last executing test programs:

3m28.237411283s ago: executing program 1 (id=9):
iopl(0x3)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x400)
io_uring_register$IORING_REGISTER_FILES2(0xffffffffffffffff, 0xd, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010200000000000000020000000900010073797a300000000040000000030a01010000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002"], 0xb4}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r4}, 0x10)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x18)
utimes(0x0, 0x0)
sendmsg$SMC_PNETID_ADD(r5, 0x0, 0xc800)
sendmsg$SMC_PNETID_DEL(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xe, &(0x7f0000000740)={0x0, 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[0x3]}, 0x20)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r7=>0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_procs(r8, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r9, r9, 0x0, 0x4)
readv(r9, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
r10 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r7, @ANYBLOB="00000000100000001c001a80180002"], 0x44}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)

3m27.794618591s ago: executing program 1 (id=10):
r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff}, 0x13f, 0x3}}, 0x20)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000002500)={{0x2, 0x4e21, @multicast1}, {0x306, @multicast}, 0x1c, {0x2, 0x4e21, @remote}, 'veth0\x00'})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r3, &(0x7f0000002280)=[{&(0x7f0000002180)=""/18, 0x12}, {&(0x7f0000002780)=""/133, 0x85}, {&(0x7f0000002840)=""/231, 0xe7}], 0x3, 0x10001, 0x7)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000040), r1}}, 0x18)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)

3m27.722689552s ago: executing program 1 (id=11):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9f6b010018000000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000080000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000030000000000000c00000000100000000000000900000000000000000000000205000000020000000000000a02"], 0x0, 0x96, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0xfffffffffffffd01, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="0000000000669100000010000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
io_setup(0x7f, &(0x7f0000000100))
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000680)=@mangle={'mangle\x00', 0x64, 0x6, 0x5b8, 0x0, 0x0, 0x1d0, 0x0, 0x1d0, 0x530, 0x530, 0x530, 0x530, 0x530, 0x6, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @multicast2}, [], [], 'vcan0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa8, 0xe8, 0x0, {0x7a00000000000000}}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x9}}}, {{@ipv6={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'syzkaller1\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@private0}}}, {{@ipv6={@rand_addr=' \x01\x00', @mcast2, [], [], 'veth1_to_batadv\x00', 'vlan1\x00'}, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@inet=@ecn={{0x28}}, @common=@ipv6header={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@empty}}}, {{@ipv6={@private0, @mcast2, [], [], 'veth1_to_team\x00', 'veth0_macvtap\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x618)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000019c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a18329bd70000000000005"], 0x28}}, 0x0)
removexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000340)=@known='trusted.overlay.opaque\x00')
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r9, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e23, @empty}, 0x0, 0x3, 0x3, 0x2}}, 0x26)
recvmmsg(r1, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002bc0)=""/4082, 0x1020}, 0x80181}], 0x400000000000039, 0x10000, 0x0)
ftruncate(r7, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

3m26.769194519s ago: executing program 1 (id=21):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x10c42, &(0x7f0000000d80)=ANY=[], 0x1, 0x28b, &(0x7f0000001d80)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0x0)
r3 = socket$phonet(0x23, 0x2, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r4=>0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r5, 0x107, 0x18, &(0x7f0000000800)={r4, 0x1, 0x6}, 0x10)
sendto$packet(r5, &(0x7f0000000040)="02030007ffff0000000045", 0xff4b, 0x4000050, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x1, 0x0, 0x0, 0x5, 0x0, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_tcp(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="000000000000eeffb703000000000000850040000c000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)=r7}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r2, &(0x7f0000000780)}, 0x20)
r8 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r8, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
request_key(&(0x7f0000000040)='cifs.spnego\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)='vfat\x00', r8)

3m26.422528336s ago: executing program 1 (id=22):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r2, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r3, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)={0x38, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x80}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0xc082}, 0x4008000)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan0\x00', <r5=>0x0})
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffb, 0x0, 0xffffffff}, 0x10)
recvmmsg(r6, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000080)=""/38, 0x26}], 0x1}, 0x2174eda0}], 0x1, 0x1, &(0x7f0000000580)={0x77359400})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000240)={'wpan0\x00'})
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r10=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000780)={0x40, r8, 0x5eae78d9c54e9d3f, 0x0, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_KEY={0x24, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "403a050c5baee2004ef2b6d713459a7a"}, @NL802154_KEY_ATTR_ID={0x4}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xfd}]}]}, 0x40}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000880)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r11, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="8b3320000000000000001500000008000300", @ANYRES32=0x0, @ANYBLOB="0c00dcd94c6e07fcffffff0000000010001d800c00008008000d8004006ea3"], 0x38}}, 0x0)

3m25.916186255s ago: executing program 1 (id=28):
r0 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)='\x00', 0x1}], 0x1, &(0x7f0000000b40)=ANY=[@ANYRESOCT=0x0, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRES64=r0], 0xd0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)="bc", 0x1}, {&(0x7f00000002c0)="52da1f3bf0023b4afbe3dfeee7f7430a7d406ff0b4", 0x15}], 0x2}}], 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
fcntl$addseals(r1, 0x409, 0x5)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500060008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
r5 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000100), &(0x7f0000000240)=0x30)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r7)
sendmsg$TIPC_NL_MON_SET(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002a40)={0x20, r8, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x7, 0x1, 0x8}]}]}, 0x20}}, 0x0)
close(r0)
io_setup(0x8b, &(0x7f0000000000))

3m25.913924485s ago: executing program 32 (id=28):
r0 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)='\x00', 0x1}], 0x1, &(0x7f0000000b40)=ANY=[@ANYRESOCT=0x0, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRES64=r0], 0xd0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)="bc", 0x1}, {&(0x7f00000002c0)="52da1f3bf0023b4afbe3dfeee7f7430a7d406ff0b4", 0x15}], 0x2}}], 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
fcntl$addseals(r1, 0x409, 0x5)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500060008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
r5 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000100), &(0x7f0000000240)=0x30)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r7)
sendmsg$TIPC_NL_MON_SET(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002a40)={0x20, r8, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x7, 0x1, 0x8}]}]}, 0x20}}, 0x0)
close(r0)
io_setup(0x8b, &(0x7f0000000000))

1m10.371389874s ago: executing program 2 (id=261):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='memory.events\x00', 0x275a, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)="ff", 0x1}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, 0x0, &(0x7f0000000080))

1m10.283702925s ago: executing program 2 (id=263):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000000040)={&(0x7f0000000080)=""/56, 0x38, 0x11, 0x8})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000500)='./file0\x00', 0xd4000121)
setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
arch_prctl$ARCH_GET_UNTAG_MASK(0x4001, &(0x7f0000000000))

1m10.232138667s ago: executing program 2 (id=266):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000007"], 0x48)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, 0x0, 0x0)
socket(0x2000000000000021, 0x6, 0x10000000000002)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYRES64, @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x2fd, 0xffff, 0x101, 0x300}})
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r6 = socket(0x1, 0x803, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x8, 0x5, 0x7ff, 0x9, 0x1, 0xffffffffffffffff, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r9, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="03ce90caee629a110d7b7073", @ANYRES16=r9, @ANYBLOB="270e000000000000000004070200"], 0x14}, 0x1, 0x40030000000000}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000001400b59500000000000000000a400000", @ANYRES32=r11, @ANYBLOB="14000200ff02000000000000000000000000000108000800e107"], 0x48}}, 0x0)

1m10.202040477s ago: executing program 2 (id=269):
socket$inet6(0xa, 0x3, 0x8) (async)
r0 = socket$inet6(0xa, 0x3, 0x8)
sendmmsg$inet6(r0, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}, 0x1c, 0x0, 0x0, &(0x7f00000004c0)=ANY=[], 0x28}}], 0x1, 0x20000000)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000950a82f353a73ee4572b53b4e43dac8c7138593723e919b0b1384d81ba93a098e98e17b6a5bab6ec54ed4e9e73a422dbe4778ef56dd2a57bacf046aae6a5ae9da86e0f266015dc382f8e1bfa4e00a4d260c0607149a50af021c5193ac79f6a653bb39b152d04ac500d7a8c4468aa0ab38d214e97b13b18"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000950a82f353a73ee4572b53b4e43dac8c7138593723e919b0b1384d81ba93a098e98e17b6a5bab6ec54ed4e9e73a422dbe4778ef56dd2a57bacf046aae6a5ae9da86e0f266015dc382f8e1bfa4e00a4d260c0607149a50af021c5193ac79f6a653bb39b152d04ac500d7a8c4468aa0ab38d214e97b13b18"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r3}, 0x9)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f0000000140)={0x5, 0x1, 0xc, 0x2, @vifc_lcl_addr=@rand_addr=0x64010102, @broadcast}, 0x10)
setsockopt$MRT_FLUSH(r4, 0x0, 0xd4, &(0x7f0000000040)=0x8, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82) (async)
r6 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
r7 = dup(r6)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x4, 0xf, 0x0, 0x2, 0x0}) (async)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x4, 0xf, 0x0, 0x2, 0x0})
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) (async)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r1, &(0x7f0000000140)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, 'M', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1258438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) (async)
r8 = syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1258438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRES64=r1, @ANYRESHEX=r9, @ANYRES8=r8], 0x48)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000980)=[{&(0x7f0000002380)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/63, 0x3f}, {&(0x7f00000006c0)=""/213, 0xd5}, {&(0x7f0000000480)=""/1, 0x1}, {&(0x7f00000008c0)=""/145, 0x91}], 0x5)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r10}, &(0x7f0000000580), &(0x7f0000000540)}, 0x20)
r11 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r11, &(0x7f0000000180)={0x7, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020100090a000000007fffffff0000000200100000e9000000e9000000000000030005000000000002000000ac1414000000000000000000030006000000000002"], 0x50}}, 0x0)
sendmmsg(r11, &(0x7f0000000180), 0x40000000000007b, 0x4004) (async)
sendmmsg(r11, &(0x7f0000000180), 0x40000000000007b, 0x4004)

1m9.789535564s ago: executing program 2 (id=286):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r2, 0x0, 0xcc, &(0x7f0000000040)={@initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x20}, 0x0, "fd63e5a27c619f7a3bdeb2c30d4b0b2f209b079126c4ec1250fd544fb61e8367", 0x7fffffff, 0x0, 0x1, 0xa}, 0x3c)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

1m8.959643599s ago: executing program 2 (id=303):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000007"], 0x48)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, 0x0, 0x0)
socket(0x2000000000000021, 0x6, 0x10000000000002)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYRES64, @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x2fd, 0xffff, 0x101, 0x300}})
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r6 = socket(0x1, 0x803, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x8, 0x5, 0x7ff, 0x9, 0x1, 0xffffffffffffffff, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r9, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="03ce90caee629a110d7b7073", @ANYRES16=r9, @ANYBLOB="270e000000000000000004070200"], 0x14}, 0x1, 0x40030000000000}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000001400b59500000000000000000a400000", @ANYRES32=r11, @ANYBLOB="14000200ff02000000000000000000000000000108000800e107"], 0x48}}, 0x0)

1m8.92601552s ago: executing program 33 (id=303):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000007"], 0x48)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, 0x0, 0x0)
socket(0x2000000000000021, 0x6, 0x10000000000002)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYRES64, @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x2fd, 0xffff, 0x101, 0x300}})
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r6 = socket(0x1, 0x803, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x8, 0x5, 0x7ff, 0x9, 0x1, 0xffffffffffffffff, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r9, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="03ce90caee629a110d7b7073", @ANYRES16=r9, @ANYBLOB="270e000000000000000004070200"], 0x14}, 0x1, 0x40030000000000}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000001400b59500000000000000000a400000", @ANYRES32=r11, @ANYBLOB="14000200ff02000000000000000000000000000108000800e107"], 0x48}}, 0x0)

3.837714331s ago: executing program 5 (id=1625):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r2=>0x0})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2274, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$isdn_base(0x22, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x300, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$IMGETVERSION(r4, 0x80044944, &(0x7f0000001040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
unshare(0x24040000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000200000000000000000000009500000000000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3.711592613s ago: executing program 5 (id=1629):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r3, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000380)={'geneve1\x00', <r9=>0x0})
bind$packet(r8, &(0x7f0000000000)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @multicast}, 0x14)

2.856442019s ago: executing program 5 (id=1645):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000bfd50000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r6}, &(0x7f0000000180), &(0x7f00000001c0)=r5}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r7, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0x0, 0x0, 0x100000}, 0x20)

2.157056921s ago: executing program 6 (id=1656):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
futex(&(0x7f000000cffc)=0x1, 0x80, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000001bc0)={0xf2f, "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"})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bond_slave_1\x00', <r5=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000000)={r5, 0x11, 0x2, @broadcast}, 0x10)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000040)={r5, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2b}}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {}, {}, {0xd, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

1.812084997s ago: executing program 0 (id=1657):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9f6b010018000000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000080000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000030000000000000c000000001000000000000009000000000000000000000002050000000200000000"], 0x0, 0x96, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0xfffffffffffffd01, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="0000000000669100000010000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
io_setup(0x7f, &(0x7f0000000100))
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000680)=@mangle={'mangle\x00', 0x64, 0x6, 0x5b8, 0x0, 0x0, 0x1d0, 0x0, 0x1d0, 0x530, 0x530, 0x530, 0x530, 0x530, 0x6, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @multicast2}, [], [], 'vcan0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa8, 0xe8, 0x0, {0x7a00000000000000}}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x9}}}, {{@ipv6={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'syzkaller1\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@private0}}}, {{@ipv6={@rand_addr=' \x01\x00', @mcast2, [], [], 'veth1_to_batadv\x00', 'vlan1\x00'}, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@inet=@ecn={{0x28}}, @common=@ipv6header={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@empty}}}, {{@ipv6={@private0, @mcast2, [], [], 'veth1_to_team\x00', 'veth0_macvtap\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x618)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000019c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a18329bd70000000000005"], 0x28}}, 0x0)
removexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000340)=@known='trusted.overlay.opaque\x00')
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r9, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e23, @empty}, 0x0, 0x3, 0x3, 0x2}}, 0x26)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r1, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002bc0)=""/4082, 0x1020}, 0x80181}], 0x400000000000039, 0x10000, 0x0)
ftruncate(r7, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

1.770956118s ago: executing program 5 (id=1658):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000010380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000003000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021d88400000c0a01010000000000000000070000000900020073797a31000000003400038030000080080003400000"], 0x855c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = timerfd_create(0x0, 0x0)
read(r3, &(0x7f0000000380)=""/189, 0x8)
openat(0xffffffffffffff9c, 0x0, 0x2c040, 0x92)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x24f, &(0x7f0000000840)="$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")
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001fc0)={'wpan0\x00'})

1.66567996s ago: executing program 0 (id=1659):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
rename(0x0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x2)
write(r2, &(0x7f0000000480)='~', 0x1)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
write$UHID_CREATE2(r3, 0x0, 0x138)
shutdown(r2, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
clock_nanosleep(0x6, 0x0, &(0x7f0000000080)={0x77359400}, 0x0)

1.503982923s ago: executing program 0 (id=1660):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20008004)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0xfffd, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)

1.503731923s ago: executing program 0 (id=1661):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000640)=0x13)
poll(0x0, 0x0, 0x20000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000001600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000040002850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
inotify_init()
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000))
r3 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x400, 0x17e7b0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3, 0x7dd6576e}, 0x10020, 0x3fd, 0x200, 0x8, 0x40004, 0x7ff, 0x8}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000002085"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1fd)

1.405935255s ago: executing program 4 (id=1663):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000010380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000003000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021d88400000c0a01010000000000000000070000000900020073797a31000000003400038030000080080003400000000224000b80100001800c000100636f756e74657200100001800c000100636f756e746572000900010073797a30"], 0x855c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
read(r2, &(0x7f0000000380)=""/189, 0x8)
openat(0xffffffffffffff9c, 0x0, 0x2c040, 0x92)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x24f, &(0x7f0000000840)="$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")
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), 0xffffffffffffffff)

1.262494097s ago: executing program 6 (id=1665):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x7fff, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000200)=""/166}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x18)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8dedcb7907009875f37500e486dd6317ce6203c23c00b980000800009ff57b80000000000000000000002d00ac"], 0xfe1b)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="851000000000181000000000", @ANYRES32, @ANYBLOB="0000000000000000950000000000000045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='..\x00')
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080))
r6 = syz_clone(0x88100680, &(0x7f00000000c0)="cb42408fbc362cba7cdea591ad2e392fd1911c2700a7660f3064e977c55665c6ff2b", 0x22, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f00000004c0)="08a91791379d9c740fe29046df6aed2f83e15c2aa8f0e14f0a07d5aa51fecc9f9d15c70cd0de1c163e78ec1c95d90123a3f2973d29ad24548a1ec7f7d6c0eb383f32ce21894c345a74fee89175d3ab2d570c2d4463626c422075a017eeee3261993e28863ace49cf24438b7c06616f318c2d000c161a15127d703ee2efcac6bc71eb9120ea39afb2e54c313dae361b9b566ec25a5b8502fc75cd00aa6ee4e60c743736f5086b5f513f27aa0ccdf149dc82")
sched_setscheduler(r6, 0x0, &(0x7f0000000640)=0x7)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r7, 0x0, 0xf7}, 0x18)
io_setup(0x2, &(0x7f0000002400)=<r8=>0x0)
socket$igmp(0x2, 0x3, 0x2)
socket(0x10, 0x3, 0x6)
io_submit(r8, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

