do_syscall_64+0xd2/0x200
[  406.588083][T18339]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  406.588174][T18339]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  406.588208][T18339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.588234][T18339] RIP: 0033:0x7fb9f5a2ebe9
[  406.588250][T18339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.588348][T18339] RSP: 002b:00007fb9f448f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  406.588368][T18339] RAX: ffffffffffffffda RBX: 00007fb9f5c55fa0 RCX: 00007fb9f5a2ebe9
[  406.588382][T18339] RDX: 0000200000000080 RSI: 0000200000000000 RDI: 0000000000000000
[  406.588394][T18339] RBP: 00007fb9f448f090 R08: 0000000000000000 R09: 0000000000000000
[  406.588407][T18339] R10: 0000000000000c00 R11: 0000000000000246 R12: 0000000000000002
[  406.588473][T18339] R13: 00007fb9f5c56038 R14: 00007fb9f5c55fa0 R15: 00007fff3211a888
[  406.588498][T18339]  </TASK>
[  406.602703][T18341] loop6: detected capacity change from 0 to 512
[  406.712596][T18344] loop8: detected capacity change from 0 to 512
[  406.729788][T18341] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  406.741690][T18341] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #17: comm syz.6.5124: iget: bad i_size value: -6917529027641081756
[  406.762725][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #3: comm syz.8.5126: corrupted inode contents
[  406.766228][T18341] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.5124: couldn't read orphan inode 17 (err -117)
[  406.771209][T18344] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #3: comm syz.8.5126: mark_inode_dirty error
[  406.791238][T18341] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.799438][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #3: comm syz.8.5126: corrupted inode contents
[  406.814998][T18341] Option '                                                                   g' to dns_resolver key: bad/missing value
[  406.823537][T18344] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #3: comm syz.8.5126: mark_inode_dirty error
[  406.872089][T18341] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5124: bg 0: block 65: padding at end of block bitmap is not set
[  406.877525][T18344] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.5126: Failed to acquire dquot type 0
[  406.890427][T18341] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.5124: Failed to acquire dquot type 0
[  406.900924][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.5126: corrupted inode contents
[  407.008506][T18344] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #16: comm syz.8.5126: mark_inode_dirty error
[  407.021321][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.5126: corrupted inode contents
[  407.040273][T17973] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.065213][T18344] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #16: comm syz.8.5126: mark_inode_dirty error
[  407.093109][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.5126: corrupted inode contents
[  407.107579][T18344] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  407.126062][T18344] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.5126: corrupted inode contents
[  407.138388][T18344] EXT4-fs error (device loop8): ext4_truncate:4666: inode #16: comm syz.8.5126: mark_inode_dirty error
[  407.156500][T18344] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  407.166106][T18344] EXT4-fs (loop8): 1 truncate cleaned up
[  407.180954][T18344] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.230328][T18344] cgroup: Invalid name
[  407.268520][T18364] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5133'.
[  407.278719][T18364] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  407.282663][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.286186][T18364] batman_adv: batadv0: Removing interface: batadv_slave_0
[  407.300269][ T5475] EXT4-fs error (device loop8): ext4_release_dquot:6969: comm kworker/u8:60: Failed to release dquot type 0
[  407.315197][ T5475] EXT4-fs error (device loop8): ext4_release_dquot:6969: comm kworker/u8:60: Failed to release dquot type 1
[  407.315371][T18364] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  407.334267][T18364] batman_adv: batadv0: Removing interface: batadv_slave_1
[  407.509571][   T29] kauditd_printk_skb: 1758 callbacks suppressed
[  407.509589][   T29] audit: type=1400 audit(408.497:36107): avc:  denied  { map_create } for  pid=18372 comm="syz.6.5138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  407.534754][   T29] audit: type=1400 audit(408.497:36108): avc:  denied  { perfmon } for  pid=18372 comm="syz.6.5138" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  407.591620][   T29] audit: type=1400 audit(408.557:36109): avc:  denied  { create } for  pid=18373 comm="syz.7.5139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  407.611133][   T29] audit: type=1400 audit(408.557:36110): avc:  denied  { map_read map_write } for  pid=18372 comm="syz.6.5138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  407.630633][   T29] audit: type=1400 audit(408.557:36111): avc:  denied  { map } for  pid=18373 comm="syz.7.5139" path="socket:[60100]" dev="sockfs" ino=60100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  407.653501][   T29] audit: type=1400 audit(408.557:36112): avc:  denied  { read } for  pid=18373 comm="syz.7.5139" path="socket:[60100]" dev="sockfs" ino=60100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  407.676402][   T29] audit: type=1400 audit(408.567:36113): avc:  denied  { prog_load } for  pid=18372 comm="syz.6.5138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  407.695146][   T29] audit: type=1400 audit(408.567:36114): avc:  denied  { bpf } for  pid=18372 comm="syz.6.5138" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  407.715460][   T29] audit: type=1400 audit(408.567:36115): avc:  denied  { perfmon } for  pid=18372 comm="syz.6.5138" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  407.736119][   T29] audit: type=1400 audit(408.577:36116): avc:  denied  { read write } for  pid=12035 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  407.951482][T18388] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5145'.
