last executing test programs:

5.984125989s ago: executing program 1 (id=2371):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@data_err_abort}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80000)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000000), 0xffffffffffffffff)
getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000180)=0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg0\x00', <r6=>0x0})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000200)={@local, <r7=>0x0}, &(0x7f0000000240)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'team0\x00', <r8=>0x0})
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r9, &(0x7f00000000c0)=ANY=[], 0xff2e)
poll(&(0x7f0000000380)=[{0xffffffffffffffff, 0x8}, {0xffffffffffffffff, 0x208a}], 0x2, 0x4bd6)
getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, <r10=>0x0}, &(0x7f0000000300)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'team0\x00', <r11=>0x0})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000380)={@ipv4={""/10, ""/2, @initdev}, <r12=>0x0}, &(0x7f00000003c0)=0x14)
r13 = socket$nl_route(0x10, 0x3, 0x0)
r14 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r14, 0x65, 0x2, &(0x7f0000000400)=0x2, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r14, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r15=>0x0})
bind$can_raw(r14, &(0x7f0000000200)={0x1d, r15}, 0x10)
sendmsg$nl_route_sched(r13, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r15, {0x1, 0x6}, {0xffff}, {0x1, 0xfff3}}}, 0x24}}, 0x0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r3, &(0x7f0000000900)={0xfffffffffffffffe, 0x0, &(0x7f00000008c0)={&(0x7f0000000400)={0x498, r4, 0x20, 0x70bd2a, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x148, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r6}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x7c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4c, 0x4, [{0x5, 0x13, 0x8, 0xfffffffd}, {0xb, 0x6, 0xff, 0x7}, {0xf332, 0x5, 0x7, 0xa4}, {0x78d1, 0x3}, {0x6, 0xb, 0x2, 0x8}, {0xffff, 0x28, 0x4, 0xfffffff9}, {0x80, 0x80, 0x9, 0x2}, {0x0, 0xb, 0x7, 0xc863}, {0x3, 0x3, 0x40, 0xa}]}}}]}}, {{0x8, 0x1, r8}, {0x13c, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xc0}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r11}, {0x1e8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1000}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r15}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x2, 0x5, 0xa}, {0x81, 0xc, 0x5, 0x1}, {0x6, 0x2, 0x5, 0x1}, {0x6, 0x4, 0x9, 0x1}, {0x7f, 0xd, 0x9, 0x6}, {0x7f, 0xf, 0x5, 0xfc}, {0xae, 0x0, 0x9, 0xfffeffff}, {0x7, 0x7, 0x9}, {0x1ff, 0x5b, 0x4, 0x7}, {0x7, 0x8, 0x91, 0x7}]}}}]}}]}, 0x498}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)

4.299166764s ago: executing program 4 (id=2384):
r0 = syz_usbip_server_init(0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000480)=ANY=[@ANYRES32=r1, @ANYRES64=0x0, @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x84981ca14c1136a9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00', r2, 0x0, 0x100000}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0xa, &(0x7f0000000180), 0x4)
recvmsg$unix(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16=r4], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x49)
r6 = gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000440)='rpc_stats_latency\x00', r5}, 0x18)
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = timerfd_create(0x0, 0x0)
read(r7, &(0x7f0000000380)=""/189, 0x8)

3.905828091s ago: executing program 2 (id=2385):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0xe6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x2, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x3, 0x0, 0x80, 0x82, 0xf20e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0xd580, 0x0, 0x63db, 0x6, 0x9, 0x0, 0x0, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

3.891416141s ago: executing program 2 (id=2386):
syz_mount_image$ext4(&(0x7f0000000880)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x21080e, &(0x7f0000000080)={[{@noquota}, {@data_writeback}, {@nodelalloc}]}, 0xe1, 0x531, &(0x7f0000000a80)="$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")
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4000, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x2e)
close(r0)
setresuid(0x0, 0xee00, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r1, &(0x7f0000000000)='./file0\x00', 0x5)

3.848026782s ago: executing program 2 (id=2387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000181128e5537e20b77cd9eb3f6275db83c57be69228f759c02b92c3b3c53a2c05ca93a60cd433c0e9ba6ab805b0602032fc4e7b2cc93145b6b4b3d5b562b0107c6ef0bb397c6644eddbc796f9022c370715f485d9ffd070a5aed7a5371d7721bed94f46295b83bbbb83ab8ae24aedd0ef711de3d77fd2ec0a6922b1d349ecf495e68bdcae6c14c00303b3f9187935c113417cf07ccc33ae3e8541fd000000000000000000", @ANYRESDEC=r0, @ANYBLOB="028f1b45531010fad997060000000000000000b7080000000000107b8af8ff000000005c4ccffa10e9f568a2ba7dbfa200000000002007020000f8ffffffb70300"], &(0x7f0000000240)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x3, &(0x7f0000000140)=[{0x6, 0xfc, 0x1}, {0x6, 0x0, 0x5, 0xe3}, {0x6, 0x7, 0xe, 0x7}]}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="180000002e0003040100000000000000080000"], 0x18}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xa, 0x7, &(0x7f0000000440)=ANY=[@ANYRES64=r2, @ANYRES32, @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100e000000108000200ac1414000c0002800500010000000900240002801400018008000100e000000108000200e00000010c0002800500010000000000140016400000000000000000000000000000000808000740000000078bcdd9ec3f10141893f93f0eb09fadb3725878424920f02481"], 0x78}}, 0x0)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000740)={'batadv_slave_0\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={@mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4, 0x0, 0x0, 0x0, 0x100, 0x0, 0x60b0383, r5})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r6 = socket$inet(0x2, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000f40)='fdinfo\x00')
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r7, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

3.794838862s ago: executing program 2 (id=2388):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000000a72f0000ff0000007b8af8ff00000000bf53e57f8878db6a26e49dfe3ba200000000000007020000f8ffffffb7030000084e000020c7361b2d23a56b6c6bde24e6290000000065990000000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x4}]}, 0x10)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200000200f100850000008600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r5}, 0x10)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x1008}, 0x18)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
r7 = syz_pidfd_open(0x0, 0x0)
pidfd_getfd(r7, r6, 0x0)