1.14695736s ago: executing program 6 (id=1669):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000280)={@initdev, @dev}, &(0x7f00000002c0)=0xc)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00'}, 0x10)
r3 = semget$private(0x0, 0x3, 0x12a)
semop(r3, &(0x7f0000000080)=[{0x1, 0x800, 0x1800}, {0x0, 0x9}, {0x4, 0x1, 0x800}, {0x0, 0xb, 0x800}, {0x2, 0x3a88}], 0x5)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0x3fffffffffffe52, 0x10003, '\x00', [{}, {0xffffffff}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01040000000000000000010000000000000008410000004c0018"], 0x68}}, 0x0)
sendmsg$TIPC_CMD_GET_NETID(r2, &(0x7f00000007c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f00000001c0)={0x1c, r6, 0x20, 0x70bd2d, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}}, 0x4000000)

1.011879452s ago: executing program 3 (id=1673):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@ipv4_newroute={0x38, 0x18, 0x35f32a6dfa748ddf, 0x0, 0x0, {0x2, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1000}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_VXLAN_GBP={0x8, 0x1, 0xffffffc0}}}}]}, 0x38}}, 0x80)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000080)=0x8)
ioctl$PPPIOCSMAXCID(0xffffffffffffffff, 0x40047451, &(0x7f00000002c0)=0xffff0010)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xc, 0x14, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x15}}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)
r4 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x20)
r6 = pidfd_getfd(r5, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@fallback=r5, 0x2, 0x1, 0x8, &(0x7f0000000280), 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0], <r7=>0x0}, 0x40)
syz_open_dev$sg(0x0, 0x0, 0x0)
r8 = fcntl$dupfd(r2, 0x406, 0xffffffffffffffff)
read$ptp(r8, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r5, r6, 0x30, 0x2000, 0xffffffffffffffff, @value=r8, @void, @void, @void, r7}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{r0, <r9=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%pI4   \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r9, <r10=>0xffffffffffffffff}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000b0a500007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioperm(0x2, 0xf560, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1e9000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x1000000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r11, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="c235535a17ac64791bbe00309033", 0x0, 0x7fffffff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
socket$nl_route(0x10, 0x3, 0x0)
r12 = socket(0x1, 0x803, 0x0)
getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)

1.011445632s ago: executing program 6 (id=1674):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r3, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000380)={'geneve1\x00', <r10=>0x0})
bind$packet(r9, &(0x7f0000000000)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)

940.319723ms ago: executing program 3 (id=1675):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffe, 0x6, 0x2, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000080)="0000501ef663", 0x0, 0x3, 0x6000000, 0x3, 0x0})

940.101323ms ago: executing program 3 (id=1676):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='kfree\x00', r2}, 0x18)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))

937.087413ms ago: executing program 3 (id=1677):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

920.327044ms ago: executing program 5 (id=1678):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000002d00)='mm_vmscan_lru_isolate\x00', r0, 0x0, 0x3e}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1200000008000061df81fb00b47c000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg$inet_nvme(0xffffffffffffffff, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002b00)=[{&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000080)=""/59, 0x3b}, {&(0x7f00000004c0)=""/149, 0x95}, {&(0x7f0000000580)=""/78, 0x4e}, {&(0x7f0000000680)=""/149, 0x95}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000000300)=""/56, 0x38}, {&(0x7f0000002940)=""/212, 0xd4}, {&(0x7f0000000740)=""/92, 0x5c}, {&(0x7f0000002a40)=""/154, 0x9a}], 0xa, &(0x7f0000002bc0)=""/143, 0x8f}, 0x10001)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r4 = gettid()
r5 = open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x0)
r6 = io_uring_setup(0x468f, 0x0)
splice(r5, 0x0, r6, &(0x7f0000000100)=0x1, 0x1, 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
splice(r8, 0x0, r7, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x33, &(0x7f00000001c0)={0x1, &(0x7f0000f07000)=[{0x6}]}, 0x10)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYRESHEX], 0xbc}, 0x1, 0x0, 0x0, 0x2008854}, 0x4000800)

909.952414ms ago: executing program 6 (id=1679):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000006c0)={'#! ', '', [{0x20, 'memory.events\x008\x8b?\xa9R^\xda?O\x97\xfa\x1eT\x88\x00\af\x9e\x1dg\xac\xc2\x18\xc7-\xc9\xf7\xce\xc5\xe1\xac\xa5\xf2\x05\x10\xb1(\xdc\xec\xc7\xd5\xdb\xdc\xb9\x11\xb8\xa0\xed\x1c\xd8ql\xf9~\x89\x10\xd1\xad\xec'}]}, 0x4e)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
bind$tipc(r3, 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r3, 0x10f, 0x88)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x2, 0x7ffc0002}]})
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x25, &(0x7f0000000000)={0x1})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r6, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x103ff, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000340)='GPL\x00', 0x2, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r8}, 0x18)
unlink(&(0x7f0000000040)='./file0\x00')
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xc, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3ff, 0x3fc9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x533887af, 0x0, 0x0, 0x10000, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

649.777578ms ago: executing program 0 (id=1680):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x7fff, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000200)=""/166}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x18)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8dedcb7907009875f37500e486dd6317ce6203c23c00b980000800009ff57b80000000000000000000002d00ac"], 0xfe1b)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="851000000000181000000000", @ANYRES32, @ANYBLOB="0000000000000000950000000000000045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='..\x00')
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080))
r6 = syz_clone(0x88100680, &(0x7f00000000c0)="cb42408fbc362cba7cdea591ad2e392fd1911c2700a7660f3064e977c55665c6ff2b", 0x22, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f00000004c0)="08a91791379d9c740fe29046df6aed2f83e15c2aa8f0e14f0a07d5aa51fecc9f9d15c70cd0de1c163e78ec1c95d90123a3f2973d29ad24548a1ec7f7d6c0eb383f32ce21894c345a74fee89175d3ab2d570c2d4463626c422075a017eeee3261993e28863ace49cf24438b7c06616f318c2d000c161a15127d703ee2efcac6bc71eb9120ea39afb2e54c313dae361b9b566ec25a5b8502fc75cd00aa6ee4e60c743736f5086b5f513f27aa0ccdf149dc82")
sched_setscheduler(r6, 0x0, &(0x7f0000000640)=0x7)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r7, 0x0, 0xf7}, 0x18)
io_setup(0x2, &(0x7f0000002400)=<r8=>0x0)
socket$igmp(0x2, 0x3, 0x2)
io_submit(r8, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

540.462941ms ago: executing program 4 (id=1681):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9f6b010018000000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000080000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000030000000000000c00000000100000000000000900000000000000000000000205000000"], 0x0, 0x96, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0xfffffffffffffd01, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="0000000000669100000010000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
io_setup(0x7f, &(0x7f0000000100))
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000680)=@mangle={'mangle\x00', 0x64, 0x6, 0x5b8, 0x0, 0x0, 0x1d0, 0x0, 0x1d0, 0x530, 0x530, 0x530, 0x530, 0x530, 0x6, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @multicast2}, [], [], 'vcan0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa8, 0xe8, 0x0, {0x7a00000000000000}}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x9}}}, {{@ipv6={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'syzkaller1\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@private0}}}, {{@ipv6={@rand_addr=' \x01\x00', @mcast2, [], [], 'veth1_to_batadv\x00', 'vlan1\x00'}, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@inet=@ecn={{0x28}}, @common=@ipv6header={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@empty}}}, {{@ipv6={@private0, @mcast2, [], [], 'veth1_to_team\x00', 'veth0_macvtap\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x618)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000019c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a18329bd70000000000005"], 0x28}}, 0x0)
removexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000340)=@known='trusted.overlay.opaque\x00')
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r9, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e23, @empty}, 0x0, 0x3, 0x3, 0x2}}, 0x26)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r1, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002bc0)=""/4082, 0x1020}, 0x80181}], 0x400000000000039, 0x10000, 0x0)
ftruncate(r7, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

475.513982ms ago: executing program 0 (id=1682):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
pipe(&(0x7f0000000d00)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
write$binfmt_misc(r3, &(0x7f0000000240), 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x714f, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000000c0)}, 0x20)
r7 = openat$incfs(0xffffffffffffffff, &(0x7f0000000180)='.log\x00', 0x40, 0x61)
sendfile(r7, r0, &(0x7f0000000280)=0x6, 0xd)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r6}, &(0x7f0000000140), &(0x7f0000000200)=r7}, 0x20)
ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r9=>0x0})
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r11, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000001a0000000c00018008000100", @ANYRES32=r9], 0x20}}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x100)
setsockopt$packet_add_memb(r5, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6}, 0x10)
sendto$packet(r5, &(0x7f0000000040)="02030007ffff0000000045", 0xff4b, 0x4000050, &(0x7f0000000000)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)

369.419974ms ago: executing program 4 (id=1683):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x34)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18080000000000000000000000cab5008500000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

284.126545ms ago: executing program 4 (id=1684):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2a10886, &(0x7f00000001c0)={[{@quota}, {@dioread_nolock}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000005d00)=ANY=[@ANYBLOB="000000004c900200080000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

170.975837ms ago: executing program 4 (id=1685):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000009b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

85.376759ms ago: executing program 3 (id=1686):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x357}, &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, {0x2}})
r4 = creat(&(0x7f0000000080)='./file0\x00', 0x11c)
fadvise64(r4, 0x4, 0xfc, 0x4)
io_uring_enter(r1, 0x47bc, 0x2, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffe, 0x6, 0x2, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000080)="0000501ef663", 0x0, 0x3, 0x0, 0x3, 0x0})

15.0241ms ago: executing program 5 (id=1687):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='kfree\x00', r2}, 0x18)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))

14.60161ms ago: executing program 6 (id=1688):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000010380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000003000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021d88400000c0a01010000000000000000070000000900020073797a31000000003400038030000080080003400000"], 0x855c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = timerfd_create(0x0, 0x0)
read(r3, &(0x7f0000000380)=""/189, 0x8)
openat(0xffffffffffffff9c, 0x0, 0x2c040, 0x92)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x24f, &(0x7f0000000840)="$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")
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001fc0)={'wpan0\x00'})

14.40583ms ago: executing program 3 (id=1689):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r3, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000380)={'geneve1\x00', <r10=>0x0})
bind$packet(r9, &(0x7f0000000000)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)

0s ago: executing program 4 (id=1690):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) (async)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0', [{0x20, '{^'}], 0xa, 'dU'}, 0x10) (async)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x7, 0x0, 0x0, 0x3, 0x82, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x8080, 0xfffffffffffffffd, 0x0, 0x4, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x10000000000007}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x18, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="180000008000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c44185000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b703000000000000850000007500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r3}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="540100001800010000000000000000001d010000150003000000000000000000dd5f392602cc30570500000008000500f80800001e0106"], 0x154}}, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