[  407.967985][T18388] FAULT_INJECTION: forcing a failure.
[  407.967985][T18388] name failslab, interval 1, probability 0, space 0, times 0
[  407.980942][T18388] CPU: 1 UID: 0 PID: 18388 Comm: syz.6.5145 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  407.980988][T18388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  407.981001][T18388] Call Trace:
[  407.981007][T18388]  <TASK>
[  407.981015][T18388]  __dump_stack+0x1d/0x30
[  407.981125][T18388]  dump_stack_lvl+0xe8/0x140
[  407.981167][T18388]  dump_stack+0x15/0x1b
[  407.981184][T18388]  should_fail_ex+0x265/0x280
[  407.981204][T18388]  should_failslab+0x8c/0xb0
[  407.981233][T18388]  kmem_cache_alloc_node_noprof+0x57/0x320
[  407.981296][T18388]  ? __alloc_skb+0x101/0x320
[  407.981334][T18388]  __alloc_skb+0x101/0x320
[  407.981365][T18388]  netlink_ack+0xfd/0x500
[  407.981391][T18388]  netlink_rcv_skb+0x192/0x220
[  407.981476][T18388]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  407.981512][T18388]  rtnetlink_rcv+0x1c/0x30
[  407.981541][T18388]  netlink_unicast+0x5c0/0x690
[  407.981584][T18388]  netlink_sendmsg+0x58b/0x6b0
[  407.981614][T18388]  ? __pfx_netlink_sendmsg+0x10/0x10
[  407.981690][T18388]  __sock_sendmsg+0x145/0x180
[  407.981723][T18388]  ____sys_sendmsg+0x31e/0x4e0
[  407.981752][T18388]  ___sys_sendmsg+0x17b/0x1d0
[  407.981853][T18388]  __x64_sys_sendmsg+0xd4/0x160
[  407.981885][T18388]  x64_sys_call+0x191e/0x2ff0
[  407.981912][T18388]  do_syscall_64+0xd2/0x200
[  407.982106][T18388]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  407.982139][T18388]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  407.982167][T18388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.982194][T18388] RIP: 0033:0x7fbfa4b8ebe9
[  407.982213][T18388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.982267][T18388] RSP: 002b:00007fbfa35ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  407.982287][T18388] RAX: ffffffffffffffda RBX: 00007fbfa4db5fa0 RCX: 00007fbfa4b8ebe9
[  407.982303][T18388] RDX: 0000000004000c00 RSI: 0000200000000300 RDI: 0000000000000003
[  407.982316][T18388] RBP: 00007fbfa35ef090 R08: 0000000000000000 R09: 0000000000000000
[  407.982327][T18388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.982338][T18388] R13: 00007fbfa4db6038 R14: 00007fbfa4db5fa0 R15: 00007fff59e08af8
[  407.982357][T18388]  </TASK>
[  408.339907][T18398] loop6: detected capacity change from 0 to 2048
[  408.381888][T18398]  loop6: p2 p3 p7
[  408.461880][T18405] loop1: detected capacity change from 0 to 1024
[  408.470809][T18405] EXT4-fs: inline encryption not supported
[  408.476792][T18405] EXT4-fs: Ignoring removed i_version option
[  408.594254][T18405] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.456535][T18418] loop6: detected capacity change from 0 to 1024
[  409.465347][T18418] EXT4-fs: inline encryption not supported
[  409.471238][T18418] EXT4-fs: Ignoring removed i_version option
[  409.562233][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.656826][T18413] netlink: 200 bytes leftover after parsing attributes in process `syz.8.5150'.