3.733368253s ago: executing program 2 (id=2389):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = getpid()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r5, 0xfffffffc)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)

2.927342425s ago: executing program 4 (id=2393):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="2c7063723d30303069b9bd3030303030303030303013d830303035362c726f6f74636f6e746578743d61"])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000140)={0x0, 0x2000000, 0x1, 0x0, 0x1, "ff00f7000000000000000000af88008300"})
r3 = syz_open_pts(r2, 0x141601)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f00000014c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r3, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0xfffffffc, 0x0, 0x0, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})

2.481474652s ago: executing program 0 (id=2396):
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x18)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r9, 0x1, 0x70bd25, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4040)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r10, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

2.460563822s ago: executing program 1 (id=2397):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001100)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1, 0x0, 0x81}, 0x18)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x448, 0x0, 0x268, 0x300, 0x268, 0x268, 0x378, 0x460, 0x460, 0x378, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0x240, 0x268, 0x0, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x9}}}, @common=@unspec=@limit={{0x48}, {0xfff, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x2}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4a8)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1d00000004000000020000000000000001020000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000500"], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000002c0)=0x1)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f})
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000100)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x4c40, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r8}, 0x18)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r9, &(0x7f00000059c0)=[{{&(0x7f0000000080)={0xa, 0x0, 0xfffffffd, @rand_addr=' \x01\x00', 0x4000}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000100)='d', 0x1}], 0x1}}], 0x1, 0x4)
shutdown(r9, 0x1)

2.412634843s ago: executing program 3 (id=2398):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@gettaction={0x14, 0x32, 0x300, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
socket$nl_route(0x10, 0x3, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x88f5)
openat$ttyS3(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
recvfrom(r2, 0x0, 0x0, 0x100, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000440)={0x0, 0x6, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r4, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)

2.239308206s ago: executing program 1 (id=2399):
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
inotify_rm_watch(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(0xffffffffffffffff, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}, {&(0x7f00000017c0)=""/130, 0x94}], 0x2}, 0xa1}], 0x2, 0x0, 0x0)

1.94771184s ago: executing program 0 (id=2400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x3, 0x0, 0x80, 0x82, 0xf20e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0xd580, 0x0, 0x63db, 0x6, 0x9, 0x0, 0x0, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1.897342831s ago: executing program 4 (id=2401):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000181128e5537e20b77cd9eb3f6275db83c57be69228f759c02b92c3b3c53a2c05ca93a60cd433c0e9ba6ab805b0602032fc4e7b2cc93145b6b4b3d5b562b0107c6ef0bb397c6644eddbc796f9022c370715f485d9ffd070a5aed7a5371d7721bed94f46295b83bbbb83ab8ae24aedd0ef711de3d77fd2ec0a6922b1d349ecf495e68bdcae6c14c00303b3f9187935c113417cf07ccc33ae3e8541fd000000000000000000", @ANYRESDEC=r0, @ANYBLOB="028f1b45531010fad997060000000000000000b7080000000000107b8af8ff000000005c4ccffa10e9f568a2ba7dbfa2000000000020070200"], &(0x7f0000000240)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000480)={0x3, &(0x7f0000000140)=[{0x6, 0xfc, 0x1}, {0x6, 0x0, 0x5, 0xe3}, {0x6, 0x7, 0xe, 0x7}]}, 0x10)
getsockopt$sock_buf(r3, 0x1, 0x1a, 0x0, &(0x7f0000000040)=0x2)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="180000002e0003040100000000000000080000"], 0x18}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xa, 0x7, &(0x7f0000000440)=ANY=[@ANYRES64=r2, @ANYRES32, @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5, 0x0, 0x1}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100e000000108000200ac1414000c0002800500010000000900240002801400018008000100e000000108000200e00000010c0002800500010000000000140016400000000000000000000000000000000808000740000000078bcdd9ec3f10141893f93f0eb09fadb3725878424920f02481"], 0x78}}, 0x0)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000740)={'batadv_slave_0\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={@mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4, 0x0, 0x0, 0x0, 0x100, 0x0, 0x60b0383, r8})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r9, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})
r10 = socket$inet(0x2, 0x2, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000f40)='fdinfo\x00')
openat$cgroup_ro(r11, &(0x7f0000000140)='devices.list\x00', 0x275a, 0x0)
ioctl$TUNSETSNDBUF(r11, 0x400454d4, &(0x7f0000000180)=0x5)
setsockopt$inet_mreqn(r10, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r10, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r12 = socket$netlink(0x10, 0x3, 0x0)
writev(r12, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r12, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqsrc(r10, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)

1.777272193s ago: executing program 0 (id=2402):
perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_open_pts(r2, 0x141601)

1.752778064s ago: executing program 1 (id=2403):
r0 = syz_usbip_server_init(0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000480)=ANY=[@ANYRES32=r1, @ANYRES64=0x0, @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x84981ca14c1136a9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00', r2, 0x0, 0x100000}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0xa, &(0x7f0000000180), 0x4)
recvmsg$unix(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16=r4], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x49)
r6 = gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000440)='rpc_stats_latency\x00', r5}, 0x18)
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = timerfd_create(0x0, 0x0)
read(r7, &(0x7f0000000380)=""/189, 0x8)