re name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  202.458204][ T6624] Call Trace:
[  202.458210][ T6624]  <TASK>
[  202.458217][ T6624]  dump_stack_lvl+0xf6/0x150
[  202.458240][ T6624]  dump_stack+0x15/0x1a
[  202.458337][ T6624]  should_fail_ex+0x261/0x270
[  202.458369][ T6624]  should_failslab+0x8f/0xb0
[  202.458404][ T6624]  kmem_cache_alloc_noprof+0x59/0x340
[  202.458430][ T6624]  ? __anon_vma_prepare+0xcf/0x310
[  202.458523][ T6624]  __anon_vma_prepare+0xcf/0x310
[  202.458554][ T6624]  ? do_wp_page+0x1861/0x24e0
[  202.458584][ T6624]  do_wp_page+0x1869/0x24e0
[  202.458616][ T6624]  ? __rcu_read_lock+0x36/0x50
[  202.458729][ T6624]  handle_mm_fault+0xc6c/0x2e80
[  202.458835][ T6624]  ? mas_walk+0x204/0x320
[  202.458868][ T6624]  ? __rcu_read_unlock+0x4e/0x70
[  202.458910][ T6624]  exc_page_fault+0x3b9/0x6a0
[  202.458942][ T6624]  asm_exc_page_fault+0x26/0x30
[  202.458967][ T6624] RIP: 0033:0x7f67970cfbe3
[  202.458985][ T6624] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  202.459068][ T6624] RSP: 002b:00007f67958764a0 EFLAGS: 00010202
[  202.459085][ T6624] RAX: 0000000000000400 RBX: 00007f6795876540 RCX: 00007f678d457000
[  202.459118][ T6624] RDX: 00007f67958766e0 RSI: 0000000000000029 RDI: 00007f67958765e0
[  202.459133][ T6624] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000a6
[  202.459168][ T6624] R10: 00000000000000be R11: 00007f6795876540 R12: 0000000000000001
[  202.459179][ T6624] R13: 00007f67972a93e0 R14: 0000000000000020 R15: 00007f67958765e0
[  202.459197][ T6624]  </TASK>
[  202.459208][ T6624] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  202.464697][ T6621] loop4: detected capacity change from 0 to 2048
[  202.518240][ T6624] loop6: detected capacity change from 0 to 2048
[  202.551819][ T6614] xt_hashlimit: max too large, truncated to 1048576
[  202.585353][ T6624] ext4: Unknown parameter 'noacl'
[  202.696334][ T6628]  loop4: p1 < > p4
[  202.701096][ T6628] loop4: p4 size 8388608 extends beyond EOD, truncated
[  202.730060][ T6633] syz.6.1039 uses obsolete (PF_INET,SOCK_PACKET)
[  202.735377][ T6621]  loop4: p1 < > p4
[  202.752348][ T6621] loop4: p4 size 8388608 extends beyond EOD, truncated
[  202.762308][ T6639] netlink: 'syz.0.1037': attribute type 10 has an invalid length.
[  202.770270][ T6639] __nla_validate_parse: 33 callbacks suppressed
[  202.770286][ T6639] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1037'.
[  202.810272][ T6639] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  202.818638][ T6639] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.830934][ T6639] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  202.841365][ T6639] team0: Failed to send options change via netlink (err -105)
[  202.848930][ T6639] team0: Port device geneve1 added
[  202.858498][ T3005]  loop4: p1 < > p4
[  202.863255][ T6630] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.869683][ T6646] xt_hashlimit: max too large, truncated to 1048576
[  202.880813][ T6646] FAULT_INJECTION: forcing a failure.
[  202.880813][ T6646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.883092][ T3005] loop4: p4 size 8388608 extends beyond EOD, truncated
[  202.894681][ T6646] CPU: 1 UID: 0 PID: 6646 Comm: syz.5.1043 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  202.894744][ T6646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  202.894758][ T6646] Call Trace:
[  202.894766][ T6646]  <TASK>
[  202.894776][ T6646]  dump_stack_lvl+0xf6/0x150
[  202.894804][ T6646]  dump_stack+0x15/0x1a
[  202.894823][ T6646]  should_fail_ex+0x261/0x270
[  202.894908][ T6646]  should_fail+0xb/0x10
[  202.894934][ T6646]  should_fail_usercopy+0x1a/0x20
[  202.894975][ T6646]  strncpy_from_user+0x25/0x230
[  202.895034][ T6646]  ? terminate_walk+0x271/0x290
[  202.895058][ T6646]  ? path_lookupat+0xf6/0x2a0
[  202.895084][ T6646]  strncpy_from_user_nofault+0x66/0xe0
[  202.895121][ T6646]  bpf_probe_read_compat_str+0xb3/0x130
[  202.895153][ T6646]  bpf_prog_e42f6260c1b72fb3+0x3e/0x40
[  202.895174][ T6646]  bpf_trace_run3+0x10e/0x1d0
[  202.895210][ T6646]  ? kern_path+0x10c/0x130
[  202.895235][ T6646]  ? kern_path+0x10c/0x130
[  202.895340][ T6646]  ? kern_path+0x10c/0x130
[  202.895366][ T6646]  __traceiter_kmem_cache_free+0x33/0x50
[  202.895431][ T6646]  kmem_cache_free+0x243/0x2e0
[  202.895457][ T6646]  ? kern_path+0x10c/0x130
[  202.895485][ T6646]  kern_path+0x10c/0x130
[  202.895512][ T6646]  bpf_prog_get_type_path+0x4b/0x1c0
[  202.895655][ T6646]  bpf_mt_check_v1+0xf0/0x260
[  202.895748][ T6646]  xt_check_match+0x265/0x4d0
[  202.895789][ T6646]  ? xt_find_match+0x1d2/0x210
[  202.895828][ T6646]  ? xt_find_match+0x1b3/0x210
[  202.895946][ T6646]  translate_table+0xadb/0xfe0
[  202.896037][ T6646]  ? _copy_from_user+0x89/0xa0
[  202.896079][ T6646]  do_ipt_set_ctl+0x7ac/0x8a0
[  202.896127][ T6646]  nf_setsockopt+0x195/0x1b0
[  202.896234][ T6646]  ip_setsockopt+0xea/0x100
[  202.896376][ T6646]  udp_setsockopt+0x95/0xb0
[  202.896412][ T6646]  sock_common_setsockopt+0x64/0x80
[  202.896436][ T6646]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  202.896462][ T6646]  __sys_setsockopt+0x187/0x200
[  202.896538][ T6646]  __x64_sys_setsockopt+0x66/0x80
[  202.896569][ T6646]  x64_sys_call+0x2a09/0x2e10
[  202.896596][ T6646]  do_syscall_64+0xc9/0x1c0
[  202.896651][ T6646]  ? clear_bhb_loop+0x25/0x80
[  202.896676][ T6646]  ? clear_bhb_loop+0x25/0x80
[  202.896758][ T6646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.896830][ T6646] RIP: 0033:0x7fb0d337d169
[  202.896849][ T6646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.896871][ T6646] RSP: 002b:00007fb0d19e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  202.896892][ T6646] RAX: ffffffffffffffda RBX: 00007fb0d3595fa0 RCX: 00007fb0d337d169
[  202.896907][ T6646] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[  202.896922][ T6646] RBP: 00007fb0d19e7090 R08: 0000000000000538 R09: 0000000000000000
[  202.896937][ T6646] R10: 0000200000000540 R11: 0000000000000246 R12: 0000000000000002
[  202.896951][ T6646] R13: 0000000000000000 R14: 00007fb0d3595fa0 R15: 00007ffc8a930678
[  202.897011][ T6646]  </TASK>
[  203.017743][ T6655] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1047'.
[  203.073660][ T4106] udevd[4106]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  203.078227][ T6655] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1047'.
[  203.087503][ T4105] udevd[4105]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  203.110491][ T6657] loop4: detected capacity change from 0 to 1024
[  203.272913][ T6657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.306128][ T6673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1052'.
[  203.319398][ T6630] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.331770][ T6676] netlink: 'syz.6.1053': attribute type 10 has an invalid length.
[  203.366922][ T6677] netlink: 'syz.6.1053': attribute type 10 has an invalid length.
[  203.382234][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.382472][ T6677] 8021q: adding VLAN 0 to HW filter on device team0
[  203.399636][ T6677] team0: entered promiscuous mode
[  203.405244][ T6677] $Hÿ: (slave team0): Enslaving as an active interface with an up link
[  203.423470][ T6630] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.447717][ T6630] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.482833][ T6689] netlink: 33900 bytes leftover after parsing attributes in process `syz.5.1059'.
[  203.491038][ T6630] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.508248][ T6630] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.539303][ T6697] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1062'.
[  203.548313][ T6697] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1062'.
[  203.553325][ T6698] loop5: detected capacity change from 0 to 128
[  203.604770][ T6698] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.625692][ T6707] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1066'.
[  203.642635][ T6703] pim6reg1: entered promiscuous mode
[  203.648088][ T6703] pim6reg1: entered allmulticast mode
[  203.649282][ T6698] ext4 filesystem being mounted at /224/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  203.692530][ T6707] dummy0 speed is unknown, defaulting to 1000
[  203.752614][ T6713] loop4: detected capacity change from 0 to 512
[  203.796979][ T6713] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.859641][ T6713] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.975438][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.351112][ T6737] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1076'.
[  204.360098][ T6737] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1076'.
[  204.376155][ T3540] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.415320][ T6739] loop4: detected capacity change from 0 to 164
[  204.437557][ T6739] Unable to read rock-ridge attributes
[  204.451073][ T6739] Unable to read rock-ridge attributes
[  204.580341][ T6754] loop6: detected capacity change from 0 to 512
[  204.617022][ T6754] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.645272][ T6754] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  204.686157][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.785945][ T6766] pim6reg1: entered promiscuous mode
[  204.791311][ T6766] pim6reg1: entered allmulticast mode
[  204.912612][ T6705] syz.0.1065 (6705) used greatest stack depth: 6136 bytes left
[  204.936894][ T6774] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.987150][ T6779] netlink: 'syz.4.1092': attribute type 10 has an invalid length.
[  205.003713][ T6779] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  205.013945][ T6779] team0: Failed to send options change via netlink (err -105)
[  205.022192][ T6779] team0: Port device geneve1 added
[  205.031157][ T6781] FAULT_INJECTION: forcing a failure.
[  205.031157][ T6781] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.044496][ T6781] CPU: 0 UID: 0 PID: 6781 Comm: syz.6.1094 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  205.044527][ T6781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  205.044541][ T6781] Call Trace:
[  205.044549][ T6781]  <TASK>
[  205.044558][ T6781]  dump_stack_lvl+0xf6/0x150
[  205.044625][ T6781]  dump_stack+0x15/0x1a
[  205.044645][ T6781]  should_fail_ex+0x261/0x270
[  205.044715][ T6781]  should_fail+0xb/0x10
[  205.044744][ T6781]  should_fail_usercopy+0x1a/0x20
[  205.044829][ T6781]  _copy_from_user+0x1c/0xa0
[  205.044900][ T6781]  kstrtouint_from_user+0x84/0x100
[  205.044932][ T6781]  ? 0xffffffff81000000
[  205.044950][ T6781]  ? selinux_file_permission+0x22d/0x360
[  205.045050][ T6781]  proc_fail_nth_write+0x54/0x160
[  205.045133][ T6781]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  205.045173][ T6781]  vfs_write+0x295/0x950
[  205.045229][ T6781]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  205.045267][ T6781]  ? __fget_files+0x186/0x1c0
[  205.045292][ T6781]  ksys_write+0xeb/0x1b0
[  205.045378][ T6781]  __x64_sys_write+0x42/0x50
[  205.045410][ T6781]  x64_sys_call+0x2a45/0x2e10
[  205.045433][ T6781]  do_syscall_64+0xc9/0x1c0
[  205.045463][ T6781]  ? clear_bhb_loop+0x25/0x80
[  205.045484][ T6781]  ? clear_bhb_loop+0x25/0x80
[  205.045529][ T6781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.045554][ T6781] RIP: 0033:0x7f679720bc1f
[  205.045571][ T6781] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  205.045639][ T6781] RSP: 002b:00007f6795877030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  205.045658][ T6781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f679720bc1f
[  205.045671][ T6781] RDX: 0000000000000001 RSI: 00007f67958770a0 RDI: 0000000000000007
[  205.045685][ T6781] RBP: 00007f6795877090 R08: 0000000000000000 R09: 0000000000000000
[  205.045699][ T6781] R10: 00002000000005c0 R11: 0000000000000293 R12: 0000000000000001
[  205.045712][ T6781] R13: 0000000000000000 R14: 00007f6797425fa0 R15: 00007ffdae7cf628
[  205.045735][ T6781]  </TASK>
[  205.047456][ T6774] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.275847][ T6790] loop6: detected capacity change from 0 to 512
[  205.277094][ T6786] pim6reg1: entered promiscuous mode
[  205.287738][ T6786] pim6reg1: entered allmulticast mode
[  205.299469][ T6774] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.302162][ T6790] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.322038][ T6790] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  205.347228][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.359575][ T6774] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.430464][ T6774] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.449582][ T6774] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.488013][ T6774] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.520233][ T6774] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.535457][ T6796] hub 9-0:1.0: USB hub found
[  205.540303][ T6796] hub 9-0:1.0: 8 ports detected
[  205.545920][ T6796] FAULT_INJECTION: forcing a failure.
[  205.545920][ T6796] name failslab, interval 1, probability 0, space 0, times 0
[  205.558623][ T6796] CPU: 1 UID: 0 PID: 6796 Comm: syz.0.1098 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  205.558745][ T6796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  205.558756][ T6796] Call Trace:
[  205.558762][ T6796]  <TASK>
[  205.558768][ T6796]  dump_stack_lvl+0xf6/0x150
[  205.558791][ T6796]  dump_stack+0x15/0x1a
[  205.558808][ T6796]  should_fail_ex+0x261/0x270
[  205.558846][ T6796]  should_failslab+0x8f/0xb0
[  205.558885][ T6796]  __kmalloc_noprof+0xad/0x410
[  205.558948][ T6796]  ? hub_probe+0xc5d/0x1650
[  205.558975][ T6796]  hub_probe+0xc5d/0x1650
[  205.559000][ T6796]  ? ktime_get_mono_fast_ns+0x18b/0x1b0
[  205.559108][ T6796]  usb_probe_interface+0x468/0x6b0
[  205.559152][ T6796]  ? __pfx_usb_probe_interface+0x10/0x10
[  205.559185][ T6796]  really_probe+0x1cf/0x5d0
[  205.559291][ T6796]  __driver_probe_device+0x12d/0x200
[  205.559315][ T6796]  driver_probe_device+0x38/0x2f0
[  205.559338][ T6796]  __device_attach_driver+0x216/0x320
[  205.559363][ T6796]  ? __pfx___device_attach_driver+0x10/0x10
[  205.559459][ T6796]  bus_for_each_drv+0x1cf/0x250
[  205.559525][ T6796]  __device_attach+0x1d6/0x2b0
[  205.559553][ T6796]  device_attach+0x17/0x20
[  205.559608][ T6796]  proc_ioctl+0x343/0x420
[  205.559644][ T6796]  usbdev_ioctl+0x1dd6/0x3e70
[  205.559725][ T6796]  ? do_vfs_ioctl+0x977/0x1570
[  205.559834][ T6796]  ? selinux_file_ioctl+0x2f9/0x380
[  205.559858][ T6796]  ? __fget_files+0x186/0x1c0
[  205.559876][ T6796]  ? __pfx_usbdev_ioctl+0x10/0x10
[  205.559938][ T6796]  __se_sys_ioctl+0xc9/0x140
[  205.559964][ T6796]  __x64_sys_ioctl+0x43/0x50
[  205.559989][ T6796]  x64_sys_call+0x168d/0x2e10
[  205.560011][ T6796]  do_syscall_64+0xc9/0x1c0
[  205.560047][ T6796]  ? clear_bhb_loop+0x25/0x80
[  205.560068][ T6796]  ? clear_bhb_loop+0x25/0x80
[  205.560090][ T6796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.560207][ T6796] RIP: 0033:0x7f0b8134d169
[  205.560222][ T6796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.560240][ T6796] RSP: 002b:00007f0b7f9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.560258][ T6796] RAX: ffffffffffffffda RBX: 00007f0b81565fa0 RCX: 00007f0b8134d169
[  205.560283][ T6796] RDX: 0000200000000000 RSI: 00000000c0105512 RDI: 0000000000000009
[  205.560367][ T6796] RBP: 00007f0b7f9b7090 R08: 0000000000000000 R09: 0000000000000000
[  205.560378][ T6796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.560390][ T6796] R13: 0000000000000000 R14: 00007f0b81565fa0 R15: 00007ffcff3388d8
[  205.560408][ T6796]  </TASK>
[  205.560423][ T6796] hub 9-0:1.0: config failed, out of memory (err -12)
[  205.869303][ T6805] FAULT_INJECTION: forcing a failure.
[  205.869303][ T6805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.882536][ T6805] CPU: 1 UID: 0 PID: 6805 Comm: syz.5.1100 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  205.882582][ T6805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  205.882594][ T6805] Call Trace:
[  205.882600][ T6805]  <TASK>
[  205.882608][ T6805]  dump_stack_lvl+0xf6/0x150
[  205.882635][ T6805]  dump_stack+0x15/0x1a
[  205.882654][ T6805]  should_fail_ex+0x261/0x270
[  205.882688][ T6805]  should_fail+0xb/0x10
[  205.882715][ T6805]  should_fail_usercopy+0x1a/0x20
[  205.882746][ T6805]  _copy_to_user+0x20/0xa0
[  205.882782][ T6805]  simple_read_from_buffer+0xb2/0x130
[  205.882868][ T6805]  proc_fail_nth_read+0x103/0x140
[  205.882990][ T6805]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  205.883029][ T6805]  vfs_read+0x1b2/0x710
[  205.883059][ T6805]  ? __rcu_read_unlock+0x4e/0x70
[  205.883117][ T6805]  ? __fget_files+0x186/0x1c0
[  205.883158][ T6805]  ksys_read+0xeb/0x1b0
[  205.883204][ T6805]  __x64_sys_read+0x42/0x50
[  205.883236][ T6805]  x64_sys_call+0x2a3b/0x2e10
[  205.883261][ T6805]  do_syscall_64+0xc9/0x1c0
[  205.883307][ T6805]  ? clear_bhb_loop+0x25/0x80
[  205.883333][ T6805]  ? clear_bhb_loop+0x25/0x80
[  205.883358][ T6805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.883384][ T6805] RIP: 0033:0x7fb0d337bb7c
[  205.883402][ T6805] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  205.883421][ T6805] RSP: 002b:00007fb0d19e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  205.883497][ T6805] RAX: ffffffffffffffda RBX: 00007fb0d3595fa0 RCX: 00007fb0d337bb7c
[  205.883511][ T6805] RDX: 000000000000000f RSI: 00007fb0d19e70a0 RDI: 0000000000000004
[  205.883525][ T6805] RBP: 00007fb0d19e7090 R08: 0000000000000000 R09: 0000000000000000
[  205.883539][ T6805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.883552][ T6805] R13: 0000000000000000 R14: 00007fb0d3595fa0 R15: 00007ffc8a930678
[  205.883573][ T6805]  </TASK>
[  206.138944][   T29] kauditd_printk_skb: 49 callbacks suppressed
[  206.138961][   T29] audit: type=1400 audit(1744024644.810:2562): avc:  denied  { mount } for  pid=6806 comm="syz.5.1101" name="/" dev="ramfs" ino=16724 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  206.372040][ T6818] loop4: detected capacity change from 0 to 512
[  206.376373][ T6821] loop5: detected capacity change from 0 to 512
[  206.390268][ T6820] pim6reg1: entered promiscuous mode
[  206.395777][ T6820] pim6reg1: entered allmulticast mode