[  409.787024][T18418] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.912795][T18427] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5156'.
[  410.029982][T17973] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.474003][T18450] netlink: 'syz.1.5165': attribute type 5 has an invalid length.
[  410.481830][T18450] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5165'.
[  410.521265][T18450] netlink: 'syz.1.5165': attribute type 8 has an invalid length.
[  410.586024][T18450] loop1: detected capacity change from 0 to 512
[  410.870457][T18450] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  410.903760][T18450] EXT4-fs (loop1): mount failed
[  411.479449][T18478] loop1: detected capacity change from 0 to 1024
[  411.496147][T18478] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  411.505964][T18478] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  411.528440][T18478] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  411.549150][T18478] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.5176: iget: special inode unallocated
[  411.562787][T18478] EXT4-fs (loop1): no journal found
[  411.568108][T18478] EXT4-fs (loop1): can't get journal size
[  411.582335][T18478] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  411.603680][T18478] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.5176: path /495/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  411.636288][T18485] netlink: 'syz.6.5179': attribute type 5 has an invalid length.
[  411.644171][T18485] netlink: 44 bytes leftover after parsing attributes in process `syz.6.5179'.
[  411.665882][T18488] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5181'.
[  411.692473][T18489] netlink: 'syz.6.5179': attribute type 8 has an invalid length.
[  411.711478][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.727733][T18485] loop6: detected capacity change from 0 to 512
[  411.770392][T18485] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  411.808842][T18485] EXT4-fs (loop6): mount failed
[  411.872745][T18499] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5184'.
[  411.892105][T18499] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5184'.
[  412.226149][T18509] 9pnet_fd: Insufficient options for proto=fd
[  412.369512][T18484] loop8: detected capacity change from 0 to 1024
[  412.402462][T18484] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.454769][T18523] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5194'.
[  412.562679][   T29] kauditd_printk_skb: 1040 callbacks suppressed
[  412.562698][   T29] audit: type=1400 audit(413.537:37153): avc:  denied  { read write } for  pid=13439 comm="syz-executor" name="loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.592940][   T29] audit: type=1400 audit(413.537:37154): avc:  denied  { open } for  pid=13439 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.616680][   T29] audit: type=1400 audit(413.537:37155): avc:  denied  { ioctl } for  pid=13439 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.760999][   T29] audit: type=1400 audit(413.627:37156): avc:  denied  { read write } for  pid=17973 comm="syz-executor" name="loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.784872][   T29] audit: type=1400 audit(413.627:37157): avc:  denied  { open } for  pid=17973 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.808647][   T29] audit: type=1400 audit(413.637:37158): avc:  denied  { ioctl } for  pid=17973 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.833846][   T29] audit: type=1400 audit(413.647:37159): avc:  denied  { read write } for  pid=17589 comm="syz-executor" name="loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.836821][T18537] netlink: 'syz.7.5196': attribute type 13 has an invalid length.
[  412.857626][   T29] audit: type=1400 audit(413.647:37160): avc:  denied  { open } for  pid=17589 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.857729][   T29] audit: type=1400 audit(413.647:37161): avc:  denied  { ioctl } for  pid=17589 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=109 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  412.865562][T18537] netlink: 'syz.7.5196': attribute type 17 has an invalid length.
[  412.889231][   T29] audit: type=1400 audit(413.657:37162): avc:  denied  { create } for  pid=18528 comm="syz.7.5196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  413.088447][T18537] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  413.089068][T18544] 9pnet_fd: Insufficient options for proto=fd
[  413.255459][T18551] netlink: 'syz.1.5205': attribute type 5 has an invalid length.
[  413.263286][T18551] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5205'.
[  413.287658][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.305437][T18551] netlink: 'syz.1.5205': attribute type 8 has an invalid length.
[  413.346016][T18551] loop1: detected capacity change from 0 to 512
[  413.402562][T18551] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  413.472397][T18551] EXT4-fs (loop1): mount failed
[  413.840740][T18571] loop7: detected capacity change from 0 to 1024
[  413.849172][T18571] EXT4-fs: inline encryption not supported
[  413.855115][T18571] EXT4-fs: Ignoring removed i_version option
[  413.921718][T18571] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.186434][T18575] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5212'.