1.752321143s ago: executing program 0 (id=2404):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000181128e5537e20b77cd9eb3f6275db83c57be69228f759c02b92c3b3c53a2c05ca93a60cd433c0e9ba6ab805b0602032fc4e7b2cc93145b6b4b3d5b562b0107c6ef0bb397c6644eddbc796f9022c370715f485d9ffd070a5aed7a5371d7721bed94f46295b83bbbb83ab8ae24aedd0ef711de3d77fd2ec0a6922b1d349ecf495e68bdcae6c14c00303b3f9187935c113417cf07ccc33ae3e8541fd000000000000000000", @ANYRESDEC=r0, @ANYBLOB="028f1b45531010fad997060000000000000000b7080000000000107b8af8ff000000005c4ccffa10e9f568a2ba7dbfa200000000002007020000f8ffffffb70300"], &(0x7f0000000240)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x3, &(0x7f0000000140)=[{0x6, 0xfc, 0x1}, {0x6, 0x0, 0x5, 0xe3}, {0x6, 0x7, 0xe, 0x7}]}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="180000002e0003040100000000000000080000"], 0x18}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100e000000108000200ac1414000c0002800500010000000900240002801400018008000100e000000108000200e00000010c0002800500010000000000140016400000000000000000000000000000000808000740000000078bcdd9ec3f10141893f93f0eb09fadb3725878424920f02481"], 0x78}}, 0x0)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000740)={'batadv_slave_0\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={@mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4, 0x0, 0x0, 0x0, 0x100, 0x0, 0x60b0383, r5})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r6 = socket$inet(0x2, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000f40)='fdinfo\x00')
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r7, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

1.690149184s ago: executing program 4 (id=2405):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

1.645277525s ago: executing program 4 (id=2406):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x301)
fstat(0xffffffffffffffff, &(0x7f0000001500))
syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003980)=ANY=[@ANYBLOB="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"], 0x1874}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
getgroups(0x8, &(0x7f0000001680)=[0xffffffffffffffff, 0xee00, 0xee00, 0xee00, 0xee00, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
close_range(r4, 0xffffffffffffffff, 0x400000000000000)

1.639679165s ago: executing program 0 (id=2407):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="2c7063723d30303069b9bd3030303030303030303013d830303035362c726f6f74636f6e746578743d61"])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000140)={0x0, 0x2000000, 0x1, 0x0, 0x1, "ff00f7000000000000000000af88008300"})
r3 = syz_open_pts(r2, 0x141601)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f00000014c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r3, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0xfffffffc, 0x0, 0x0, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})

1.31743227s ago: executing program 3 (id=2408):
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x9}, 0x18)
r2 = mq_open(&(0x7f0000000480)='!sel\x00\x00\x00\x10\x00\x00\x00\x00\xd7\\P\xc1\xde.O\xcb]0y\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc0884f2, 0x196, &(0x7f0000000440)={0x2000000000002000, 0x1, 0x56, 0x3})
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_procfs$namespace(0x0, &(0x7f0000000000))
close(0x3)
socket$igmp6(0xa, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_icmp(0x2, 0x2, 0x1)
r4 = socket(0x10, 0x803, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32=r5, @ANYBLOB="200001"], 0x38}}, 0x0)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r3, &(0x7f0000000200), 0xfffffd9d)
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000a88e88ab6100000000000400000001fb00", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

760.383939ms ago: executing program 4 (id=2409):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x301)
fstat(0xffffffffffffffff, &(0x7f0000001500))
syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003980)=ANY=[@ANYBLOB="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"], 0x1874}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
getgroups(0x8, &(0x7f0000001680)=[0xffffffffffffffff, 0xee00, 0xee00, 0xee00, 0xee00, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
close_range(r4, 0xffffffffffffffff, 0x400000000000000)

613.007871ms ago: executing program 2 (id=2410):
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x18)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r9, 0x1, 0x70bd25, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4040)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r10, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

605.895411ms ago: executing program 0 (id=2411):
r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x80042, 0x0)
r2 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r2, &(0x7f0000000380)={'#! ', './file1', [{0x20, 'kfree\x00'}], 0xa, "7d9f8cd38bc497150da96b8973a6db1884a1e6bfcd94c5b886faad3c42e200954c3c629586b31a0cf68d890ad732707d5c68bdf76fb8a4f8cdc90cfbeaa93fc1e5e6eb4520f6196790eaa823978850ab54951ebfce0e1b858af9e00ef700eb09b481553e449a5f684c9b5610d76d8d8de202b2b15cb3fc4f8d8e4354f34ec517c4ee89c32f8b090a76a8c5a84477f98189db3ede0c605c751db90ce4b4188be5edf83b61a0ef26370cbb5bf0bed868e508bb79667de0b06c2a770c435995e762f64b4799110e4e35b454d10d453d35fda482a04e5cca"}, 0xe8)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x18)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x24, &(0x7f0000000000)=0x4, 0x4)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)=ANY=[@ANYBLOB="44000000020605000000000000000000000000000c000300686173683a69700005000400000000000900020073797a310010000005000500020000000500010006"], 0x44}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000006000000080000000c"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="2000000069000305000000000000000000000000000000000800010002"], 0x20}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0xf9efffff, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)

337.099835ms ago: executing program 3 (id=2412):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000181128e5537e20b77cd9eb3f6275db83c57be69228f759c02b92c3b3c53a2c05ca93a60cd433c0e9ba6ab805b0602032fc4e7b2cc93145b6b4b3d5b562b0107c6ef0bb397c6644eddbc796f9022c370715f485d9ffd070a5aed7a5371d7721bed94f46295b83bbbb83ab8ae24aedd0ef711de3d77fd2ec0a6922b1d349ecf495e68bdcae6c14c00303b3f9187935c113417cf07ccc33ae3e8541fd000000000000000000", @ANYRESDEC=r0, @ANYBLOB="028f1b45531010fad997060000000000000000b7080000000000107b8af8ff000000005c4ccffa10e9f568a2ba7dbfa2000000000020070200"], &(0x7f0000000240)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000480)={0x3, &(0x7f0000000140)=[{0x6, 0xfc, 0x1}, {0x6, 0x0, 0x5, 0xe3}, {0x6, 0x7, 0xe, 0x7}]}, 0x10)
getsockopt$sock_buf(r3, 0x1, 0x1a, 0x0, &(0x7f0000000040)=0x2)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="180000002e0003040100000000000000080000"], 0x18}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xa, 0x7, &(0x7f0000000440)=ANY=[@ANYRES64=r2, @ANYRES32, @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5, 0x0, 0x1}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100e000000108000200ac1414000c0002800500010000000900240002801400018008000100e000000108000200e00000010c0002800500010000000000140016400000000000000000000000000000000808000740000000078bcdd9ec3f10141893f93f0eb09fadb3725878424920f02481"], 0x78}}, 0x0)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000740)={'batadv_slave_0\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={@mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4, 0x0, 0x0, 0x0, 0x100, 0x0, 0x60b0383, r8})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r9, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})
r10 = socket$inet(0x2, 0x2, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000f40)='fdinfo\x00')
openat$cgroup_ro(r11, &(0x7f0000000140)='devices.list\x00', 0x275a, 0x0)
ioctl$TUNSETSNDBUF(r11, 0x400454d4, &(0x7f0000000180)=0x5)
setsockopt$inet_mreqn(r10, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r10, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r12 = socket$netlink(0x10, 0x3, 0x0)
writev(r12, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r12, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqsrc(r10, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)