[  206.425052][ T6818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.438028][ T6818] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  206.440303][ T6821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.485298][ T6821] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  206.526723][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.552987][ T3540] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.585761][ T6832] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.639971][ T6845] netlink: 'syz.0.1113': attribute type 10 has an invalid length.
[  206.650330][ T6832] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.653125][ T6844] loop4: detected capacity change from 0 to 512
[  206.684309][ T6845] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.692870][ T6845] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.713801][ T6845] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  206.723930][ T6844] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  206.770623][ T6844] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  206.814168][ T6844] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.835928][ T6856] capability: warning: `syz.5.1120' uses 32-bit capabilities (legacy support in use)
[  206.901696][   T29] audit: type=1400 audit(1744024645.550:2563): avc:  denied  { map } for  pid=6841 comm="syz.4.1116" path="/223/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  206.924328][   T29] audit: type=1400 audit(1744024645.550:2564): avc:  denied  { execute } for  pid=6841 comm="syz.4.1116" path="/223/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  206.974893][ T6863] loop6: detected capacity change from 0 to 512
[  207.039687][ T6863] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.046418][ T6875] pim6reg1: entered promiscuous mode
[  207.057655][ T6875] pim6reg1: entered allmulticast mode
[  207.066296][   T29] audit: type=1400 audit(1744024645.620:2565): avc:  denied  { read } for  pid=6841 comm="syz.4.1116" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  207.089222][   T29] audit: type=1400 audit(1744024645.620:2566): avc:  denied  { open } for  pid=6841 comm="syz.4.1116" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  207.113347][ T6863] ext4 filesystem being mounted at /162/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  207.158442][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.171140][   T29] audit: type=1326 audit(1744024645.840:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6841 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  207.196042][   T29] audit: type=1326 audit(1744024645.870:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6841 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  207.219529][   T29] audit: type=1326 audit(1744024645.870:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6841 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  207.244895][ T6874] IPVS: Error connecting to the multicast addr
[  207.279478][ T6891] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[  207.297934][ T6889] loop6: detected capacity change from 0 to 512
[  207.323998][ T6889] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  207.335468][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  207.386606][ T6889] EXT4-fs (loop6): 1 truncate cleaned up
[  207.413161][ T6889] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.448589][   T29] audit: type=1326 audit(1744024646.120:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.3.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  207.450313][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.487431][   T29] audit: type=1326 audit(1744024646.140:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6915 comm="syz.3.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  207.491471][ T6918] pim6reg1: entered promiscuous mode
[  207.516819][ T6918] pim6reg1: entered allmulticast mode
[  207.552139][ T6922] dummy0 speed is unknown, defaulting to 1000
[  207.568462][ T6925] netlink: 'syz.0.1132': attribute type 10 has an invalid length.
[  207.739277][ T6943] loop5: detected capacity change from 0 to 128
[  207.759455][ T6943] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  207.784062][ T6943] ext4 filesystem being mounted at /243/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  207.869899][ T6954] loop6: detected capacity change from 0 to 1024
[  207.888107][ T6955] lo: entered allmulticast mode
[  207.913526][ T6954] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.928583][ T6954] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4115: comm syz.6.1150: Allocating blocks 497-513 which overlap fs metadata
[  207.944395][ T6954] EXT4-fs (loop6): pa ffff8881068b77e0: logic 16, phys. 145, len 23
[  207.952465][ T6954] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  207.964012][ T6954] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  207.976358][ T6954] EXT4-fs (loop6): This should not happen!! Data will be lost
[  207.976358][ T6954] 
[  207.986065][ T6954] EXT4-fs (loop6): Total free blocks count 0
[  207.992061][ T6954] EXT4-fs (loop6): Free/Dirty block details
[  207.998097][ T6954] EXT4-fs (loop6): free_blocks=16
[  208.003142][ T6954] EXT4-fs (loop6): dirty_blocks=0
[  208.008260][ T6954] EXT4-fs (loop6): Block reservation details
[  208.014241][ T6954] EXT4-fs (loop6): i_reserved_data_blocks=0
[  208.560654][ T3540] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  208.639402][ T6988] pim6reg1: entered promiscuous mode
[  208.644858][ T6988] pim6reg1: entered allmulticast mode
[  208.652523][ T6990] loop6: detected capacity change from 0 to 128
[  208.708678][ T6990] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  208.746565][ T6990] ext4 filesystem being mounted at /168/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  208.787943][ T6996] __nla_validate_parse: 10 callbacks suppressed
[  208.787961][ T6996] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1163'.
[  209.084494][ T7028] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  209.091787][ T7028] IPv6: NLM_F_CREATE should be set when creating new route
[  209.175419][ T7029] FAULT_INJECTION: forcing a failure.
[  209.175419][ T7029] name failslab, interval 1, probability 0, space 0, times 0
[  209.188096][ T7029] CPU: 0 UID: 0 PID: 7029 Comm: syz.4.1168 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  209.188195][ T7029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  209.188235][ T7029] Call Trace:
[  209.188243][ T7029]  <TASK>
[  209.188251][ T7029]  dump_stack_lvl+0xf6/0x150
[  209.188276][ T7029]  dump_stack+0x15/0x1a
[  209.188292][ T7029]  should_fail_ex+0x261/0x270
[  209.188318][ T7029]  should_failslab+0x8f/0xb0
[  209.188350][ T7029]  __kmalloc_cache_noprof+0x55/0x320
[  209.188448][ T7029]  ? usb_control_msg+0x5b/0x250
[  209.188486][ T7029]  usb_control_msg+0x5b/0x250
[  209.188601][ T7029]  hub_ext_port_status+0xbf/0x480
[  209.188638][ T7029]  hub_activate+0x4e5/0xf90
[  209.188670][ T7029]  hub_resume+0x4b/0x1e0
[  209.188701][ T7029]  ? mutex_lock+0xd/0x40
[  209.188728][ T7029]  usb_resume_both+0x3ec/0x5b0
[  209.188757][ T7029]  ? __pfx_usb_runtime_resume+0x10/0x10
[  209.188790][ T7029]  usb_runtime_resume+0x21/0x30
[  209.188999][ T7029]  __rpm_callback+0x299/0x720
[  209.189027][ T7029]  ? __pfx_usb_runtime_resume+0x10/0x10
[  209.189093][ T7029]  rpm_resume+0x907/0xd50
[  209.189154][ T7029]  ? __schedule+0x809/0xb70
[  209.189171][ T7029]  ? __cond_resched+0x53/0x90
[  209.189199][ T7029]  __pm_runtime_resume+0xdc/0x100
[  209.189233][ T7029]  usb_autoresume_device+0x25/0xd0
[  209.189327][ T7029]  usbdev_open+0x106/0x470
[  209.189359][ T7029]  chrdev_open+0x2fc/0x380
[  209.189434][ T7029]  ? __pfx_chrdev_open+0x10/0x10
[  209.189474][ T7029]  do_dentry_open+0x621/0xa20
[  209.189497][ T7029]  vfs_open+0x38/0x1e0
[  209.189515][ T7029]  path_openat+0x1b1c/0x2000
[  209.189546][ T7029]  ? kernelmode_fixup_or_oops+0x58/0xb0
[  209.189653][ T7029]  ? percpu_counter_add_batch+0x136/0x140
[  209.189682][ T7029]  ? strncpy_from_kernel_nofault+0x72/0x140
[  209.189722][ T7029]  do_filp_open+0x115/0x240
[  209.189844][ T7029]  do_sys_openat2+0xaa/0x110
[  209.189871][ T7029]  __x64_sys_openat+0xf8/0x120
[  209.189900][ T7029]  x64_sys_call+0x1ac/0x2e10
[  209.189927][ T7029]  do_syscall_64+0xc9/0x1c0
[  209.189958][ T7029]  ? clear_bhb_loop+0x25/0x80
[  209.190048][ T7029]  ? clear_bhb_loop+0x25/0x80
[  209.190071][ T7029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.190091][ T7029] RIP: 0033:0x7f436c35bad0
[  209.190106][ T7029] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  209.190123][ T7029] RSP: 002b:00007f436a97cb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  209.190221][ T7029] RAX: ffffffffffffffda RBX: 0000000000000082 RCX: 00007f436c35bad0
[  209.190234][ T7029] RDX: 0000000000000082 RSI: 00007f436a97cc10 RDI: 00000000ffffff9c
[  209.190245][ T7029] RBP: 00007f436a97cc10 R08: 0000000000000000 R09: 0000000000000000
[  209.190269][ T7029] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  209.190280][ T7029] R13: 0000000000000001 R14: 00007f436c576160 R15: 00007ffd3d30cd18
[  209.190302][ T7029]  </TASK>
[  209.190313][ T7029] hub 8-0:1.0: hub_ext_port_status failed (err = -12)
[  209.510470][ T4634] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  209.599991][ T7040] FAULT_INJECTION: forcing a failure.
[  209.599991][ T7040] name failslab, interval 1, probability 0, space 0, times 0
[  209.612741][ T7040] CPU: 1 UID: 0 PID: 7040 Comm: syz.3.1180 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  209.612867][ T7040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  209.612881][ T7040] Call Trace:
[  209.612888][ T7040]  <TASK>
[  209.612896][ T7040]  dump_stack_lvl+0xf6/0x150
[  209.612922][ T7040]  dump_stack+0x15/0x1a
[  209.612940][ T7040]  should_fail_ex+0x261/0x270
[  209.612968][ T7040]  should_failslab+0x8f/0xb0
[  209.613050][ T7040]  __kmalloc_noprof+0xad/0x410
[  209.613076][ T7040]  ? ip_options_get+0x56/0x380
[  209.613107][ T7040]  ip_options_get+0x56/0x380
[  209.613136][ T7040]  ip_cmsg_send+0x3f1/0x5d0
[  209.613195][ T7040]  udp_sendmsg+0x869/0x1350
[  209.613247][ T7040]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  209.613280][ T7040]  ? __rcu_read_unlock+0x4e/0x70
[  209.613309][ T7040]  ? __pfx_ip4_datagram_release_cb+0x10/0x10
[  209.613418][ T7040]  ? __pfx_udp_sendmsg+0x10/0x10
[  209.613444][ T7040]  inet_sendmsg+0xaf/0xd0
[  209.613492][ T7040]  __sock_sendmsg+0x102/0x180
[  209.613528][ T7040]  ____sys_sendmsg+0x350/0x4e0
[  209.613559][ T7040]  __sys_sendmmsg+0x22a/0x4b0
[  209.613657][ T7040]  __x64_sys_sendmmsg+0x57/0x70
[  209.613686][ T7040]  x64_sys_call+0x2b53/0x2e10
[  209.613709][ T7040]  do_syscall_64+0xc9/0x1c0
[  209.613744][ T7040]  ? clear_bhb_loop+0x25/0x80
[  209.613827][ T7040]  ? clear_bhb_loop+0x25/0x80
[  209.613861][ T7040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.613882][ T7040] RIP: 0033:0x7f4cd282d169
[  209.613897][ T7040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.613966][ T7040] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  209.613993][ T7040] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  209.614006][ T7040] RDX: 0000000000000001 RSI: 0000200000000800 RDI: 0000000000000003
[  209.614018][ T7040] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  209.614030][ T7040] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[  209.614042][ T7040] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  209.614090][ T7040]  </TASK>
[  209.888928][ T7043] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1181'.
[  209.919895][ T7047] ------------[ cut here ]------------
[  209.920461][ T7051] Invalid logical block size (4114)
[  209.925473][ T7047] Please remove unsupported % in format string
[  209.926640][ T7047] WARNING: CPU: 0 PID: 7047 at lib/vsprintf.c:2702 format_decode+0x526/0x540
[  209.946471][ T7047] Modules linked in:
[  209.950392][ T7047] CPU: 0 UID: 0 PID: 7047 Comm: syz.4.1183 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  209.961115][ T7047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  209.971286][ T7047] RIP: 0010:format_decode+0x526/0x540
[  209.976711][ T7047] Code: 8f d3 86 e8 5c ca 09 fc c6 05 dc a7 6f 01 01 90 4c 89 e7 e8 bc c8 09 fc 41 0f b6 34 24 48 c7 c7 b0 4c 60 86 e8 4b 9e d0 fb 90 <0f> 0b 90 90 e9 cf fd ff ff e8 0c b5 ef fb 4d 89 e6 e9 ab fc ff ff
[  209.996373][ T7047] RSP: 0018:ffffc9000327fa58 EFLAGS: 00010246
[  210.002575][ T7047] RAX: 02f169dbce70bf00 RBX: ffffc9000327fad9 RCX: 0000000000080000
[  210.010611][ T7047] RDX: ffffc90003be6000 RSI: 00000000000009ba RDI: 00000000000009bb
[  210.018635][ T7047] RBP: 0000000000000000 R08: ffffffff8134876b R09: 0000000000000000
[  210.026670][ T7047] R10: 0001ffffffffffff R11: 0001c9000327f958 R12: ffffc9000327fbb4
[  210.034659][ T7047] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc9000327fad8
[  210.042731][ T7047] FS:  00007f436a9bf6c0(0000) GS:ffff8882aee24000(0000) knlGS:0000000000000000
[  210.051715][ T7047] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  210.058337][ T7047] CR2: 0000200000001000 CR3: 0000000109ab0000 CR4: 00000000003506f0
[  210.066359][ T7047] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  210.074349][ T7047] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[  210.082426][ T7047] Call Trace:
[  210.085744][ T7047]  <TASK>
[  210.088753][ T7047]  bstr_printf+0xb4/0x6f0
[  210.093167][ T7047]  ? bpf_test_run+0x1d8/0x4a0
[  210.097892][ T7047]  bpf_trace_printk+0xbf/0x1e0
[  210.102721][ T7047]  ? find_stack+0xcf/0x170
[  210.107338][ T7047]  ? bpf_test_run+0x1d8/0x4a0
[  210.112129][ T7047]  bpf_prog_12183cdb1cd51dab+0x37/0x3b
[  210.117646][ T7047]  bpf_test_run+0x1e7/0x4a0
[  210.122212][ T7047]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  210.128095][ T7047]  ? bpf_test_run+0x106/0x4a0
[  210.132811][ T7047]  bpf_prog_test_run_skb+0x857/0xbe0
[  210.138167][ T7047]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  210.143991][ T7047]  bpf_prog_test_run+0x20e/0x3a0
[  210.149026][ T7047]  __sys_bpf+0x440/0x800
[  210.153299][ T7047]  __x64_sys_bpf+0x43/0x50
[  210.157759][ T7047]  x64_sys_call+0x23da/0x2e10
[  210.162471][ T7047]  do_syscall_64+0xc9/0x1c0
[  210.167083][ T7047]  ? clear_bhb_loop+0x25/0x80
[  210.171793][ T7047]  ? clear_bhb_loop+0x25/0x80
[  210.176738][ T7047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.182739][ T7047] RIP: 0033:0x7f436c35d169
[  210.187212][ T7047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.206968][ T7047] RSP: 002b:00007f436a9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  210.206993][ T7047] RAX: ffffffffffffffda RBX: 00007f436c575fa0 RCX: 00007f436c35d169
[  210.207008][ T7047] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a
[  210.207022][ T7047] RBP: 00007f436c3de2a0 R08: 0000000000000000 R09: 0000000000000000
[  210.207042][ T7047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.207056][ T7047] R13: 0000000000000000 R14: 00007f436c575fa0 R15: 00007ffd3d30cd18
[  210.207088][ T7047]  </TASK>
[  210.207097][ T7047] ---[ end trace 0000000000000000 ]---
[  210.260856][ T7065] loop4: detected capacity change from 0 to 512
[  210.290934][ T7064] loop6: detected capacity change from 0 to 128
[  210.299132][ T7065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.322095][ T7065] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  210.344589][ T7061] dummy0 speed is unknown, defaulting to 1000
[  210.346375][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.416892][ T7071] IPVS: Error connecting to the multicast addr
[  210.439915][ T7071] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  210.447202][ T7071] IPv6: NLM_F_CREATE should be set when creating new route
[  210.495630][ T7080] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.523783][ T7086] pim6reg1: entered promiscuous mode
[  210.529355][ T7086] pim6reg1: entered allmulticast mode
[  210.535512][ T7087] netlink: 'syz.6.1193': attribute type 10 has an invalid length.
[  210.543473][ T7087] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1193'.
[  210.559993][ T7087] geneve1: entered promiscuous mode
[  210.565952][ T7087] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  210.575610][ T7087] team0: Failed to send options change via netlink (err -105)
[  210.583099][ T7087] team0: Port device geneve1 added
[  210.592128][ T7080] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.627807][ T7080] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.679971][ T7080] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.727013][ T7080] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.742315][ T7080] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.755301][ T7080] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.759755][ T7095] loop4: detected capacity change from 0 to 512
[  210.768389][ T7080] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.788530][ T7095] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.801915][ T7095] ext4 filesystem being mounted at /239/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  210.824420][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.853617][ T7099] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1200'.
[  210.902969][ T7105] FAULT_INJECTION: forcing a failure.
[  210.902969][ T7105] name failslab, interval 1, probability 0, space 0, times 0
[  210.915866][ T7105] CPU: 0 UID: 0 PID: 7105 Comm: syz.4.1203 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  210.915939][ T7105] Tainted: [W]=WARN
[  210.915947][ T7105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  210.915961][ T7105] Call Trace:
[  210.915968][ T7105]  <TASK>
[  210.915977][ T7105]  dump_stack_lvl+0xf6/0x150
[  210.916002][ T7105]  dump_stack+0x15/0x1a
[  210.916088][ T7105]  should_fail_ex+0x261/0x270
[  210.916121][ T7105]  should_failslab+0x8f/0xb0
[  210.916207][ T7105]  kmem_cache_alloc_noprof+0x59/0x340
[  210.916232][ T7105]  ? __anon_vma_prepare+0xcf/0x310
[  210.916351][ T7105]  __anon_vma_prepare+0xcf/0x310
[  210.916381][ T7105]  ? do_wp_page+0x1861/0x24e0
[  210.916460][ T7105]  do_wp_page+0x1869/0x24e0
[  210.916499][ T7105]  ? __rcu_read_lock+0x36/0x50
[  210.916564][ T7105]  handle_mm_fault+0xc6c/0x2e80
[  210.916660][ T7105]  ? mas_walk+0x204/0x320
[  210.916710][ T7105]  ? __rcu_read_unlock+0x4e/0x70
[  210.916746][ T7105]  exc_page_fault+0x3b9/0x6a0
[  210.916778][ T7105]  asm_exc_page_fault+0x26/0x30
[  210.916802][ T7105] RIP: 0033:0x7f436c21fbe3
[  210.916820][ T7105] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  210.916879][ T7105] RSP: 002b:00007f436a9be4a0 EFLAGS: 00010202