[  414.294822][T18588] loop6: detected capacity change from 0 to 1024
[  414.303279][T18588] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  414.313162][T18588] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  414.323672][T18588] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  414.333903][T18588] EXT4-fs error (device loop6): ext4_get_journal_inode:5796: inode #32: comm syz.6.5217: iget: special inode unallocated
[  414.364689][T18588] EXT4-fs (loop6): no journal found
[  414.370041][T18588] EXT4-fs (loop6): can't get journal size
[  414.378007][T18588] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  414.397450][T18588] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.6.5217: path /32/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  414.429950][T18594] loop1: detected capacity change from 0 to 128
[  414.437458][T18594] vfat: Unknown parameter '00000000000000000000005'
[  414.510030][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.546478][T17973] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.640214][T18605] FAULT_INJECTION: forcing a failure.
[  414.640214][T18605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.653368][T18605] CPU: 0 UID: 0 PID: 18605 Comm: syz.8.5223 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  414.653399][T18605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  414.653454][T18605] Call Trace:
[  414.653460][T18605]  <TASK>
[  414.653466][T18605]  __dump_stack+0x1d/0x30
[  414.653489][T18605]  dump_stack_lvl+0xe8/0x140
[  414.653512][T18605]  dump_stack+0x15/0x1b
[  414.653531][T18605]  should_fail_ex+0x265/0x280
[  414.653555][T18605]  should_fail+0xb/0x20
[  414.653634][T18605]  should_fail_usercopy+0x1a/0x20
[  414.653664][T18605]  _copy_from_user+0x1c/0xb0
[  414.653694][T18605]  ___sys_sendmsg+0xc1/0x1d0
[  414.653792][T18605]  __x64_sys_sendmsg+0xd4/0x160
[  414.653826][T18605]  x64_sys_call+0x191e/0x2ff0
[  414.653853][T18605]  do_syscall_64+0xd2/0x200
[  414.653887][T18605]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  414.653953][T18605]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  414.653984][T18605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.654042][T18605] RIP: 0033:0x7f648a47ebe9
[  414.654063][T18605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.654087][T18605] RSP: 002b:00007f6488ee7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  414.654187][T18605] RAX: ffffffffffffffda RBX: 00007f648a6a5fa0 RCX: 00007f648a47ebe9
[  414.654200][T18605] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000005
[  414.654214][T18605] RBP: 00007f6488ee7090 R08: 0000000000000000 R09: 0000000000000000
[  414.654230][T18605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.654303][T18605] R13: 00007f648a6a6038 R14: 00007f648a6a5fa0 R15: 00007fffd63e7278
[  414.654328][T18605]  </TASK>
[  414.724933][T18607] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5221'.
[  414.725512][T18608] netlink: 'syz.8.5224': attribute type 5 has an invalid length.
[  414.768418][T18610] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5225'.
[  414.772685][T18608] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5224'.
[  414.851002][T18612] netlink: 'syz.8.5224': attribute type 8 has an invalid length.
[  414.919011][T18607] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  414.965758][T18608] loop8: detected capacity change from 0 to 512
[  414.976781][T18607] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.011811][T18608] EXT4-fs warning (device loop8): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  415.041274][T18607] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.055775][T18608] EXT4-fs (loop8): mount failed
[  415.117091][T18607] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.183682][ T5473] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  415.198094][ T3398] hid_parser_main: 17 callbacks suppressed
[  415.198112][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.205904][ T5473] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  415.211468][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.211497][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.223159][ T5473] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  415.227205][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.235356][ T5473] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  415.242894][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.265837][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.265866][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.265889][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.265962][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.265987][ T3398] hid-generic 0007:0101:0006.0003: unknown main item tag 0x0
[  415.338628][ T3398] hid-generic 0007:0101:0006.0003: hidraw0: <UNKNOWN> HID vffffff.3b Device [syz0] on syz1
[  415.650550][T18632] netlink: 200 bytes leftover after parsing attributes in process `syz.1.5234'.