282.775296ms ago: executing program 1 (id=2413):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001100)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1, 0x0, 0x81}, 0x18)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x448, 0x0, 0x268, 0x300, 0x268, 0x268, 0x378, 0x460, 0x460, 0x378, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0x240, 0x268, 0x0, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x9}}}, @common=@unspec=@limit={{0x48}, {0xfff, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x2}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4a8)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1d00000004000000020000000000000001020000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000500"], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000002c0)=0x1)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f})
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000100)=0x2)

89.152059ms ago: executing program 3 (id=2414):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000700000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)=[{&(0x7f0000000f00)="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", 0xe24}, {0x0, 0x4000}, {0x0}, {0x0}, {&(0x7f00000020c0), 0x500}], 0x5}, 0x0)

16.89507ms ago: executing program 3 (id=2415):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELOBJ={0x40, 0x14, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x73}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x21}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x62}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x6005}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x806}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x200}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0xe8, 0x6, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_EXPRESSIONS={0x94, 0x4, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}, {0x34, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}}}, {0x30, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x2}]}}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}]}, @NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x6558}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3b}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x21}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELRULE={0x5c, 0x8, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}]}, @NFT_MSG_DELFLOWTABLE={0xc8, 0x18, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x9c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip6gre0\x00'}, {0x14, 0x1, 'nicvf0\x00'}, {0x14, 0x1, 'veth1_to_batadv\x00'}, {0x14, 0x1, 'veth1_macvtap\x00'}, {0x14, 0x1, 'veth0_macvtap\x00'}, {0x14, 0x1, 'veth1_to_hsr\x00'}, {0x14, 0x1, 'ip6gre0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWTABLE={0xb0, 0x0, 0xa, 0x801, 0x0, 0x0, {0x216d7ea6b3c70e76, 0x0, 0x4}, [@NFTA_TABLE_USERDATA={0x81, 0x6, "1375c4656f2e46f0fac80d32220aec3197946b06d3e73def9cf7e7c05d6b98d1c68c98c4b62e5d348956540e867acfee047be8534e153592dad4ea964a04eb0095dfb9f95417a2adc65669d6635334416bb97b63642c11ca7f845bf80e3b0031cde7f6e4e38864d9fb486b3b76b16b03ac06bb13b75d0f8d9eac80025b"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_USERDATA={0x4}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x3}}, @NFT_MSG_DELTABLE={0x1b4, 0x2, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_USERDATA={0x9c, 0x6, "42ee2fd37ae4583ada668280ddf240ecf692e4d099d70a0a878fcecc774006d18b731e3c3789d8815130a6cd9f43a16704a82a3be4525c525506ac24b039d0481e822eebde97c9d6069b4682e60c2072f111653940ce9282c183311e83a87b7eec47e07f3299ec9bd5922d26cbd9f3d30245ed390bb6d3f71a9d422c46c01fb105d217c767d6e548f0a2c70753ffd880c34ecc98a85dd32c"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0xd7, 0x6, "c7db452a7ee59c2b86460982e4c41172fa7e7e0ce4d08c636ea39465ee67533b8c75dee21e5d7c43d8a9c8116db2cd20b1c8fad6690603e66fae281db2e85ee7b4bfda265d96f2a56f4746e65e6b47b3330ad74eabe47fa1ebbb0b8116d66cc217dc40fa37d21b52a37fd9b0acc04104232d5f180e099eba7cbcef24d98853cf125dc2189b3492cd35235b6059bfcce9aba8c629b95ae0651bf24cab83af40b65e1b25cf15d746b4b4f31757d499ca133c16febe37359d2130af3691a4a4f00cd1466c9e311333d43eda487c33599a11431e21"}]}, @NFT_MSG_DELRULE={0x1c, 0x8, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_RULE_ID={0x8}]}, @NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x101, 0x0, 0x0, {0x3}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x584}}, 0x0)

421.12µs ago: executing program 1 (id=2416):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

0s ago: executing program 3 (id=2417):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0xfb5, 0xfffffffe, 0xa}, 0x10) (async, rerun: 32)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x11, &(0x7f0000000400)={&(0x7f0000000440)=ANY=[@ANYRES8=0x0, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x20000854}, 0x400c4) (async, rerun: 32)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000080)={[{@grpquota}, {@nodelalloc}]}, 0x1, 0x776, &(0x7f0000001900)="$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") (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x8, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000004000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000100)=ANY=[], 0x32600) (async, rerun: 32)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0) (async, rerun: 32)
r4 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r4, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
listen(r4, 0x8)
r5 = accept4(r4, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x5, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x3) (async)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r8 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) (async, rerun: 64)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x6, 0x7ffc1ffb}]}) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='kmem_cache_free\x00'}, 0x18) (async)
syz_emit_ethernet(0x46, &(0x7f0000000640)=ANY=[@ANYBLOB="0180c20000010180c200000e86dd60081f2000103afff8119f3c02c4002783e135154311fe8000000000000000000000000000bbff020000000000000000000000000001860090780090feff0000000000000000"], 0x0) (async)
nanosleep(0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async)
syz_io_uring_setup(0xe41, &(0x7f0000000140)={0x0, 0x8897, 0x1000, 0x0, 0x1be, 0x0, r8}, &(0x7f0000000240)=<r9=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)

kernel console output (not intermixed with test programs):