[  210.916897][ T7105] RAX: 0000000000000400 RBX: 00007f436a9be540 RCX: 00007f436259f000
[  210.916912][ T7105] RDX: 00007f436a9be6e0 RSI: 0000000000000001 RDI: 00007f436a9be5e0
[  210.916926][ T7105] RBP: 00000000000000f9 R08: 0000000000000009 R09: 00000000000001bd
[  210.916938][ T7105] R10: 00000000000001d4 R11: 00007f436a9be540 R12: 0000000000000001
[  210.916950][ T7105] R13: 00007f436c3f93e0 R14: 0000000000000020 R15: 00007f436a9be5e0
[  210.916992][ T7105]  </TASK>
[  210.917058][ T7105] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  211.105156][ T7105] loop4: detected capacity change from 0 to 512
[  211.123314][ T7105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.136327][ T7105] ext4 filesystem being mounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  211.179122][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.271292][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  211.271309][   T29] audit: type=1400 audit(1744024649.940:2630): avc:  denied  { ioctl } for  pid=7115 comm="syz.4.1206" path="socket:[18574]" dev="sockfs" ino=18574 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  211.316675][ T7120] FAULT_INJECTION: forcing a failure.
[  211.316675][ T7120] name failslab, interval 1, probability 0, space 0, times 0
[  211.329506][ T7120] CPU: 0 UID: 0 PID: 7120 Comm: syz.4.1207 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  211.329592][ T7120] Tainted: [W]=WARN
[  211.329600][ T7120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  211.329613][ T7120] Call Trace:
[  211.329618][ T7120]  <TASK>
[  211.329625][ T7120]  dump_stack_lvl+0xf6/0x150
[  211.329653][ T7120]  dump_stack+0x15/0x1a
[  211.329674][ T7120]  should_fail_ex+0x261/0x270
[  211.329719][ T7120]  should_failslab+0x8f/0xb0
[  211.329751][ T7120]  __kvmalloc_node_noprof+0x12c/0x520
[  211.329780][ T7120]  ? nf_hook_entries_grow+0x1c0/0x4a0
[  211.329805][ T7120]  ? __pfx_do_sync_core+0x10/0x10
[  211.329891][ T7120]  nf_hook_entries_grow+0x1c0/0x4a0
[  211.329920][ T7120]  __nf_register_net_hook+0x16b/0x490
[  211.329945][ T7120]  ? arch_jump_label_transform_apply+0x1a/0x30
[  211.330091][ T7120]  ? __jump_label_update+0x24c/0x270
[  211.330114][ T7120]  nf_register_net_hook+0x88/0x130
[  211.330134][ T7120]  nf_register_net_hooks+0x41/0x140
[  211.330158][ T7120]  nf_defrag_ipv6_enable+0x6c/0xc0
[  211.330211][ T7120]  socket_mt_v2_check+0x6c/0x160
[  211.330443][ T7120]  xt_check_match+0x265/0x4d0
[  211.330502][ T7120]  ? strcmp+0x21/0x50
[  211.330532][ T7120]  ? xt_find_match+0x1d2/0x210
[  211.330564][ T7120]  translate_table+0xb87/0x10b0
[  211.330659][ T7120]  do_ip6t_set_ctl+0x7bb/0x8c0
[  211.330690][ T7120]  ? kstrtouint+0x7b/0xc0
[  211.330738][ T7120]  nf_setsockopt+0x195/0x1b0
[  211.330768][ T7120]  ipv6_setsockopt+0x10f/0x130
[  211.330798][ T7120]  tcp_setsockopt+0x93/0xb0
[  211.330835][ T7120]  sock_common_setsockopt+0x64/0x80
[  211.330857][ T7120]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  211.330879][ T7120]  __sys_setsockopt+0x187/0x200
[  211.330907][ T7120]  __x64_sys_setsockopt+0x66/0x80
[  211.330934][ T7120]  x64_sys_call+0x2a09/0x2e10
[  211.330968][ T7120]  do_syscall_64+0xc9/0x1c0
[  211.331073][ T7120]  ? clear_bhb_loop+0x25/0x80
[  211.331097][ T7120]  ? clear_bhb_loop+0x25/0x80
[  211.331122][ T7120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.331145][ T7120] RIP: 0033:0x7f436c35d169
[  211.331200][ T7120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.331221][ T7120] RSP: 002b:00007f436a9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  211.331242][ T7120] RAX: ffffffffffffffda RBX: 00007f436c575fa0 RCX: 00007f436c35d169
[  211.331255][ T7120] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  211.331269][ T7120] RBP: 00007f436a9bf090 R08: 0000000000000478 R09: 0000000000000000
[  211.331295][ T7120] R10: 00002000000029c0 R11: 0000000000000246 R12: 0000000000000001
[  211.331307][ T7120] R13: 0000000000000000 R14: 00007f436c575fa0 R15: 00007ffd3d30cd18
[  211.331325][ T7120]  </TASK>
[  211.664604][ T7127] loop4: detected capacity change from 0 to 512
[  211.708393][ T7129] netlink: 'syz.3.1209': attribute type 29 has an invalid length.
[  211.732250][   T29] audit: type=1326 audit(1744024650.340:2631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.756392][   T29] audit: type=1326 audit(1744024650.340:2632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.780049][   T29] audit: type=1326 audit(1744024650.340:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.804143][   T29] audit: type=1326 audit(1744024650.340:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.828602][   T29] audit: type=1326 audit(1744024650.340:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.852265][   T29] audit: type=1326 audit(1744024650.340:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.855790][ T7140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1213'.
[  211.876404][   T29] audit: type=1326 audit(1744024650.340:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.908874][   T29] audit: type=1326 audit(1744024650.340:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.932671][   T29] audit: type=1326 audit(1744024650.340:2639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7125 comm="syz.3.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  211.960166][ T7127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.973337][ T7127] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  211.979530][ T7147] pim6reg1: entered promiscuous mode
[  211.989733][ T7147] pim6reg1: entered allmulticast mode
[  212.010060][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.056032][ T7154] FAULT_INJECTION: forcing a failure.
[  212.056032][ T7154] name failslab, interval 1, probability 0, space 0, times 0
[  212.068762][ T7154] CPU: 0 UID: 0 PID: 7154 Comm: syz.3.1218 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  212.068800][ T7154] Tainted: [W]=WARN
[  212.068808][ T7154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  212.068885][ T7154] Call Trace:
[  212.068893][ T7154]  <TASK>
[  212.068901][ T7154]  dump_stack_lvl+0xf6/0x150
[  212.069081][ T7154]  dump_stack+0x15/0x1a
[  212.069102][ T7154]  should_fail_ex+0x261/0x270
[  212.069175][ T7154]  should_failslab+0x8f/0xb0
[  212.069252][ T7154]  __kmalloc_noprof+0xad/0x410
[  212.069293][ T7154]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  212.069336][ T7154]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  212.069369][ T7154]  ? ns_capable+0x7d/0xb0
[  212.069389][ T7154]  genl_rcv_msg+0x486/0x6f0
[  212.069484][ T7154]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  212.069507][ T7154]  ? should_fail_ex+0x31/0x270
[  212.069531][ T7154]  ? __rcu_read_unlock+0x4e/0x70
[  212.069559][ T7154]  ? avc_has_perm_noaudit+0x1cc/0x210
[  212.069604][ T7154]  netlink_rcv_skb+0x12f/0x230
[  212.069626][ T7154]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.069662][ T7154]  genl_rcv+0x28/0x40
[  212.069689][ T7154]  netlink_unicast+0x605/0x6c0
[  212.069724][ T7154]  netlink_sendmsg+0x609/0x720
[  212.069752][ T7154]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.069776][ T7154]  __sock_sendmsg+0x140/0x180
[  212.069809][ T7154]  ____sys_sendmsg+0x350/0x4e0
[  212.069914][ T7154]  __sys_sendmsg+0x1a0/0x240
[  212.069956][ T7154]  __x64_sys_sendmsg+0x46/0x50
[  212.069982][ T7154]  x64_sys_call+0x26f3/0x2e10
[  212.070004][ T7154]  do_syscall_64+0xc9/0x1c0
[  212.070033][ T7154]  ? clear_bhb_loop+0x25/0x80
[  212.070127][ T7154]  ? clear_bhb_loop+0x25/0x80
[  212.070148][ T7154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.070168][ T7154] RIP: 0033:0x7f4cd282d169
[  212.070222][ T7154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.070240][ T7154] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  212.070257][ T7154] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  212.070269][ T7154] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000005
[  212.070280][ T7154] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  212.070343][ T7154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.070354][ T7154] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  212.070371][ T7154]  </TASK>
[  212.368580][ T7160] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1221'.
[  212.377806][ T7160] 0ªX¹¦À: renamed from caif0
[  212.384525][ T7160] 0ªX¹¦À: entered allmulticast mode
[  212.390610][ T7160] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  212.422713][ T7168] Unsupported ieee802154 address type: 0
[  212.448890][ T7171] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  212.520259][ T7176] FAULT_INJECTION: forcing a failure.
[  212.520259][ T7176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.533500][ T7176] CPU: 1 UID: 0 PID: 7176 Comm: syz.3.1225 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  212.533536][ T7176] Tainted: [W]=WARN
[  212.533545][ T7176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  212.533556][ T7176] Call Trace:
[  212.533562][ T7176]  <TASK>
[  212.533568][ T7176]  dump_stack_lvl+0xf6/0x150
[  212.533593][ T7176]  dump_stack+0x15/0x1a
[  212.533607][ T7176]  should_fail_ex+0x261/0x270
[  212.533641][ T7176]  should_fail+0xb/0x10
[  212.533660][ T7176]  should_fail_usercopy+0x1a/0x20
[  212.533684][ T7176]  _copy_to_user+0x20/0xa0
[  212.533728][ T7176]  copy_siginfo_to_user+0x24/0xb0
[  212.533747][ T7176]  x64_setup_rt_frame+0x2bf/0x5a0
[  212.533801][ T7176]  arch_do_signal_or_restart+0x28c/0x4b0
[  212.533833][ T7176]  syscall_exit_to_user_mode+0x62/0x120
[  212.533857][ T7176]  do_syscall_64+0xd6/0x1c0
[  212.533958][ T7176]  ? clear_bhb_loop+0x25/0x80
[  212.533976][ T7176]  ? clear_bhb_loop+0x25/0x80
[  212.534045][ T7176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.534063][ T7176] RIP: 0033:0x7f4cd282d167
[  212.534076][ T7176] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  212.534090][ T7176] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  212.534131][ T7176] RAX: 0000000000000000 RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  212.534141][ T7176] RDX: 0000000000001000 RSI: 00002000000003c0 RDI: 0000000000000003
[  212.534151][ T7176] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  212.534162][ T7176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.534172][ T7176] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  212.534187][ T7176]  </TASK>
[  212.796014][ T7182] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1228'.
[  212.796249][ T7180] tipc: Started in network mode
[  212.809898][ T7180] tipc: Node identity aa03b955bce7, cluster identity 4711
[  212.817349][ T7180] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  212.826661][ T7179] tipc: Resetting bearer <eth:syzkaller0>
[  212.840237][ T7179] tipc: Disabling bearer <eth:syzkaller0>
[  212.924095][ T7190] FAULT_INJECTION: forcing a failure.
[  212.924095][ T7190] name failslab, interval 1, probability 0, space 0, times 0
[  212.936962][ T7190] CPU: 1 UID: 0 PID: 7190 Comm: syz.3.1232 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  212.936996][ T7190] Tainted: [W]=WARN
[  212.937018][ T7190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  212.937033][ T7190] Call Trace:
[  212.937040][ T7190]  <TASK>
[  212.937049][ T7190]  dump_stack_lvl+0xf6/0x150
[  212.937075][ T7190]  dump_stack+0x15/0x1a
[  212.937132][ T7190]  should_fail_ex+0x261/0x270
[  212.937164][ T7190]  should_failslab+0x8f/0xb0
[  212.937195][ T7190]  __kvmalloc_node_noprof+0x12c/0x520
[  212.937218][ T7190]  ? io_alloc_cache_init+0x33/0xa0
[  212.937239][ T7190]  ? percpu_ref_init+0x96/0x240
[  212.937277][ T7190]  io_alloc_cache_init+0x33/0xa0
[  212.937359][ T7190]  io_ring_ctx_alloc+0x2aa/0x690
[  212.937468][ T7190]  io_uring_create+0x10a/0x670
[  212.937496][ T7190]  __se_sys_io_uring_setup+0x1f7/0x210
[  212.937541][ T7190]  __x64_sys_io_uring_setup+0x31/0x40
[  212.937639][ T7190]  x64_sys_call+0x1741/0x2e10
[  212.937660][ T7190]  do_syscall_64+0xc9/0x1c0
[  212.937772][ T7190]  ? clear_bhb_loop+0x25/0x80
[  212.937797][ T7190]  ? clear_bhb_loop+0x25/0x80
[  212.937874][ T7190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.937897][ T7190] RIP: 0033:0x7f4cd282d169
[  212.937990][ T7190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.938052][ T7190] RSP: 002b:00007f4cd0e8efc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[  212.938074][ T7190] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  212.938088][ T7190] RDX: 0000200000000180 RSI: 0000200000000040 RDI: 000000000000362a
[  212.938102][ T7190] RBP: 0000200000000040 R08: 0000000000000000 R09: 0000200000000180
[  212.938116][ T7190] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  212.938208][ T7190] R13: 0000200000000140 R14: 000000000000362a R15: 0000200000000180
[  212.938227][ T7190]  </TASK>
[  213.168659][ T7196] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1235'.
[  213.243095][ T7207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1240'.
[  213.254561][ T7207] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1240'.
[  213.266463][ T7210] FAULT_INJECTION: forcing a failure.
[  213.266463][ T7210] name failslab, interval 1, probability 0, space 0, times 0
[  213.280094][ T7210] CPU: 1 UID: 0 PID: 7210 Comm: syz.4.1237 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  213.280127][ T7210] Tainted: [W]=WARN
[  213.280134][ T7210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  213.280153][ T7210] Call Trace:
[  213.280160][ T7210]  <TASK>
[  213.280168][ T7210]  dump_stack_lvl+0xf6/0x150
[  213.280197][ T7210]  dump_stack+0x15/0x1a
[  213.280218][ T7210]  should_fail_ex+0x261/0x270
[  213.280317][ T7210]  should_failslab+0x8f/0xb0
[  213.280353][ T7210]  kmem_cache_alloc_noprof+0x59/0x340
[  213.280379][ T7210]  ? __anon_vma_prepare+0xcf/0x310
[  213.280443][ T7210]  __anon_vma_prepare+0xcf/0x310
[  213.280535][ T7210]  ? do_wp_page+0x1861/0x24e0
[  213.280685][ T7210]  do_wp_page+0x1869/0x24e0
[  213.280777][ T7210]  ? __rcu_read_lock+0x36/0x50
[  213.280813][ T7210]  handle_mm_fault+0xc6c/0x2e80
[  213.280939][ T7210]  ? mas_walk+0x204/0x320
[  213.280966][ T7210]  ? __rcu_read_unlock+0x4e/0x70
[  213.281006][ T7210]  exc_page_fault+0x3b9/0x6a0
[  213.281036][ T7210]  asm_exc_page_fault+0x26/0x30
[  213.281105][ T7210] RIP: 0033:0x7f436c21fbe3
[  213.281123][ T7210] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  213.281144][ T7210] RSP: 002b:00007f436a99d4a0 EFLAGS: 00010202
[  213.281158][ T7210] RAX: 0000000000000400 RBX: 00007f436a99d540 RCX: 00007f436257e000
[  213.281169][ T7210] RDX: 00007f436a99d6e0 RSI: 0000000000000001 RDI: 00007f436a99d5e0
[  213.281180][ T7210] RBP: 00000000000000f9 R08: 0000000000000009 R09: 00000000000001bd
[  213.281240][ T7210] R10: 00000000000001d4 R11: 00007f436a99d540 R12: 0000000000000001
[  213.281251][ T7210] R13: 00007f436c3f93e0 R14: 0000000000000020 R15: 00007f436a99d5e0
[  213.281269][ T7210]  </TASK>
[  213.281280][ T7210] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  213.473260][ T7210] loop4: detected capacity change from 0 to 512
[  213.498266][ T7210] ext4 filesystem being mounted at /247/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  214.076605][ T7229] pim6reg1: entered promiscuous mode
[  214.082006][ T7229] pim6reg1: entered allmulticast mode
[  214.207282][ T7250] loop4: detected capacity change from 0 to 512
[  214.214141][ T7250] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  214.230688][ T7250] EXT4-fs (loop4): 1 truncate cleaned up
[  214.334699][ T7266] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1254'.
[  214.343693][ T7266] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1254'.
[  214.358386][ T7268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1256'.
[  214.368028][ T7268] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1256'.
[  214.797674][ T7297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.806319][ T7297] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.144826][ T7301] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  215.152083][ T7301] IPv6: NLM_F_CREATE should be set when creating new route
[  215.391010][ T7311] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1275'.
[  215.465807][ T7318] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1277'.
[  215.474805][ T7318] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1277'.
[  215.484815][ T7318] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1277'.
[  215.523123][ T7320] loop6: detected capacity change from 0 to 512
[  215.546507][ T7320] ext4 filesystem being mounted at /178/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.558783][ T7324] pim6reg1: entered promiscuous mode
[  215.564148][ T7324] pim6reg1: entered allmulticast mode
[  215.620207][ T7333] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1282'.
[  215.798523][ T7348] FAULT_INJECTION: forcing a failure.
[  215.798523][ T7348] name failslab, interval 1, probability 0, space 0, times 0
[  215.811308][ T7348] CPU: 0 UID: 0 PID: 7348 Comm: syz.0.1285 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  215.811342][ T7348] Tainted: [W]=WARN
[  215.811348][ T7348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  215.811360][ T7348] Call Trace:
[  215.811368][ T7348]  <TASK>
[  215.811377][ T7348]  dump_stack_lvl+0xf6/0x150
[  215.811406][ T7348]  dump_stack+0x15/0x1a
[  215.811422][ T7348]  should_fail_ex+0x261/0x270
[  215.811492][ T7348]  should_failslab+0x8f/0xb0
[  215.811528][ T7348]  kmem_cache_alloc_noprof+0x59/0x340
[  215.811553][ T7348]  ? __anon_vma_prepare+0x73/0x310
[  215.811620][ T7348]  __anon_vma_prepare+0x73/0x310
[  215.811647][ T7348]  ? do_wp_page+0x1861/0x24e0
[  215.811677][ T7348]  do_wp_page+0x1869/0x24e0
[  215.811708][ T7348]  ? __rcu_read_lock+0x36/0x50
[  215.811825][ T7348]  handle_mm_fault+0xc6c/0x2e80
[  215.811919][ T7348]  ? lock_vma_under_rcu+0x2d9/0x340
[  215.811953][ T7348]  ? __rcu_read_unlock+0x4e/0x70
[  215.812000][ T7348]  exc_page_fault+0x3b9/0x6a0
[  215.812026][ T7348]  asm_exc_page_fault+0x26/0x30
[  215.812089][ T7348] RIP: 0033:0x7f0b8120fbe3
[  215.812102][ T7348] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  215.812119][ T7348] RSP: 002b:00007f0b7f9744a0 EFLAGS: 00010202
[  215.812133][ T7348] RAX: 0000000000000400 RBX: 00007f0b7f974540 RCX: 00007f0b77555000
[  215.812145][ T7348] RDX: 00007f0b7f9746e0 RSI: 0000000000000000 RDI: 00007f0b7f9745e0
[  215.812157][ T7348] RBP: 00000000000000f9 R08: 000000000000000a R09: 00000000000003d4
[  215.812168][ T7348] R10: 00000000000003d8 R11: 00007f0b7f974540 R12: 0000000000000001