[  415.663349][T18639] loop8: detected capacity change from 0 to 1024
[  415.690280][T18639] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  415.700195][T18639] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  415.723324][T18639] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  415.735239][T18639] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #32: comm syz.8.5236: iget: special inode unallocated
[  415.751018][T18639] EXT4-fs (loop8): no journal found
[  415.756256][T18639] EXT4-fs (loop8): can't get journal size
[  415.781227][T18639] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  415.795901][T18652] FAULT_INJECTION: forcing a failure.
[  415.795901][T18652] name failslab, interval 1, probability 0, space 0, times 0
[  415.808641][T18652] CPU: 0 UID: 0 PID: 18652 Comm: syz.7.5239 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  415.808752][T18652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  415.808769][T18652] Call Trace:
[  415.808777][T18652]  <TASK>
[  415.808786][T18652]  __dump_stack+0x1d/0x30
[  415.808811][T18652]  dump_stack_lvl+0xe8/0x140
[  415.808867][T18652]  dump_stack+0x15/0x1b
[  415.808883][T18652]  should_fail_ex+0x265/0x280
[  415.808905][T18652]  should_failslab+0x8c/0xb0
[  415.809062][T18652]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  415.809096][T18652]  ? __d_alloc+0x3d/0x340
[  415.809178][T18652]  __d_alloc+0x3d/0x340
[  415.809250][T18652]  ? mpol_shared_policy_init+0xbd/0x4c0
[  415.809288][T18652]  d_alloc_pseudo+0x1e/0x80
[  415.809323][T18652]  alloc_file_pseudo+0x71/0x160
[  415.809357][T18652]  __shmem_file_setup+0x1de/0x210
[  415.809408][T18652]  shmem_file_setup+0x3b/0x50
[  415.809510][T18652]  __se_sys_memfd_create+0x2c3/0x590
[  415.809560][T18652]  __x64_sys_memfd_create+0x31/0x40
[  415.809601][T18652]  x64_sys_call+0x2abe/0x2ff0
[  415.809625][T18652]  do_syscall_64+0xd2/0x200
[  415.809681][T18652]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  415.809768][T18652]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  415.809849][T18652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.809871][T18652] RIP: 0033:0x7ff7752febe9
[  415.809886][T18652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.809906][T18652] RSP: 002b:00007ff773d5ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  415.809978][T18652] RAX: ffffffffffffffda RBX: 00000000000004f2 RCX: 00007ff7752febe9
[  415.809994][T18652] RDX: 00007ff773d5eef0 RSI: 0000000000000000 RDI: 00007ff7753827e8
[  415.810011][T18652] RBP: 0000200000000600 R08: 00007ff773d5ebb7 R09: 00007ff773d5ee40
[  415.810027][T18652] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  415.810039][T18652] R13: 00007ff773d5eef0 R14: 00007ff773d5eeb0 R15: 00002000000005c0
[  415.810073][T18652]  </TASK>
[  416.086809][T18639] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.8.5236: path /320/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  416.133717][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.184200][T18660] loop1: detected capacity change from 0 to 1024
[  416.222922][T18660] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  416.232778][T18660] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  416.274362][T18660] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  416.309401][T18660] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.5242: iget: special inode unallocated
[  416.338158][T18660] EXT4-fs (loop1): no journal found
[  416.343416][T18660] EXT4-fs (loop1): can't get journal size
[  416.370359][T18660] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  416.407973][T18670] loop6: detected capacity change from 0 to 512
[  416.427529][T18660] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.5242: path /512/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  416.473663][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.489550][T18670] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.561520][T17973] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.574729][T18683] loop1: detected capacity change from 0 to 512
[  416.612462][T18689] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5253'.
[  416.629353][T18683] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.702499][T12035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.210183][T18728] FAULT_INJECTION: forcing a failure.