7462][ T8577] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1837'.
[  158.233844][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1852'.
[  158.374090][ T8630] netlink: 1288 bytes leftover after parsing attributes in process `syz.2.1858'.
[  158.474246][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.571554][ T8645] netlink: 'syz.4.1865': attribute type 21 has an invalid length.
[  158.579668][ T8645] netlink: 156 bytes leftover after parsing attributes in process `syz.4.1865'.
[  158.588753][ T8645] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1865'.
[  158.624355][ T8650] netlink: 'syz.4.1866': attribute type 3 has an invalid length.
[  158.632182][ T8650] netlink: 'syz.4.1866': attribute type 3 has an invalid length.
[  158.663886][ T8652] netlink: 'syz.3.1867': attribute type 4 has an invalid length.
[  158.688696][ T8652] netlink: 'syz.3.1867': attribute type 4 has an invalid length.
[  158.766316][ T8657] netlink: 'syz.3.1869': attribute type 13 has an invalid length.
[  158.886816][ T8673] loop3: detected capacity change from 0 to 512
[  158.955185][ T8673] EXT4-fs (loop3): 1 orphan inode deleted
[  158.970700][ T8673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.993748][ T1298] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  159.011699][ T8673] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.058519][ T8686] netlink: 'syz.0.1879': attribute type 4 has an invalid length.
[  159.122446][ T8688] FAULT_INJECTION: forcing a failure.
[  159.122446][ T8688] name failslab, interval 1, probability 0, space 0, times 0
[  159.135227][ T8688] CPU: 1 UID: 0 PID: 8688 Comm: syz.2.1880 Not tainted 6.14.0-syzkaller #0
[  159.135329][ T8688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  159.135341][ T8688] Call Trace:
[  159.135346][ T8688]  <TASK>
[  159.135352][ T8688]  dump_stack_lvl+0xf2/0x150
[  159.135384][ T8688]  dump_stack+0x15/0x1a
[  159.135453][ T8688]  should_fail_ex+0x24a/0x260
[  159.135532][ T8688]  should_failslab+0x8f/0xb0
[  159.135566][ T8688]  kmem_cache_alloc_noprof+0x52/0x320
[  159.135587][ T8688]  ? skb_clone+0x154/0x1f0
[  159.135619][ T8688]  skb_clone+0x154/0x1f0
[  159.135759][ T8688]  __netlink_deliver_tap+0x2bd/0x4f0
[  159.135798][ T8688]  netlink_unicast+0x64a/0x670
[  159.135867][ T8688]  netlink_sendmsg+0x5cc/0x6e0
[  159.135889][ T8688]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.135909][ T8688]  __sock_sendmsg+0x140/0x180
[  159.135966][ T8688]  ____sys_sendmsg+0x326/0x4b0
[  159.136001][ T8688]  __sys_sendmsg+0x19d/0x230
[  159.136113][ T8688]  __x64_sys_sendmsg+0x46/0x50
[  159.136145][ T8688]  x64_sys_call+0x2734/0x2dc0
[  159.136172][ T8688]  do_syscall_64+0xc9/0x1c0
[  159.136203][ T8688]  ? clear_bhb_loop+0x55/0xb0
[  159.136277][ T8688]  ? clear_bhb_loop+0x55/0xb0
[  159.136310][ T8688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.136386][ T8688] RIP: 0033:0x7f5eb2fbd169
[  159.136430][ T8688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.136452][ T8688] RSP: 002b:00007f5eb1621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.136474][ T8688] RAX: ffffffffffffffda RBX: 00007f5eb31d5fa0 RCX: 00007f5eb2fbd169
[  159.136488][ T8688] RDX: 0000000020048810 RSI: 0000200000000040 RDI: 0000000000000006
[  159.136503][ T8688] RBP: 00007f5eb1621090 R08: 0000000000000000 R09: 0000000000000000
[  159.136517][ T8688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.136556][ T8688] R13: 0000000000000000 R14: 00007f5eb31d5fa0 R15: 00007ffefa59ce48
[  159.136578][ T8688]  </TASK>
[  159.387751][ T8691] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  159.394296][ T8691] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  159.401974][ T8691] vhci_hcd vhci_hcd.0: Device attached
[  159.408795][ T8698] vhci_hcd: connection closed
[  159.409194][ T3408] vhci_hcd: stop threads
[  159.418308][ T3408] vhci_hcd: release socket
[  159.422768][ T3408] vhci_hcd: disconnect device
[  159.429139][ T8701] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1884'.
[  159.445189][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.446307][ T8701] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.461648][ T8701] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.466176][ T8703] loop2: detected capacity change from 0 to 512
[  159.475656][ T8701] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.483083][ T8701] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.495536][ T8703] EXT4-fs (loop2): 1 orphan inode deleted
[  159.501967][ T8703] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.515722][ T3408] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  159.527736][ T8703] ext4 filesystem being mounted at /340/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.528158][ T8708] FAULT_INJECTION: forcing a failure.
[  159.528158][ T8708] name failslab, interval 1, probability 0, space 0, times 0
[  159.550914][ T8708] CPU: 0 UID: 0 PID: 8708 Comm: syz.3.1885 Not tainted 6.14.0-syzkaller #0
[  159.550941][ T8708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  159.550956][ T8708] Call Trace:
[  159.550964][ T8708]  <TASK>
[  159.550973][ T8708]  dump_stack_lvl+0xf2/0x150
[  159.551006][ T8708]  dump_stack+0x15/0x1a
[  159.551029][ T8708]  should_fail_ex+0x24a/0x260
[  159.551066][ T8708]  should_failslab+0x8f/0xb0
[  159.551104][ T8708]  kmem_cache_alloc_noprof+0x52/0x320
[  159.551130][ T8708]  ? mas_alloc_nodes+0x1e3/0x490