[  215.812179][ T7348] R13: 00007f0b813e93e0 R14: 0000000000000020 R15: 00007f0b7f9745e0
[  215.812197][ T7348]  </TASK>
[  215.812208][ T7348] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  216.147635][ T7351] pim6reg1: entered promiscuous mode
[  216.153030][ T7351] pim6reg1: entered allmulticast mode
[  216.353218][ T7357] loop6: detected capacity change from 0 to 512
[  216.381827][ T7357] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  216.449090][ T7357] EXT4-fs (loop6): 1 truncate cleaned up
[  216.570777][ T7364] loop4: detected capacity change from 0 to 256
[  216.581804][ T7366] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  216.589116][ T7366] IPv6: NLM_F_CREATE should be set when creating new route
[  216.684092][ T7375] loop4: detected capacity change from 0 to 164
[  216.693428][ T7375] Unable to read rock-ridge attributes
[  216.708375][ T7375] Unable to read rock-ridge attributes
[  216.731491][ T7377] pim6reg1: entered promiscuous mode
[  216.737582][ T7377] pim6reg1: entered allmulticast mode
[  217.580707][ T7410] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  217.580726][ T7410] IPv6: NLM_F_CREATE should be set when creating new route
[  217.635947][ T7414] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1309'.
[  217.893059][ T7437] loop6: detected capacity change from 0 to 128
[  217.900174][ T7437] vfat: Unknown parameter './bus'
[  217.922961][ T7437] loop6: detected capacity change from 0 to 256
[  217.971561][ T7439] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  217.978899][ T7439] IPv6: NLM_F_CREATE should be set when creating new route
[  218.074223][   T29] kauditd_printk_skb: 297 callbacks suppressed
[  218.074240][   T29] audit: type=1326 audit(1744024656.740:2937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.104381][   T29] audit: type=1326 audit(1744024656.740:2938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.127898][   T29] audit: type=1326 audit(1744024656.740:2939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.151335][   T29] audit: type=1326 audit(1744024656.740:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.174810][   T29] audit: type=1326 audit(1744024656.740:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.200347][   T29] audit: type=1326 audit(1744024656.870:2942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.224744][   T29] audit: type=1326 audit(1744024656.870:2943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.290643][   T29] audit: type=1326 audit(1744024656.960:2944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.314189][   T29] audit: type=1326 audit(1744024656.960:2945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.337768][   T29] audit: type=1326 audit(1744024656.960:2946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7444 comm="syz.6.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  218.445498][ T7460] loop6: detected capacity change from 0 to 164
[  218.453844][ T7460] Unable to read rock-ridge attributes
[  218.455797][ T7466] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  218.466593][ T7466] IPv6: NLM_F_CREATE should be set when creating new route
[  218.485299][ T7460] Unable to read rock-ridge attributes
[  218.537776][ T7470] loop4: detected capacity change from 0 to 512
[  218.597860][ T7470] ext4 filesystem being mounted at /267/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  218.687879][ T7501] loop4: detected capacity change from 0 to 512
[  218.720914][ T7507] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  218.728195][ T7507] IPv6: NLM_F_CREATE should be set when creating new route
[  218.729886][ T7501] ext4 filesystem being mounted at /268/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  218.845163][ T7523] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  218.873579][ T7526] Illegal XDP return value 4294967274 on prog  (id 790) dev syz_tun, expect packet loss!
[  219.439043][ T7553] __nla_validate_parse: 12 callbacks suppressed
[  219.439063][ T7553] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1364'.
[  219.597685][ T7562] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1368'.
[  219.607659][ T7562] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1368'.
[  219.618645][ T7563] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1369'.
[  219.631989][ T7563] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1369'.
[  219.765436][ T7572] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1373'.
[  219.784735][ T7572] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1373'.
[  220.055512][ T7564] netlink: 'syz.3.1367': attribute type 27 has an invalid length.
[  220.150097][ T7583] loop4: detected capacity change from 0 to 512
[  220.161910][ T7586] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1379'.
[  220.178632][ T7583] EXT4-fs (loop4): inodes count not valid: 115 vs 32
[  220.240444][ T7592] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1381'.
[  220.291735][ T7594] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1381'.
[  220.327200][ T7564] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.335406][ T7564] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.487008][ T7564] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  220.503408][ T7564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  220.557626][ T7564] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.566075][ T7564] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.574493][ T7564] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.583030][ T7564] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.595022][ T7590] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.656811][ T7590] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.673383][ T7599] loop6: detected capacity change from 0 to 512
[  220.691988][ T7599] ext4 filesystem being mounted at /207/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  220.709070][ T7590] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.749814][ T7590] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.780326][ T7597] pimreg0: tun_chr_ioctl cmd 35108
[  220.816649][ T7590] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  220.829177][ T7590] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  220.842992][ T7590] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  220.863493][ T7590] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  220.873631][ T7611] loop6: detected capacity change from 0 to 164
[  220.892691][ T7611] Unable to read rock-ridge attributes
[  220.899484][ T7611] Unable to read rock-ridge attributes
[  221.032986][ T7625] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.087507][ T7625] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.109606][ T7633] loop6: detected capacity change from 0 to 164
[  221.131813][ T7633] Unable to read rock-ridge attributes
[  221.141538][ T7625] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.158087][ T7633] Unable to read rock-ridge attributes
[  221.197802][ T7625] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.771559][ T7674] loop4: detected capacity change from 0 to 164
[  221.782705][ T7674] Unable to read rock-ridge attributes
[  221.808245][ T7674] Unable to read rock-ridge attributes
[  221.959381][ T7689] lo speed is unknown, defaulting to 1000
[  221.966145][ T7689] lo speed is unknown, defaulting to 1000
[  221.972297][ T7689] lo speed is unknown, defaulting to 1000
[  221.979196][ T7689] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  221.989475][ T7689] lo speed is unknown, defaulting to 1000
[  221.996417][ T7689] lo speed is unknown, defaulting to 1000
[  222.002647][ T7689] lo speed is unknown, defaulting to 1000
[  222.008944][ T7689] lo speed is unknown, defaulting to 1000
[  222.015471][ T7689] lo speed is unknown, defaulting to 1000
[  222.021502][ T7689] lo speed is unknown, defaulting to 1000
[  222.028317][ T7689] lo speed is unknown, defaulting to 1000
[  222.034445][ T7689] lo speed is unknown, defaulting to 1000
[  222.040679][ T7689] lo speed is unknown, defaulting to 1000
[  222.047040][ T7689] lo speed is unknown, defaulting to 1000
[  222.053201][ T7689] lo speed is unknown, defaulting to 1000
[  222.060150][ T7689] lo speed is unknown, defaulting to 1000
[  222.066278][ T7689] lo speed is unknown, defaulting to 1000
[  222.072400][ T7689] lo speed is unknown, defaulting to 1000
[  222.078615][ T7689] lo speed is unknown, defaulting to 1000
[  222.367051][ T7715] SELinux: ebitmap: truncated map
[  222.373752][ T7715] SELinux: failed to load policy
[  222.394821][ T7715] loop4: detected capacity change from 0 to 1024
[  222.477778][ T7722] loop6: detected capacity change from 0 to 512
[  222.490286][ T7724] loop4: detected capacity change from 0 to 1024
[  222.501587][ T7722] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  222.511793][ T7722] EXT4-fs (loop6): orphan cleanup on readonly fs
[  222.523391][ T7722] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.1432: invalid indirect mapped block 256 (level 2)
[  222.552500][ T7722] EXT4-fs (loop6): 2 truncates cleaned up
[  222.604709][ T7729] loop4: detected capacity change from 0 to 164
[  222.620393][ T7729] Unable to read rock-ridge attributes
[  222.631082][ T7729] Unable to read rock-ridge attributes
[  222.653678][ T7731] hsr0: entered promiscuous mode
[  222.679867][ T7733] FAULT_INJECTION: forcing a failure.
[  222.679867][ T7733] name failslab, interval 1, probability 0, space 0, times 0
[  222.692625][ T7733] CPU: 0 UID: 0 PID: 7733 Comm: syz.4.1436 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  222.692796][ T7733] Tainted: [W]=WARN
[  222.692804][ T7733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  222.692819][ T7733] Call Trace:
[  222.692857][ T7733]  <TASK>
[  222.692867][ T7733]  dump_stack_lvl+0xf6/0x150
[  222.692896][ T7733]  dump_stack+0x15/0x1a
[  222.692913][ T7733]  should_fail_ex+0x261/0x270
[  222.693072][ T7733]  should_failslab+0x8f/0xb0
[  222.693103][ T7733]  __kmalloc_cache_noprof+0x55/0x320
[  222.693126][ T7733]  ? nsim_fib_event_nb+0x1ae/0xd40
[  222.693154][ T7733]  ? fib6_nh_init+0x677/0x1610
[  222.693178][ T7733]  nsim_fib_event_nb+0x1ae/0xd40
[  222.693257][ T7733]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  222.693287][ T7733]  atomic_notifier_call_chain+0x76/0x1d0
[  222.693312][ T7733]  ? fib6_add_1+0x9f5/0xaf0
[  222.693336][ T7733]  call_fib_notifiers+0x66/0xa0
[  222.693374][ T7733]  call_fib6_notifiers+0x32/0x40
[  222.693473][ T7733]  fib6_add+0xec9/0x21c0
[  222.693496][ T7733]  ? __ipv6_addr_type+0x1f2/0x210
[  222.693602][ T7733]  ? ip6_route_info_create+0x9ad/0xa90
[  222.693630][ T7733]  ip6_route_add+0x71/0x120
[  222.693708][ T7733]  rt6_add_dflt_router+0x102/0x1b0
[  222.693742][ T7733]  ndisc_router_discovery+0x847/0x1c10
[  222.693786][ T7733]  ? ip6_pol_route+0x701/0xb90
[  222.693833][ T7733]  ? ip6_pol_route_input+0x40/0x50
[  222.693852][ T7733]  ? fib6_rule_lookup+0x368/0x4e0
[  222.693883][ T7733]  ? ip6_route_input+0x429/0x500
[  222.693914][ T7733]  ndisc_rcv+0x2a1/0x3d0
[  222.693978][ T7733]  icmpv6_rcv+0xde3/0x1260
[  222.694013][ T7733]  ? ipv6_chk_mcast_addr+0x1f2/0x210
[  222.694057][ T7733]  ? __pfx_icmpv6_rcv+0x10/0x10
[  222.694087][ T7733]  ip6_protocol_deliver_rcu+0xb1e/0x10b0
[  222.694178][ T7733]  ip6_input+0xc2/0x1b0
[  222.694209][ T7733]  ? __pfx_ip6_input_finish+0x10/0x10
[  222.694242][ T7733]  ip6_mc_input+0x34a/0x490
[  222.694277][ T7733]  ? __pfx_ip6_mc_input+0x10/0x10
[  222.694316][ T7733]  ip6_rcv_finish+0x323/0x330
[  222.694420][ T7733]  ipv6_rcv+0x78/0x150
[  222.694448][ T7733]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  222.694486][ T7733]  __netif_receive_skb+0xa5/0x290
[  222.694533][ T7733]  netif_receive_skb+0x4f/0x330
[  222.694559][ T7733]  ? tun_vnet_hdr_to_skb+0x56f/0xd90
[  222.694582][ T7733]  ? tun_rx_batched+0xcc/0x450
[  222.694612][ T7733]  tun_rx_batched+0x104/0x450
[  222.694642][ T7733]  tun_get_user+0x1e8d/0x2640
[  222.694791][ T7733]  ? kfifo_copy_to_user+0x1d0/0x1f0
[  222.694883][ T7733]  ? ref_tracker_alloc+0x1ff/0x310
[  222.694921][ T7733]  tun_chr_write_iter+0x188/0x240
[  222.694949][ T7733]  vfs_write+0x79b/0x950
[  222.695022][ T7733]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  222.695058][ T7733]  ksys_write+0xeb/0x1b0
[  222.695186][ T7733]  __x64_sys_write+0x42/0x50
[  222.695219][ T7733]  x64_sys_call+0x2a45/0x2e10
[  222.695268][ T7733]  do_syscall_64+0xc9/0x1c0
[  222.695352][ T7733]  ? clear_bhb_loop+0x25/0x80
[  222.695477][ T7733]  ? clear_bhb_loop+0x25/0x80
[  222.695501][ T7733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.695522][ T7733] RIP: 0033:0x7f436c35bc1f
[  222.695540][ T7733] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  222.695561][ T7733] RSP: 002b:00007f436a9bf000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  222.695584][ T7733] RAX: ffffffffffffffda RBX: 00007f436c575fa0 RCX: 00007f436c35bc1f
[  222.695600][ T7733] RDX: 00000000000000ae RSI: 0000200000000000 RDI: 00000000000000c8
[  222.695614][ T7733] RBP: 00007f436a9bf090 R08: 0000000000000000 R09: 0000000000000000
[  222.695630][ T7733] R10: 00000000000000ae R11: 0000000000000293 R12: 0000000000000001
[  222.695644][ T7733] R13: 0000000000000000 R14: 00007f436c575fa0 R15: 00007ffd3d30cd18
[  222.695719][ T7733]  </TASK>
[  223.061013][ T7733] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  223.263296][ T7747] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  223.320208][ T7755] loop6: detected capacity change from 0 to 1024
[  223.574931][ T7766] loop6: detected capacity change from 0 to 164
[  223.582016][ T7766] Unable to read rock-ridge attributes
[  223.588260][ T7766] Unable to read rock-ridge attributes
[  223.619399][ T7768] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.656307][ T7768] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.716934][ T7768] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.776674][ T7768] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.852613][ T7768] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.864343][ T7768] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.875910][ T7768] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.887658][ T7768] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.085255][ T7783] FAULT_INJECTION: forcing a failure.
[  224.085255][ T7783] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  224.098913][ T7783] CPU: 0 UID: 0 PID: 7783 Comm: syz.4.1453 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  224.098949][ T7783] Tainted: [W]=WARN
[  224.098956][ T7783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  224.098968][ T7783] Call Trace:
[  224.098975][ T7783]  <TASK>
[  224.098983][ T7783]  dump_stack_lvl+0xf6/0x150
[  224.099041][ T7783]  dump_stack+0x15/0x1a
[  224.099089][ T7783]  should_fail_ex+0x261/0x270
[  224.099163][ T7783]  should_fail+0xb/0x10
[  224.099198][ T7783]  should_fail_usercopy+0x1a/0x20
[  224.099225][ T7783]  _copy_from_iter+0xd8/0xd10
[  224.099329][ T7783]  ? __alloc_frozen_pages_noprof+0x1a6/0x360
[  224.099372][ T7783]  copy_page_from_iter+0x14f/0x280
[  224.099432][ T7783]  anon_pipe_write+0x3b1/0xb10
[  224.099465][ T7783]  vfs_write+0x79b/0x950
[  224.099502][ T7783]  ? __pfx_anon_pipe_write+0x10/0x10
[  224.099530][ T7783]  ksys_write+0xeb/0x1b0
[  224.099565][ T7783]  __x64_sys_write+0x42/0x50
[  224.099665][ T7783]  x64_sys_call+0x2a45/0x2e10
[  224.099693][ T7783]  do_syscall_64+0xc9/0x1c0
[  224.099728][ T7783]  ? clear_bhb_loop+0x25/0x80
[  224.099754][ T7783]  ? clear_bhb_loop+0x25/0x80
[  224.099845][ T7783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.099878][ T7783] RIP: 0033:0x7f436c35d169
[  224.099896][ T7783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.099917][ T7783] RSP: 002b:00007f436a9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  224.099939][ T7783] RAX: ffffffffffffffda RBX: 00007f436c575fa0 RCX: 00007f436c35d169
[  224.099968][ T7783] RDX: 00000000fffffdef RSI: 00002000000001c0 RDI: 0000000000000000
[  224.099982][ T7783] RBP: 00007f436a9bf090 R08: 0000000000000000 R09: 0000000000000000
[  224.099995][ T7783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  224.100009][ T7783] R13: 0000000000000000 R14: 00007f436c575fa0 R15: 00007ffd3d30cd18
[  224.100032][ T7783]  </TASK>
[  224.472871][ T7801] pim6reg1: entered promiscuous mode
[  224.478296][ T7801] pim6reg1: entered allmulticast mode
[  224.767964][ T7813] __nla_validate_parse: 18 callbacks suppressed
[  224.767979][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1463'.
[  224.913875][ T7817] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1465'.
[  224.923526][ T7817] netlink: 33924 bytes leftover after parsing attributes in process `syz.6.1465'.
[  224.986228][ T7818] loop6: detected capacity change from 0 to 128
[  225.004384][ T7818] ext4 filesystem being mounted at /233/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  225.331974][ T7824] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1467'.
[  225.353548][ T7625] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.369226][ T7625] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.380547][ T7625] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.391638][ T7625] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  225.419964][ T7828] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1469'.
[  225.590034][ T7839] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1472'.
[  225.615242][ T7838] dvmrp5: entered allmulticast mode
[  225.621553][ T7838] dvmrp5: left allmulticast mode
[  225.628421][ T7838] lo: left allmulticast mode
[  225.759420][ T4634] EXT4-fs unmount: 21 callbacks suppressed
[  225.759494][ T4634] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  225.810337][   T29] kauditd_printk_skb: 128 callbacks suppressed
[  225.810352][   T29] audit: type=1326 audit(1744024664.480:3075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7846 comm="syz.6.1474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  225.840096][   T29] audit: type=1326 audit(1744024664.480:3076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7846 comm="syz.6.1474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  225.869822][ T7849] netlink: 'syz.6.1475': attribute type 10 has an invalid length.
[  225.878109][ T7849] bridge0: left allmulticast mode
[  225.884855][ T7849] bridge0: entered promiscuous mode
[  225.891403][ T7849] $Hÿ: (slave bridge0): Enslaving as an active interface with an up link