[  417.210183][T18728] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  417.223452][T18728] CPU: 1 UID: 0 PID: 18728 Comm: syz.1.5269 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  417.223562][T18728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  417.223575][T18728] Call Trace:
[  417.223581][T18728]  <TASK>
[  417.223588][T18728]  __dump_stack+0x1d/0x30
[  417.223611][T18728]  dump_stack_lvl+0xe8/0x140
[  417.223629][T18728]  dump_stack+0x15/0x1b
[  417.223646][T18728]  should_fail_ex+0x265/0x280
[  417.223667][T18728]  should_fail+0xb/0x20
[  417.223755][T18728]  should_fail_usercopy+0x1a/0x20
[  417.223826][T18728]  _copy_from_iter+0xcf/0xe40
[  417.223858][T18728]  ? __build_skb_around+0x1a0/0x200
[  417.223960][T18728]  ? __alloc_skb+0x223/0x320
[  417.224000][T18728]  netlink_sendmsg+0x471/0x6b0
[  417.224025][T18728]  ? __pfx_netlink_sendmsg+0x10/0x10
[  417.224132][T18728]  __sock_sendmsg+0x145/0x180
[  417.224167][T18728]  ____sys_sendmsg+0x31e/0x4e0
[  417.224203][T18728]  ___sys_sendmsg+0x17b/0x1d0
[  417.224248][T18728]  __x64_sys_sendmsg+0xd4/0x160
[  417.224328][T18728]  x64_sys_call+0x191e/0x2ff0
[  417.224357][T18728]  do_syscall_64+0xd2/0x200
[  417.224388][T18728]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  417.224419][T18728]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  417.224449][T18728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.224517][T18728] RIP: 0033:0x7fb43eb9ebe9
[  417.224534][T18728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.224556][T18728] RSP: 002b:00007fb43d607038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  417.224575][T18728] RAX: ffffffffffffffda RBX: 00007fb43edc5fa0 RCX: 00007fb43eb9ebe9
[  417.224588][T18728] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000008
[  417.224708][T18728] RBP: 00007fb43d607090 R08: 0000000000000000 R09: 0000000000000000
[  417.224725][T18728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.224769][T18728] R13: 00007fb43edc6038 R14: 00007fb43edc5fa0 R15: 00007ffcc8922958
[  417.224792][T18728]  </TASK>
[  417.568768][   T29] kauditd_printk_skb: 1588 callbacks suppressed
[  417.568785][   T29] audit: type=1400 audit(418.558:38747): avc:  denied  { map_read map_write } for  pid=18739 comm="syz.9.5275" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  417.632326][T18741] 9pnet: Could not find request transport: 0xffffffffffffffff
[  417.648528][   T29] audit: type=1400 audit(418.558:38748): avc:  denied  { read write } for  pid=17973 comm="syz-executor" name="loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  417.672333][   T29] audit: type=1400 audit(418.558:38749): avc:  denied  { read write open } for  pid=17973 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  417.696963][   T29] audit: type=1400 audit(418.558:38750): avc:  denied  { ioctl } for  pid=17973 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  417.722222][   T29] audit: type=1400 audit(418.558:38751): avc:  denied  { prog_load } for  pid=18738 comm="syz.1.5274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  417.740918][   T29] audit: type=1400 audit(418.558:38752): avc:  denied  { bpf } for  pid=18738 comm="syz.1.5274" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  417.761069][   T29] audit: type=1400 audit(418.578:38753): avc:  denied  { prog_load } for  pid=18738 comm="syz.1.5274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  417.762408][T18746] loop7: detected capacity change from 0 to 1024
[  417.779848][   T29] audit: type=1400 audit(418.578:38754): avc:  denied  { bpf } for  pid=18738 comm="syz.1.5274" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  417.806311][   T29] audit: type=1400 audit(418.578:38755): avc:  denied  { perfmon } for  pid=18738 comm="syz.1.5274" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  417.812332][T18746] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  417.826868][   T29] audit: type=1400 audit(418.578:38756): avc:  denied  { bpf } for  pid=18738 comm="syz.1.5274" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  417.836699][T18746] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  417.876976][T18756] loop8: detected capacity change from 0 to 1024
[  417.886076][T18756] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  417.895985][T18756] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  417.910265][T18756] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  417.915977][T18755] 9pnet: Could not find request transport: 0xffffffffffffffff
[  417.921708][T18746] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  417.937932][T18756] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #32: comm syz.8.5280: iget: special inode unallocated
[  417.945202][T18758] netlink: 'syz.6.5277': attribute type 8 has an invalid length.
[  417.960126][T18749] netlink: 'syz.6.5277': attribute type 5 has an invalid length.
[  417.968160][T18749] netlink: 44 bytes leftover after parsing attributes in process `syz.6.5277'.