[  159.551171][ T8708]  ? __mod_memcg_state+0x122/0x280
[  159.551209][ T8708]  mas_alloc_nodes+0x1e3/0x490
[  159.551247][ T8708]  mas_preallocate+0x44a/0x650
[  159.551284][ T8708]  vma_link+0x93/0x370
[  159.551306][ T8708]  insert_vm_struct+0x17b/0x210
[  159.551344][ T8708]  alloc_bprm+0x439/0x680
[  159.551376][ T8708]  do_execveat_common+0x12b/0x7e0
[  159.551408][ T8708]  ? getname_flags+0x15a/0x3b0
[  159.551446][ T8708]  __x64_sys_execveat+0x75/0x90
[  159.551474][ T8708]  x64_sys_call+0x291e/0x2dc0
[  159.551500][ T8708]  do_syscall_64+0xc9/0x1c0
[  159.551537][ T8708]  ? clear_bhb_loop+0x55/0xb0
[  159.551570][ T8708]  ? clear_bhb_loop+0x55/0xb0
[  159.551604][ T8708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.551637][ T8708] RIP: 0033:0x7f8bd5fed169
[  159.551654][ T8708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.551674][ T8708] RSP: 002b:00007f8bd4657038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  159.551695][ T8708] RAX: ffffffffffffffda RBX: 00007f8bd6205fa0 RCX: 00007f8bd5fed169
[  159.551709][ T8708] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  159.551722][ T8708] RBP: 00007f8bd4657090 R08: 0000000000000000 R09: 0000000000000000
[  159.551735][ T8708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  159.551748][ T8708] R13: 0000000000000000 R14: 00007f8bd6205fa0 R15: 00007fff85bf5c18
[  159.551768][ T8708]  </TASK>
[  159.752866][ T3351] usb 7-1: enqueue for inactive port 0
[  159.758360][ T3351] usb 7-1: enqueue for inactive port 0
[  159.766538][ T3408] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  159.778780][ T8712] loop4: detected capacity change from 0 to 256
[  159.862979][ T3351] vhci_hcd: vhci_device speed not set
[  159.945619][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.999903][ T8723] loop4: detected capacity change from 0 to 512
[  160.014945][ T8723] EXT4-fs (loop4): 1 orphan inode deleted
[  160.021071][ T8723] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.034456][ T3408] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  160.047212][ T8723] ext4 filesystem being mounted at /443/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.113880][ T8731] FAULT_INJECTION: forcing a failure.
[  160.113880][ T8731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.126981][ T8731] CPU: 1 UID: 0 PID: 8731 Comm: syz.2.1893 Not tainted 6.14.0-syzkaller #0
[  160.127010][ T8731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.127024][ T8731] Call Trace:
[  160.127030][ T8731]  <TASK>
[  160.127037][ T8731]  dump_stack_lvl+0xf2/0x150
[  160.127096][ T8731]  dump_stack+0x15/0x1a
[  160.127123][ T8731]  should_fail_ex+0x24a/0x260
[  160.127160][ T8731]  should_fail+0xb/0x10
[  160.127194][ T8731]  should_fail_usercopy+0x1a/0x20
[  160.127240][ T8731]  _copy_from_user+0x1c/0xa0
[  160.127263][ T8731]  simple_transaction_get+0xed/0x120
[  160.127299][ T8731]  selinux_transaction_write+0x86/0x100
[  160.127394][ T8731]  ? __pfx_selinux_transaction_write+0x10/0x10
[  160.127423][ T8731]  vfs_write+0x27d/0x920
[  160.127452][ T8731]  ? putname+0xcf/0xf0
[  160.127469][ T8731]  ? __fget_files+0x17c/0x1c0
[  160.127548][ T8731]  ksys_write+0xe8/0x1b0
[  160.127584][ T8731]  __x64_sys_write+0x42/0x50
[  160.127634][ T8731]  x64_sys_call+0x287e/0x2dc0
[  160.127667][ T8731]  do_syscall_64+0xc9/0x1c0
[  160.127786][ T8731]  ? clear_bhb_loop+0x55/0xb0
[  160.127820][ T8731]  ? clear_bhb_loop+0x55/0xb0
[  160.127861][ T8731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.127895][ T8731] RIP: 0033:0x7f5eb2fbd169
[  160.127971][ T8731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.127994][ T8731] RSP: 002b:00007f5eb1621038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  160.128017][ T8731] RAX: ffffffffffffffda RBX: 00007f5eb31d5fa0 RCX: 00007f5eb2fbd169
[  160.128032][ T8731] RDX: 0000000000000049 RSI: 0000200000000380 RDI: 0000000000000003
[  160.128047][ T8731] RBP: 00007f5eb1621090 R08: 0000000000000000 R09: 0000000000000000
[  160.128062][ T8731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.128076][ T8731] R13: 0000000000000000 R14: 00007f5eb31d5fa0 R15: 00007ffefa59ce48
[  160.128100][ T8731]  </TASK>
[  160.567216][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.669018][ T8745] loop4: detected capacity change from 0 to 512
[  160.865884][ T8751] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  161.104447][   T29] kauditd_printk_skb: 1424 callbacks suppressed
[  161.104462][   T29] audit: type=1326 audit(1742855003.010:5314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3729f8d169 code=0x7ffc0000
[  161.113251][ T8759] FAULT_INJECTION: forcing a failure.
[  161.113251][ T8759] name failslab, interval 1, probability 0, space 0, times 0
[  161.134255][   T29] audit: type=1326 audit(1742855003.010:5315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3729f8d169 code=0x7ffc0000
[  161.146841][ T8759] CPU: 0 UID: 0 PID: 8759 Comm: syz.4.1903 Not tainted 6.14.0-syzkaller #0
[  161.146885][ T8759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  161.146900][ T8759] Call Trace:
[  161.146907][ T8759]  <TASK>
[  161.146916][ T8759]  dump_stack_lvl+0xf2/0x150
[  161.146952][ T8759]  dump_stack+0x15/0x1a
[  161.146988][ T8759]  should_fail_ex+0x24a/0x260
[  161.147024][ T8759]  should_failslab+0x8f/0xb0
[  161.147079][ T8759]  kmem_cache_alloc_noprof+0x52/0x320
[  161.147105][ T8759]  ? mas_alloc_nodes+0x1e3/0x490