[  225.925288][   T29] audit: type=1326 audit(1744024664.480:3077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7846 comm="syz.6.1474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f679720d169 code=0x7ffc0000
[  225.948756][   T29] audit: type=1400 audit(1744024664.500:3078): avc:  denied  { write } for  pid=7848 comm="syz.6.1475" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  226.027424][ T7858] FAULT_INJECTION: forcing a failure.
[  226.027424][ T7858] name failslab, interval 1, probability 0, space 0, times 0
[  226.040239][ T7858] CPU: 0 UID: 0 PID: 7858 Comm: syz.6.1478 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  226.040295][ T7858] Tainted: [W]=WARN
[  226.040303][ T7858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  226.040318][ T7858] Call Trace:
[  226.040324][ T7858]  <TASK>
[  226.040332][ T7858]  dump_stack_lvl+0xf6/0x150
[  226.040363][ T7858]  dump_stack+0x15/0x1a
[  226.040381][ T7858]  should_fail_ex+0x261/0x270
[  226.040411][ T7858]  should_failslab+0x8f/0xb0
[  226.040467][ T7858]  __kmalloc_cache_noprof+0x55/0x320
[  226.040498][ T7858]  ? selinux_netlbl_sock_genattr+0x87/0x260
[  226.040588][ T7858]  ? __hrtimer_setup+0x13d/0x170
[  226.040622][ T7858]  selinux_netlbl_sock_genattr+0x87/0x260
[  226.040666][ T7858]  selinux_netlbl_socket_post_create+0x69/0x100
[  226.040737][ T7858]  selinux_socket_post_create+0x211/0x2a0
[  226.040775][ T7858]  security_socket_post_create+0x5b/0xa0
[  226.040825][ T7858]  __sock_create+0x35b/0x5a0
[  226.040850][ T7858]  sock_create_kern+0x38/0x50
[  226.040872][ T7858]  mptcp_subflow_create_socket+0x87/0x640
[  226.040942][ T7858]  ? avc_has_perm_noaudit+0x1cc/0x210
[  226.041058][ T7858]  __mptcp_nmpc_sk+0xb9/0x3d0
[  226.041086][ T7858]  mptcp_connect+0x59/0x800
[  226.041130][ T7858]  __inet_stream_connect+0x15c/0x7c0
[  226.041158][ T7858]  ? _raw_spin_unlock_bh+0x36/0x40
[  226.041182][ T7858]  ? _raw_spin_unlock_bh+0x36/0x40
[  226.041204][ T7858]  ? lock_sock_nested+0x114/0x140
[  226.041279][ T7858]  ? selinux_netlbl_socket_connect+0x112/0x130
[  226.041326][ T7858]  inet_stream_connect+0x48/0x70
[  226.041404][ T7858]  ? __pfx_inet_stream_connect+0x10/0x10
[  226.041443][ T7858]  __sys_connect+0x192/0x1b0
[  226.041477][ T7858]  __x64_sys_connect+0x41/0x50
[  226.041504][ T7858]  x64_sys_call+0x2030/0x2e10
[  226.041612][ T7858]  do_syscall_64+0xc9/0x1c0
[  226.041646][ T7858]  ? clear_bhb_loop+0x25/0x80
[  226.041670][ T7858]  ? clear_bhb_loop+0x25/0x80
[  226.041743][ T7858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.041764][ T7858] RIP: 0033:0x7f679720d169
[  226.041778][ T7858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.041855][ T7858] RSP: 002b:00007f6795877038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  226.041877][ T7858] RAX: ffffffffffffffda RBX: 00007f6797425fa0 RCX: 00007f679720d169
[  226.041892][ T7858] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 000000000000000b
[  226.041969][ T7858] RBP: 00007f6795877090 R08: 0000000000000000 R09: 0000000000000000
[  226.042055][ T7858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  226.042070][ T7858] R13: 0000000000000000 R14: 00007f6797425fa0 R15: 00007ffdae7cf628
[  226.042093][ T7858]  </TASK>
[  226.356354][ T7860] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1479'.
[  226.403447][ T7868] loop6: detected capacity change from 0 to 128
[  226.424343][ T7868] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  226.443924][ T7868] ext4 filesystem being mounted at /240/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  226.480807][ T7875] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1483'.
[  226.489894][ T7875] netlink: 33924 bytes leftover after parsing attributes in process `syz.0.1483'.
[  226.523681][   T29] audit: type=1326 audit(1744024665.190:3079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.547289][   T29] audit: type=1326 audit(1744024665.190:3080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.570754][   T29] audit: type=1326 audit(1744024665.190:3081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.599594][   T29] audit: type=1326 audit(1744024665.190:3082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.623151][   T29] audit: type=1326 audit(1744024665.190:3083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.623191][   T29] audit: type=1326 audit(1744024665.190:3084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7876 comm="syz.4.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  226.737269][ T7884] pim6reg1: entered promiscuous mode
[  226.742656][ T7884] pim6reg1: entered allmulticast mode
[  226.750121][ T7877] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1485'.
[  226.764181][ T7877] loop4: detected capacity change from 0 to 512
[  226.771888][ T7877] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  226.786073][ T7877] EXT4-fs (loop4): 1 truncate cleaned up
[  226.792502][ T7877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.829493][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.846079][ T7887] syz_tun: refused to change device tx_queue_len
[  226.856191][ T7889] loop4: detected capacity change from 0 to 256
[  226.923144][ T7898] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  226.930457][ T7898] IPv6: NLM_F_CREATE should be set when creating new route
[  227.194790][ T4634] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  227.244688][ T7908] loop6: detected capacity change from 0 to 512
[  227.257010][ T7910] capability: warning: `syz.4.1498' uses deprecated v2 capabilities in a way that may be insecure
[  227.283053][ T7908] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  227.308094][ T7908] EXT4-fs (loop6): 1 truncate cleaned up
[  227.316454][ T7908] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.336894][ T7908] program syz.6.1497 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  227.346698][ T7908] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  227.378347][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.597797][ T7921] FAULT_INJECTION: forcing a failure.
[  227.597797][ T7921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  227.611150][ T7921] CPU: 0 UID: 0 PID: 7921 Comm: syz.4.1501 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  227.611185][ T7921] Tainted: [W]=WARN
[  227.611191][ T7921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  227.611204][ T7921] Call Trace:
[  227.611251][ T7921]  <TASK>
[  227.611260][ T7921]  dump_stack_lvl+0xf6/0x150
[  227.611288][ T7921]  dump_stack+0x15/0x1a
[  227.611305][ T7921]  should_fail_ex+0x261/0x270
[  227.611345][ T7921]  should_fail+0xb/0x10
[  227.611368][ T7921]  should_fail_usercopy+0x1a/0x20
[  227.611400][ T7921]  _copy_from_user+0x1c/0xa0
[  227.611432][ T7921]  move_addr_to_kernel+0x8c/0x130
[  227.611516][ T7921]  __sys_connect+0x6c/0x1b0
[  227.611543][ T7921]  __x64_sys_connect+0x41/0x50
[  227.611566][ T7921]  x64_sys_call+0x2030/0x2e10
[  227.611590][ T7921]  do_syscall_64+0xc9/0x1c0
[  227.611679][ T7921]  ? clear_bhb_loop+0x25/0x80
[  227.611700][ T7921]  ? clear_bhb_loop+0x25/0x80
[  227.611726][ T7921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.611781][ T7921] RIP: 0033:0x7f436c35d169
[  227.611798][ T7921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.611818][ T7921] RSP: 002b:00007f436a97d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  227.611838][ T7921] RAX: ffffffffffffffda RBX: 00007f436c576160 RCX: 00007f436c35d169
[  227.611850][ T7921] RDX: 0000000000000010 RSI: 0000200000000380 RDI: 0000000000000009
[  227.611861][ T7921] RBP: 00007f436a97d090 R08: 0000000000000000 R09: 0000000000000000
[  227.611873][ T7921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.611886][ T7921] R13: 0000000000000000 R14: 00007f436c576160 R15: 00007ffd3d30cd18
[  227.611928][ T7921]  </TASK>
[  227.958982][ T7924] loop6: detected capacity change from 0 to 512
[  227.967637][ T7924] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  227.989108][ T7924] EXT4-fs (loop6): 1 truncate cleaned up
[  227.995565][ T7924] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.998052][ T7927] netlink: 'syz.3.1503': attribute type 1 has an invalid length.
[  228.022023][ T7927] 8021q: adding VLAN 0 to HW filter on device bond1
[  228.039298][ T7927] bond1: (slave gretap1): making interface the new active one
[  228.047804][ T7927] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  228.090194][ T7934] FAULT_INJECTION: forcing a failure.
[  228.090194][ T7934] name failslab, interval 1, probability 0, space 0, times 0
[  228.103036][ T7934] CPU: 0 UID: 0 PID: 7934 Comm: syz.3.1505 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  228.103151][ T7934] Tainted: [W]=WARN
[  228.103235][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  228.103250][ T7934] Call Trace:
[  228.103256][ T7934]  <TASK>
[  228.103265][ T7934]  dump_stack_lvl+0xf6/0x150
[  228.103295][ T7934]  dump_stack+0x15/0x1a
[  228.103315][ T7934]  should_fail_ex+0x261/0x270
[  228.103349][ T7934]  should_failslab+0x8f/0xb0
[  228.103392][ T7934]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  228.103420][ T7934]  ? __alloc_skb+0x10d/0x320
[  228.103449][ T7934]  __alloc_skb+0x10d/0x320
[  228.103484][ T7934]  xfrm_alloc_compat+0x145/0xe80
[  228.103527][ T7934]  ? copy_to_user_state_extra+0xbfe/0xc10
[  228.103628][ T7934]  dump_one_state+0x1c8/0x250
[  228.103735][ T7934]  xfrm_alloc_userspi+0x5c4/0x720
[  228.103772][ T7934]  xfrm_user_rcv_msg+0x59d/0x6a0
[  228.103818][ T7934]  ? __rcu_read_unlock+0x4e/0x70
[  228.104010][ T7934]  netlink_rcv_skb+0x12f/0x230
[  228.104037][ T7934]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  228.104081][ T7934]  xfrm_netlink_rcv+0x47/0x60
[  228.104155][ T7934]  netlink_unicast+0x605/0x6c0
[  228.104182][ T7934]  netlink_sendmsg+0x609/0x720
[  228.104217][ T7934]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.104247][ T7934]  __sock_sendmsg+0x140/0x180
[  228.104316][ T7934]  ____sys_sendmsg+0x350/0x4e0
[  228.104349][ T7934]  __sys_sendmsg+0x1a0/0x240
[  228.104396][ T7934]  __x64_sys_sendmsg+0x46/0x50
[  228.104503][ T7934]  x64_sys_call+0x26f3/0x2e10
[  228.104530][ T7934]  do_syscall_64+0xc9/0x1c0
[  228.104566][ T7934]  ? clear_bhb_loop+0x25/0x80
[  228.104585][ T7934]  ? clear_bhb_loop+0x25/0x80
[  228.104603][ T7934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.104645][ T7934] RIP: 0033:0x7f4cd282d169
[  228.104659][ T7934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.104674][ T7934] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.104690][ T7934] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  228.104700][ T7934] RDX: 0000000000040808 RSI: 0000200000001680 RDI: 0000000000000003
[  228.104710][ T7934] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  228.104720][ T7934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.104729][ T7934] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  228.104789][ T7934]  </TASK>
[  228.468446][ T7948] loop4: detected capacity change from 0 to 512
[  228.480706][ T7948] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  228.492406][ T7948] EXT4-fs (loop4): 1 truncate cleaned up
[  228.499508][ T7948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.527339][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.798087][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.859954][ T7962] program syz.6.1516 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  229.589563][ T7993] dummy0 speed is unknown, defaulting to 1000
[  229.622110][ T7993] lo speed is unknown, defaulting to 1000
[  229.998839][ T8024] loop4: detected capacity change from 0 to 1024
[  230.005550][ T8024] EXT4-fs: Ignoring removed orlov option
[  230.019288][ T8024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.228988][ T8035] __nla_validate_parse: 14 callbacks suppressed
[  230.229006][ T8035] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1541'.
[  230.272998][ T8039] loop6: detected capacity change from 0 to 512
[  230.285789][ T8039] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  230.316618][ T8039] EXT4-fs (loop6): 1 truncate cleaned up
[  230.354432][ T8039] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.410698][ T8042] FAULT_INJECTION: forcing a failure.
[  230.410698][ T8042] name failslab, interval 1, probability 0, space 0, times 0
[  230.423475][ T8042] CPU: 0 UID: 0 PID: 8042 Comm: syz.3.1542 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  230.423508][ T8042] Tainted: [W]=WARN
[  230.423516][ T8042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  230.423546][ T8042] Call Trace:
[  230.423552][ T8042]  <TASK>
[  230.423559][ T8042]  dump_stack_lvl+0xf6/0x150
[  230.423594][ T8042]  dump_stack+0x15/0x1a
[  230.423615][ T8042]  should_fail_ex+0x261/0x270
[  230.423649][ T8042]  should_failslab+0x8f/0xb0
[  230.423685][ T8042]  __kmalloc_noprof+0xad/0x410
[  230.423712][ T8042]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  230.423770][ T8042]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  230.423916][ T8042]  ? ns_capable+0x7d/0xb0
[  230.423988][ T8042]  genl_rcv_msg+0x486/0x6f0
[  230.424094][ T8042]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  230.424123][ T8042]  ? should_fail_ex+0x31/0x270
[  230.424154][ T8042]  ? __rcu_read_unlock+0x4e/0x70
[  230.424245][ T8042]  ? avc_has_perm_noaudit+0x1cc/0x210
[  230.424281][ T8042]  netlink_rcv_skb+0x12f/0x230
[  230.424306][ T8042]  ? __pfx_genl_rcv_msg+0x10/0x10
[  230.424351][ T8042]  genl_rcv+0x28/0x40
[  230.424464][ T8042]  netlink_unicast+0x605/0x6c0
[  230.424493][ T8042]  netlink_sendmsg+0x609/0x720
[  230.424528][ T8042]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.424564][ T8042]  __sock_sendmsg+0x140/0x180
[  230.424605][ T8042]  ____sys_sendmsg+0x350/0x4e0
[  230.424650][ T8042]  __sys_sendmsg+0x1a0/0x240
[  230.424700][ T8042]  __x64_sys_sendmsg+0x46/0x50
[  230.424783][ T8042]  x64_sys_call+0x26f3/0x2e10
[  230.424811][ T8042]  do_syscall_64+0xc9/0x1c0
[  230.424842][ T8042]  ? clear_bhb_loop+0x25/0x80
[  230.424905][ T8042]  ? clear_bhb_loop+0x25/0x80
[  230.424936][ T8042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.424960][ T8042] RIP: 0033:0x7f4cd282d169
[  230.424978][ T8042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.425000][ T8042] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  230.425022][ T8042] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  230.425037][ T8042] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  230.425129][ T8042] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  230.425144][ T8042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.425158][ T8042] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  230.425182][ T8042]  </TASK>
[  230.748357][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1540'.
[  230.763446][ T8050] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1545'.
[  230.834323][ T8059] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1548'.
[  230.846433][ T8059] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1548'.
[  230.862569][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.874071][   T29] kauditd_printk_skb: 129 callbacks suppressed
[  230.874086][   T29] audit: type=1400 audit(1744024669.540:3214): avc:  denied  { bind } for  pid=8060 comm="syz.0.1549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  230.903801][   T29] audit: type=1400 audit(1744024669.570:3215): avc:  denied  { listen } for  pid=8060 comm="syz.0.1549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  230.923668][   T29] audit: type=1400 audit(1744024669.570:3216): avc:  denied  { write } for  pid=8060 comm="syz.0.1549" path="socket:[21406]" dev="sockfs" ino=21406 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  230.965155][ T8065] loop4: detected capacity change from 0 to 128
[  230.979297][ T8065] bio_check_eod: 25 callbacks suppressed
[  230.979311][ T8065] syz.4.1550: attempt to access beyond end of device
[  230.979311][ T8065] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[  230.998690][ T8065] syz.4.1550: attempt to access beyond end of device
[  230.998690][ T8065] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[  231.014807][   T29] audit: type=1400 audit(1744024669.690:3217): avc:  denied  { shutdown } for  pid=8060 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  231.015533][ T8061] sch_tbf: peakrate 2147483647 is lower than or equals to rate 2831599472947593698 !
[  231.044701][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.044701][ T8065] loop4: rw=2049, sector=185, nr_sectors = 16 limit=128
[  231.087130][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.087130][ T8065] loop4: rw=2049, sector=209, nr_sectors = 8 limit=128
[  231.088089][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.103407][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.103407][ T8065] loop4: rw=2049, sector=225, nr_sectors = 8 limit=128
[  231.139813][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.139813][ T8065] loop4: rw=2049, sector=241, nr_sectors = 8 limit=128
[  231.153691][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.153691][ T8065] loop4: rw=2049, sector=257, nr_sectors = 8 limit=128
[  231.184566][   T29] audit: type=1326 audit(1744024669.850:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.5.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d337d169 code=0x7ffc0000
[  231.208070][   T29] audit: type=1326 audit(1744024669.850:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.5.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fb0d337d169 code=0x7ffc0000
[  231.231422][   T29] audit: type=1326 audit(1744024669.850:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.5.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d337d169 code=0x7ffc0000
[  231.255829][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.255829][ T8065] loop4: rw=2049, sector=273, nr_sectors = 8 limit=128
[  231.269643][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.269643][ T8065] loop4: rw=2049, sector=289, nr_sectors = 8 limit=128
[  231.283749][ T8065] syz.4.1550: attempt to access beyond end of device
[  231.283749][ T8065] loop4: rw=2049, sector=305, nr_sectors = 8 limit=128
[  231.300600][ T8065] Buffer I/O error on dev loop4, logical block 313, lost async page write
[  231.310004][ T8065] Buffer I/O error on dev loop4, logical block 314, lost async page write
[  231.318955][ T8065] Buffer I/O error on dev loop4, logical block 315, lost async page write