[  417.978741][T18756] EXT4-fs (loop8): no journal found
[  417.984059][T18756] EXT4-fs (loop8): can't get journal size
[  417.989936][T18746] EXT4-fs error (device loop7): ext4_get_journal_inode:5796: inode #32: comm syz.7.5276: iget: special inode unallocated
[  418.005642][T18749] loop6: detected capacity change from 0 to 512
[  418.021125][T18746] EXT4-fs (loop7): no journal found
[  418.021335][T18756] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  418.026427][T18746] EXT4-fs (loop7): can't get journal size
[  418.050427][T18746] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  418.064220][T18752] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.8.5280: path /325/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  418.088852][T18749] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  418.110855][T18749] EXT4-fs (loop6): mount failed
[  418.127003][T18746] EXT4-fs error (device loop7): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.7.5276: path /391/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  418.158593][T13602] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.229039][T13439] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.287312][T18771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5284'.
[  418.327269][T18779] loop7: detected capacity change from 0 to 164
[  418.336075][T18779] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  418.360624][T18780] ipvlan2: entered promiscuous mode
[  418.360729][ T5475] ==================================================================
[  418.373973][ T5475] BUG: KCSAN: data-race in ipvlan_open / is_upper_ndev_bond_master_filter
[  418.374485][T18780] bridge0: port 1(ipvlan2) entered blocking state
[  418.382519][ T5475] 
[  418.382528][ T5475] read-write to 0xffff8881099f70b0 of 4 bytes by task 18780 on cpu 1:
[  418.382548][ T5475]  ipvlan_open+0x72/0xf0
[  418.382583][ T5475]  __dev_open+0x2d2/0x530
[  418.382606][ T5475]  __dev_change_flags+0x163/0x400
[  418.382634][ T5475]  rtnl_newlink_create+0x36b/0x620
[  418.389227][T18780] bridge0: port 1(ipvlan2) entered disabled state
[  418.391476][ T5475]  rtnl_newlink+0xf29/0x12d0
[  418.400129][T18780] ipvlan2: entered allmulticast mode
[  418.403860][ T5475]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  418.408392][T18780] bridge0: entered allmulticast mode
[  418.413378][ T5475]  netlink_rcv_skb+0x120/0x220
[  418.413405][ T5475]  rtnetlink_rcv+0x1c/0x30
[  418.454167][ T5475]  netlink_unicast+0x5c0/0x690
[  418.459053][ T5475]  netlink_sendmsg+0x58b/0x6b0
[  418.463867][ T5475]  __sock_sendmsg+0x145/0x180
[  418.468560][ T5475]  ____sys_sendmsg+0x31e/0x4e0
[  418.473351][ T5475]  ___sys_sendmsg+0x17b/0x1d0
[  418.478037][ T5475]  __x64_sys_sendmsg+0xd4/0x160
[  418.482902][ T5475]  x64_sys_call+0x191e/0x2ff0
[  418.487644][ T5475]  do_syscall_64+0xd2/0x200
[  418.492184][ T5475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.498090][ T5475] 
[  418.500426][ T5475] read to 0xffff8881099f70b0 of 4 bytes by task 5475 on cpu 0:
[  418.507979][ T5475]  is_upper_ndev_bond_master_filter+0x2b/0xb0
[  418.514070][ T5475]  ib_enum_roce_netdev+0x11f/0x1d0
[  418.519191][ T5475]  ib_enum_all_roce_netdevs+0x89/0x100
[  418.524659][ T5475]  netdevice_event_work_handler+0x67/0x3d0
[  418.530477][ T5475]  process_scheduled_works+0x4cb/0x9d0
[  418.535957][ T5475]  worker_thread+0x582/0x770
[  418.540565][ T5475]  kthread+0x489/0x510
[  418.544635][ T5475]  ret_from_fork+0xda/0x150
[  418.549142][ T5475]  ret_from_fork_asm+0x1a/0x30
[  418.553913][ T5475] 
[  418.556338][ T5475] value changed: 0x00001002 -> 0x00001183
[  418.562054][ T5475] 
[  418.564373][ T5475] Reported by Kernel Concurrency Sanitizer on:
[  418.570522][ T5475] CPU: 0 UID: 0 PID: 5475 Comm: kworker/u8:60 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  418.581461][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  418.591518][ T5475] Workqueue: gid-cache-wq netdevice_event_work_handler
[  418.598390][ T5475] ==================================================================
[  418.613299][T18780] ipvlan2: left allmulticast mode
[  418.618407][T18780] bridge0: left allmulticast mode