[  161.147150][ T8759]  mas_alloc_nodes+0x1e3/0x490
[  161.147194][ T8759]  mas_preallocate+0x44a/0x650
[  161.147239][ T8759]  __split_vma+0x244/0x6a0
[  161.147272][ T8759]  vms_gather_munmap_vmas+0x171/0x7a0
[  161.147316][ T8759]  ? bpf_probe_read_kernel_str+0x6a/0x70
[  161.147358][ T8759]  ? __rcu_read_unlock+0x4e/0x70
[  161.147388][ T8759]  do_vmi_align_munmap+0x1a4/0x390
[  161.147443][ T8759]  do_vmi_munmap+0x1eb/0x230
[  161.147486][ T8759]  __se_sys_mremap+0x696/0xf10
[  161.147528][ T8759]  __x64_sys_mremap+0x67/0x80
[  161.147557][ T8759]  x64_sys_call+0x27e8/0x2dc0
[  161.147590][ T8759]  do_syscall_64+0xc9/0x1c0
[  161.147628][ T8759]  ? clear_bhb_loop+0x55/0xb0
[  161.147661][ T8759]  ? clear_bhb_loop+0x55/0xb0
[  161.147694][ T8759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.147728][ T8759] RIP: 0033:0x7f3729f8d169
[  161.147745][ T8759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.147766][ T8759] RSP: 002b:00007f37285f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  161.147789][ T8759] RAX: ffffffffffffffda RBX: 00007f372a1a5fa0 RCX: 00007f3729f8d169
[  161.147803][ T8759] RDX: 0000000000001000 RSI: 0000000000c00000 RDI: 0000200000400000
[  161.147818][ T8759] RBP: 00007f37285f7090 R08: 00002000008b5000 R09: 0000000000000000
[  161.147832][ T8759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.147846][ T8759] R13: 0000000000000000 R14: 00007f372a1a5fa0 R15: 00007ffd2c97c2b8
[  161.147869][ T8759]  </TASK>
[  161.397556][ T8772] loop3: detected capacity change from 0 to 512
[  161.421118][   T29] audit: type=1326 audit(1742855003.020:5316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3729f8bad0 code=0x7ffc0000
[  161.444627][   T29] audit: type=1326 audit(1742855003.020:5317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3729f8bc1f code=0x7ffc0000
[  161.468229][   T29] audit: type=1326 audit(1742855003.020:5318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f3729f8d169 code=0x7ffc0000
[  161.491577][   T29] audit: type=1326 audit(1742855003.050:5319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f3729f8bb7c code=0x7ffc0000
[  161.505212][ T8772] EXT4-fs (loop3): 1 orphan inode deleted
[  161.514796][   T29] audit: type=1326 audit(1742855003.050:5320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3729f8bc1f code=0x7ffc0000
[  161.514829][   T29] audit: type=1326 audit(1742855003.050:5321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f3729f8bdca code=0x7ffc0000
[  161.528957][ T1298] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  161.543847][   T29] audit: type=1326 audit(1742855003.050:5322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.4.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3729f8d169 code=0x7ffc0000
[  161.567026][ T1298] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  161.612269][ T8772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.628452][ T8772] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.669309][ T8774] syz!: rxe_newlink: already configured on team_slave_0
[  161.723767][ T8780] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1912'.
[  161.769528][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.859921][ T8792] loop4: detected capacity change from 0 to 1024
[  161.901598][ T8792] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.916028][ T8799] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.930389][ T8792] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1917: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  162.004453][ T8799] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.036805][ T8799] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.057310][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.087269][ T8799] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.107948][ T8810] validate_nla: 5 callbacks suppressed
[  162.107963][ T8810] netlink: 'syz.0.1924': attribute type 4 has an invalid length.
[  162.127441][ T8809] syz!: rxe_newlink: already configured on team_slave_0
[  162.145826][ T8810] netlink: 'syz.0.1924': attribute type 4 has an invalid length.
[  162.151246][ T8799] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.171967][ T8799] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.190248][ T8814] loop2: detected capacity change from 0 to 512
[  162.198239][ T8799] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.199704][ T8816] loop4: detected capacity change from 0 to 164
[  162.225715][ T8799] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.236407][ T8814] EXT4-fs (loop2): 1 orphan inode deleted
[  162.242655][ T8814] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.255257][ T8046] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:8: Failed to release dquot type 1
[  162.267083][ T8814] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.278520][ T8825] iso9660: Corrupted directory entry in block 4 of inode 1792
[  162.308899][ T8829] netlink: 'syz.0.1930': attribute type 3 has an invalid length.
[  162.338427][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.348935][ T8829] netlink: 'syz.0.1930': attribute type 3 has an invalid length.
[  162.525751][ T8843] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  162.574345][ T8847] netlink: 'syz.0.1939': attribute type 4 has an invalid length.
[  162.599831][ T8847] netlink: 'syz.0.1939': attribute type 4 has an invalid length.