[  231.359062][ T8065] Buffer I/O error on dev loop4, logical block 316, lost async page write
[  231.372819][ T8095] pim6reg1: entered promiscuous mode
[  231.378446][ T8095] pim6reg1: entered allmulticast mode
[  231.450688][ T8098] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1561'.
[  231.474663][ T8065] Buffer I/O error on dev loop4, logical block 317, lost async page write
[  231.528551][ T8065] Buffer I/O error on dev loop4, logical block 318, lost async page write
[  231.540014][ T8065] Buffer I/O error on dev loop4, logical block 319, lost async page write
[  231.617721][ T8103] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1562'.
[  231.628746][ T8103] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1562'.
[  231.771450][ T8111] ref_ctr_offset mismatch. inode: 0x6e1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  231.837384][ T8113] FAULT_INJECTION: forcing a failure.
[  231.837384][ T8113] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.850597][ T8113] CPU: 1 UID: 0 PID: 8113 Comm: syz.3.1566 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  231.850630][ T8113] Tainted: [W]=WARN
[  231.850637][ T8113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  231.850651][ T8113] Call Trace:
[  231.850658][ T8113]  <TASK>
[  231.850708][ T8113]  dump_stack_lvl+0xf6/0x150
[  231.850734][ T8113]  dump_stack+0x15/0x1a
[  231.850753][ T8113]  should_fail_ex+0x261/0x270
[  231.850783][ T8113]  should_fail+0xb/0x10
[  231.850808][ T8113]  should_fail_usercopy+0x1a/0x20
[  231.850893][ T8113]  _copy_from_user+0x1c/0xa0
[  231.850929][ T8113]  __sys_bpf+0x16a/0x800
[  231.850956][ T8113]  __x64_sys_bpf+0x43/0x50
[  231.850975][ T8113]  x64_sys_call+0x23da/0x2e10
[  231.850995][ T8113]  do_syscall_64+0xc9/0x1c0
[  231.851066][ T8113]  ? clear_bhb_loop+0x25/0x80
[  231.851086][ T8113]  ? clear_bhb_loop+0x25/0x80
[  231.851141][ T8113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.851183][ T8113] RIP: 0033:0x7f4cd282d169
[  231.851200][ T8113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.851220][ T8113] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  231.851241][ T8113] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  231.851255][ T8113] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  231.851268][ T8113] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000000
[  231.851282][ T8113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.851358][ T8113] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  231.851381][ T8113]  </TASK>
[  232.080030][ T8119] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1569'.
[  232.090056][   T29] audit: type=1326 audit(1744024670.760:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.4.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  232.117441][ T8119] 0·: renamed from hsr_slave_1
[  232.153659][   T29] audit: type=1326 audit(1744024670.790:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.4.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  232.177096][   T29] audit: type=1326 audit(1744024670.790:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.4.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f436c35d169 code=0x7ffc0000
[  232.211338][ T8119] 0·: entered allmulticast mode
[  232.228928][ T8119] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  232.245681][ T8120] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1569'.
[  232.258365][ T8127] loop4: detected capacity change from 0 to 512
[  232.274571][ T8125] syzkaller1: entered promiscuous mode
[  232.280832][ T8125] syzkaller1: entered allmulticast mode
[  232.299108][ T8127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.312979][ T8127] ext4 filesystem being mounted at /326/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  232.380236][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.396480][ T8139] ipvlan2: entered promiscuous mode
[  232.402176][ T8139] bridge0: port 3(ipvlan2) entered blocking state
[  232.408706][ T8139] bridge0: port 3(ipvlan2) entered disabled state
[  232.433069][ T8139] ipvlan2: entered allmulticast mode
[  232.438530][ T8139] bridge0: entered allmulticast mode
[  232.475641][ T8139] ipvlan2: left allmulticast mode
[  232.480738][ T8139] bridge0: left allmulticast mode
[  232.481950][ T8148] loop4: detected capacity change from 0 to 164
[  232.518724][ T8148] Unable to read rock-ridge attributes
[  232.526297][ T8148] Unable to read rock-ridge attributes
[  232.577483][ T8149] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  232.586446][ T8149] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  232.594703][ T8149] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  232.603006][ T8149] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  232.676647][ T8141] dummy0 speed is unknown, defaulting to 1000
[  232.685490][ T8164] loop6: detected capacity change from 0 to 512
[  232.695942][ T8164] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  232.751288][ T8164] EXT4-fs (loop6): 1 truncate cleaned up
[  232.766745][ T8164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.788376][ T8141] lo speed is unknown, defaulting to 1000
[  232.876352][ T8174] FAULT_INJECTION: forcing a failure.
[  232.876352][ T8174] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.889643][ T8174] CPU: 0 UID: 0 PID: 8174 Comm: syz.5.1587 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  232.889743][ T8174] Tainted: [W]=WARN
[  232.889751][ T8174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  232.889765][ T8174] Call Trace:
[  232.889772][ T8174]  <TASK>
[  232.889780][ T8174]  dump_stack_lvl+0xf6/0x150
[  232.889810][ T8174]  dump_stack+0x15/0x1a
[  232.889862][ T8174]  should_fail_ex+0x261/0x270
[  232.889958][ T8174]  should_fail+0xb/0x10
[  232.889996][ T8174]  should_fail_usercopy+0x1a/0x20
[  232.890024][ T8174]  _copy_from_iter+0xd8/0xd10
[  232.890116][ T8174]  ? kmalloc_reserve+0x16e/0x190
[  232.890144][ T8174]  ? __build_skb_around+0x199/0x1f0
[  232.890173][ T8174]  ? __virt_addr_valid+0x1ed/0x250
[  232.890199][ T8174]  ? __check_object_size+0x367/0x510
[  232.890241][ T8174]  netlink_sendmsg+0x492/0x720
[  232.890274][ T8174]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.890313][ T8174]  __sock_sendmsg+0x140/0x180
[  232.890353][ T8174]  ____sys_sendmsg+0x350/0x4e0
[  232.890392][ T8174]  __sys_sendmsg+0x1a0/0x240
[  232.890507][ T8174]  __x64_sys_sendmsg+0x46/0x50
[  232.890533][ T8174]  x64_sys_call+0x26f3/0x2e10
[  232.890554][ T8174]  do_syscall_64+0xc9/0x1c0
[  232.890585][ T8174]  ? clear_bhb_loop+0x25/0x80
[  232.890644][ T8174]  ? clear_bhb_loop+0x25/0x80
[  232.890665][ T8174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.890688][ T8174] RIP: 0033:0x7fb0d337d169
[  232.890706][ T8174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.890728][ T8174] RSP: 002b:00007fb0d19e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.890746][ T8174] RAX: ffffffffffffffda RBX: 00007fb0d3595fa0 RCX: 00007fb0d337d169
[  232.890809][ T8174] RDX: 0000000000000000 RSI: 000020000000c2c0 RDI: 0000000000000005
[  232.890824][ T8174] RBP: 00007fb0d19e7090 R08: 0000000000000000 R09: 0000000000000000
[  232.890836][ T8174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.890848][ T8174] R13: 0000000000000000 R14: 00007fb0d3595fa0 R15: 00007ffc8a930678
[  232.890866][ T8174]  </TASK>
[  233.159435][ T8186] IPVS: stopping master sync thread 6891 ...
[  233.565359][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.861461][ T8211] loop6: detected capacity change from 0 to 1024
[  233.998756][ T8211] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.069732][ T8219] FAULT_INJECTION: forcing a failure.
[  234.069732][ T8219] name failslab, interval 1, probability 0, space 0, times 0
[  234.083535][ T8219] CPU: 1 UID: 0 PID: 8219 Comm: syz.3.1603 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  234.083572][ T8219] Tainted: [W]=WARN
[  234.083580][ T8219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  234.083594][ T8219] Call Trace:
[  234.083601][ T8219]  <TASK>
[  234.083609][ T8219]  dump_stack_lvl+0xf6/0x150
[  234.083661][ T8219]  dump_stack+0x15/0x1a
[  234.083681][ T8219]  should_fail_ex+0x261/0x270
[  234.083770][ T8219]  should_failslab+0x8f/0xb0
[  234.083799][ T8219]  __kmalloc_noprof+0xad/0x410
[  234.083819][ T8219]  ? ___neigh_create+0x4d0/0x12a0
[  234.083854][ T8219]  ___neigh_create+0x4d0/0x12a0
[  234.083935][ T8219]  ? ndisc_hash+0x93/0xb0
[  234.083966][ T8219]  ? neigh_lookup+0x1d6/0x210
[  234.084021][ T8219]  neigh_add+0x8a2/0x930
[  234.084047][ T8219]  ? __pfx_neigh_add+0x10/0x10
[  234.084066][ T8219]  rtnetlink_rcv_msg+0x6b7/0x740
[  234.084100][ T8219]  ? avc_has_perm_noaudit+0x1cc/0x210
[  234.084211][ T8219]  netlink_rcv_skb+0x12f/0x230
[  234.084308][ T8219]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  234.084352][ T8219]  rtnetlink_rcv+0x1c/0x30
[  234.084386][ T8219]  netlink_unicast+0x605/0x6c0
[  234.084487][ T8219]  netlink_sendmsg+0x609/0x720
[  234.084520][ T8219]  ? __pfx_netlink_sendmsg+0x10/0x10
[  234.084566][ T8219]  __sock_sendmsg+0x140/0x180
[  234.084681][ T8219]  __sys_sendto+0x1aa/0x230
[  234.084715][ T8219]  __x64_sys_sendto+0x78/0x90
[  234.084737][ T8219]  x64_sys_call+0x2bcb/0x2e10
[  234.084758][ T8219]  do_syscall_64+0xc9/0x1c0
[  234.084828][ T8219]  ? clear_bhb_loop+0x25/0x80
[  234.084851][ T8219]  ? clear_bhb_loop+0x25/0x80
[  234.084922][ T8219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.084945][ T8219] RIP: 0033:0x7f4cd282d169
[  234.084965][ T8219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.084986][ T8219] RSP: 002b:00007f4cd0e8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  234.085005][ T8219] RAX: ffffffffffffffda RBX: 00007f4cd2a45fa0 RCX: 00007f4cd282d169
[  234.085016][ T8219] RDX: 0000000000000090 RSI: 00002000000000c0 RDI: 0000000000000003
[  234.085027][ T8219] RBP: 00007f4cd0e8f090 R08: 0000000000000000 R09: 0000000000000034
[  234.085106][ T8219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.085117][ T8219] R13: 0000000000000000 R14: 00007f4cd2a45fa0 R15: 00007fffc07985b8
[  234.085135][ T8219]  </TASK>
[  234.432079][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.564251][ T8233] loop4: detected capacity change from 0 to 164
[  234.580218][ T8233] loop4: detected capacity change from 0 to 1024
[  234.598272][ T8233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.656778][ T8243] loop6: detected capacity change from 0 to 512
[  234.678895][ T8243] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  234.708889][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.711480][ T8243] EXT4-fs (loop6): 1 truncate cleaned up
[  234.725364][ T8243] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.811504][ T8259] loop4: detected capacity change from 0 to 128
[  234.831635][ T8259] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  234.846770][ T8259] ext4 filesystem being mounted at /335/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  235.565981][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.760737][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  235.834803][ T8274] __nla_validate_parse: 11 callbacks suppressed
[  235.834904][ T8274] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1621'.
[  236.045859][   T29] kauditd_printk_skb: 59 callbacks suppressed
[  236.045874][   T29] audit: type=1400 audit(1744024674.720:3283): avc:  denied  { create } for  pid=8281 comm="syz.5.1625" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  236.089666][   T29] audit: type=1400 audit(1744024674.750:3284): avc:  denied  { ioctl } for  pid=8281 comm="syz.5.1625" path="socket:[21832]" dev="sockfs" ino=21832 ioctlcmd=0x4944 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  236.139545][ T8293] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1628'.
[  236.149601][ T8293] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1628'.
[  236.160444][   T29] audit: type=1400 audit(1744024674.830:3285): avc:  denied  { unmount } for  pid=8292 comm="syz.3.1628" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  236.183520][ T8288] loop6: detected capacity change from 0 to 2048
[  236.200146][   T29] audit: type=1326 audit(1744024674.870:3286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.3.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  236.224514][   T29] audit: type=1326 audit(1744024674.870:3287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.3.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  236.225946][ T8288]  loop6: p1 < > p4
[  236.248800][   T29] audit: type=1326 audit(1744024674.870:3288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.3.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  236.256057][ T8288] loop6: p4 size 8388608 extends beyond EOD, truncated
[  236.276042][   T29] audit: type=1326 audit(1744024674.870:3289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.3.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd282d169 code=0x7ffc0000
[  236.313385][ T8303] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1633'.
[  236.322417][ T8303] netlink: 33924 bytes leftover after parsing attributes in process `syz.3.1633'.
[  236.342400][ T8301] loop4: detected capacity change from 0 to 512
[  236.352222][ T8301] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  236.422912][ T8301] EXT4-fs (loop4): 1 truncate cleaned up
[  236.429206][ T8301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.479765][ T8301] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1631'.
[  236.490188][ T8309] loop6: detected capacity change from 0 to 512
[  236.514615][ T8315] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1637'.
[  236.526561][ T8309] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.539882][ T8309] ext4 filesystem being mounted at /265/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  236.560149][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.758423][   T29] audit: type=1400 audit(1744024675.430:3290): avc:  denied  { map } for  pid=8327 comm="syz.0.1642" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  236.812150][   T29] audit: type=1326 audit(1744024675.480:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8330 comm="syz.0.1643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b8134d169 code=0x7ffc0000
[  236.836291][   T29] audit: type=1326 audit(1744024675.480:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8330 comm="syz.0.1643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b8134d169 code=0x7ffc0000
[  236.838064][ T8333] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1644'.
[  237.110206][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.432132][ T8353] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1649'.
[  237.489494][ T8355] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  237.733722][ T8374] loop6: detected capacity change from 0 to 512
[  237.741236][ T8374] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  237.752653][ T8374] EXT4-fs (loop6): 1 truncate cleaned up
[  237.759383][ T8374] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.483110][ T8399] loop4: detected capacity change from 0 to 128
[  238.491490][ T8399] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  238.503951][ T8399] ext4 filesystem being mounted at /344/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  238.571325][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.703963][ T8416] loop6: detected capacity change from 0 to 512
[  238.724052][ T8416] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  238.743974][ T8416] EXT4-fs (loop6): 1 truncate cleaned up
[  238.763211][ T8416] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.823007][ T4634] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.289427][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  239.544232][ T8456] loop4: detected capacity change from 0 to 512
[  239.581149][ T8456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.615769][ T8456] ext4 filesystem being mounted at /347/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  239.660630][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.697814][ T8460] pim6reg1: entered promiscuous mode
[  239.703220][ T8460] pim6reg1: entered allmulticast mode
[  239.870562][ T8470] loop6: detected capacity change from 0 to 128
[  239.880343][ T8473] ==================================================================
[  239.888467][ T8473] BUG: KCSAN: data-race in mas_wmb_replace / mtree_range_walk
[  239.895983][ T8473] 
[  239.898316][ T8473] write to 0xffff8881193a4000 of 8 bytes by task 8469 on cpu 0:
[  239.905962][ T8473]  mas_wmb_replace+0x224/0x1510
[  239.910835][ T8473]  mas_wr_store_entry+0x158c/0x2460
[  239.916078][ T8473]  mas_store_prealloc+0x6d5/0x960
[  239.921128][ T8473]  vma_iter_store_new+0x1d3/0x210
[  239.926173][ T8473]  vma_complete+0x12b/0x570
[  239.930705][ T8473]  __split_vma+0x5b6/0x630
[  239.935127][ T8473]  vma_modify+0x1a2/0x200
[  239.939475][ T8473]  vma_modify_flags+0x10a/0x140
[  239.944352][ T8473]  mprotect_fixup+0x30f/0x5d0
[  239.949035][ T8473]  do_mprotect_pkey+0x6ce/0x9a0
[  239.953912][ T8473]  __x64_sys_mprotect+0x48/0x60
[  239.958770][ T8473]  x64_sys_call+0x272f/0x2e10
[  239.963451][ T8473]  do_syscall_64+0xc9/0x1c0
[  239.967974][ T8473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.973874][ T8473] 
[  239.976195][ T8473] read to 0xffff8881193a4000 of 8 bytes by task 8473 on cpu 1:
[  239.983759][ T8473]  mtree_range_walk+0x347/0x460
[  239.988634][ T8473]  mas_walk+0x16e/0x320
[  239.992807][ T8473]  lock_vma_under_rcu+0xa7/0x340
[  239.997792][ T8473]  exc_page_fault+0x150/0x6a0
[  240.002498][ T8473]  asm_exc_page_fault+0x26/0x30
[  240.007377][ T8473] 
[  240.009710][ T8473] value changed: 0xffff88810ac3f941 -> 0xffff8881193a4000
[  240.016861][ T8473] 
[  240.019184][ T8473] Reported by Kernel Concurrency Sanitizer on:
[  240.025367][ T8473] CPU: 1 UID: 0 PID: 8473 Comm: syz.4.1690 Tainted: G        W           6.15.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  240.037675][ T8473] Tainted: [W]=WARN
[  240.041492][ T8473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  240.051606][ T8473] ==================================================================
[  240.077371][ T8470] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  240.098259][ T8470] ext4 filesystem being mounted at /274/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  240.658520][ T4634] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.