[  162.647934][ T8851] FAULT_INJECTION: forcing a failure.
[  162.647934][ T8851] name failslab, interval 1, probability 0, space 0, times 0
[  162.660689][ T8851] CPU: 0 UID: 0 PID: 8851 Comm: syz.0.1941 Not tainted 6.14.0-syzkaller #0
[  162.660731][ T8851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  162.660754][ T8851] Call Trace:
[  162.660761][ T8851]  <TASK>
[  162.660769][ T8851]  dump_stack_lvl+0xf2/0x150
[  162.660841][ T8851]  dump_stack+0x15/0x1a
[  162.660868][ T8851]  should_fail_ex+0x24a/0x260
[  162.660905][ T8851]  should_failslab+0x8f/0xb0
[  162.660936][ T8851]  kmem_cache_alloc_noprof+0x52/0x320
[  162.661008][ T8851]  ? audit_log_start+0x34c/0x6b0
[  162.661043][ T8851]  audit_log_start+0x34c/0x6b0
[  162.661093][ T8851]  audit_seccomp+0x4b/0x130
[  162.661183][ T8851]  __seccomp_filter+0x6fa/0x1180
[  162.661210][ T8851]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  162.661248][ T8851]  ? vfs_write+0x644/0x920
[  162.661286][ T8851]  __secure_computing+0x9f/0x1c0
[  162.661310][ T8851]  syscall_trace_enter+0xd1/0x1f0
[  162.661414][ T8851]  do_syscall_64+0xaa/0x1c0
[  162.661454][ T8851]  ? clear_bhb_loop+0x55/0xb0
[  162.661506][ T8851]  ? clear_bhb_loop+0x55/0xb0
[  162.661667][ T8851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.661696][ T8851] RIP: 0033:0x7fbfb509d169
[  162.661730][ T8851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.661748][ T8851] RSP: 002b:00007fbfb3707038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[  162.661769][ T8851] RAX: ffffffffffffffda RBX: 00007fbfb52b5fa0 RCX: 00007fbfb509d169
[  162.661784][ T8851] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000080000
[  162.661798][ T8851] RBP: 00007fbfb3707090 R08: 0000000000000000 R09: 0000000000000000
[  162.661869][ T8851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.661881][ T8851] R13: 0000000000000000 R14: 00007fbfb52b5fa0 R15: 00007ffebe8fe838
[  162.661904][ T8851]  </TASK>
[  162.874829][ T8854] netlink: 'syz.3.1943': attribute type 3 has an invalid length.
[  162.882764][ T8854] netlink: 'syz.3.1943': attribute type 3 has an invalid length.
[  162.935649][ T8859] FAULT_INJECTION: forcing a failure.
[  162.935649][ T8859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.948773][ T8859] CPU: 0 UID: 0 PID: 8859 Comm: syz.0.1945 Not tainted 6.14.0-syzkaller #0
[  162.948879][ T8859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  162.948895][ T8859] Call Trace:
[  162.948902][ T8859]  <TASK>
[  162.948909][ T8859]  dump_stack_lvl+0xf2/0x150
[  162.948936][ T8859]  dump_stack+0x15/0x1a
[  162.948959][ T8859]  should_fail_ex+0x24a/0x260
[  162.949058][ T8859]  should_fail+0xb/0x10
[  162.949087][ T8859]  should_fail_usercopy+0x1a/0x20
[  162.949201][ T8859]  _copy_from_user+0x1c/0xa0
[  162.949223][ T8859]  copy_msghdr_from_user+0x54/0x2a0
[  162.949333][ T8859]  ? __fget_files+0x17c/0x1c0
[  162.949379][ T8859]  __sys_sendmsg+0x13e/0x230
[  162.949454][ T8859]  __x64_sys_sendmsg+0x46/0x50
[  162.949487][ T8859]  x64_sys_call+0x2734/0x2dc0
[  162.949519][ T8859]  do_syscall_64+0xc9/0x1c0
[  162.949552][ T8859]  ? clear_bhb_loop+0x55/0xb0
[  162.949582][ T8859]  ? clear_bhb_loop+0x55/0xb0
[  162.949614][ T8859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.949645][ T8859] RIP: 0033:0x7fbfb509d169
[  162.949663][ T8859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.949748][ T8859] RSP: 002b:00007fbfb3707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.949770][ T8859] RAX: ffffffffffffffda RBX: 00007fbfb52b5fa0 RCX: 00007fbfb509d169
[  162.949817][ T8859] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  162.949831][ T8859] RBP: 00007fbfb3707090 R08: 0000000000000000 R09: 0000000000000000
[  162.949845][ T8859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.949859][ T8859] R13: 0000000000000000 R14: 00007fbfb52b5fa0 R15: 00007ffebe8fe838
[  162.949881][ T8859]  </TASK>
[  163.124899][   T31] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  163.168752][ T8866] bridge_slave_0: left allmulticast mode
[  163.174451][ T8866] bridge_slave_0: left promiscuous mode
[  163.180169][ T8866] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.228552][ T8866] bond0: (slave bond_slave_0): Releasing backup interface
[  163.244186][ T8876] FAULT_INJECTION: forcing a failure.
[  163.244186][ T8876] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.257242][ T8876] CPU: 1 UID: 0 PID: 8876 Comm: syz.2.1952 Not tainted 6.14.0-syzkaller #0
[  163.257297][ T8876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  163.257307][ T8876] Call Trace:
[  163.257313][ T8876]  <TASK>
[  163.257320][ T8876]  dump_stack_lvl+0xf2/0x150
[  163.257349][ T8876]  dump_stack+0x15/0x1a
[  163.257369][ T8876]  should_fail_ex+0x24a/0x260
[  163.257480][ T8876]  should_fail+0xb/0x10
[  163.257507][ T8876]  should_fail_usercopy+0x1a/0x20
[  163.257547][ T8876]  _copy_from_user+0x1c/0xa0
[  163.257584][ T8876]  perf_copy_attr+0x146/0x5c0
[  163.257689][ T8876]  ? selinux_file_permission+0x22a/0x360
[  163.257720][ T8876]  ? __rcu_read_unlock+0x4e/0x70
[  163.257746][ T8876]  __se_sys_perf_event_open+0x6d/0x2230
[  163.257831][ T8876]  ? proc_fail_nth_write+0x12a/0x150
[  163.257864][ T8876]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  163.257903][ T8876]  ? vfs_write+0x644/0x920
[  163.257952][ T8876]  __x64_sys_perf_event_open+0x67/0x80
[  163.257971][ T8876]  x64_sys_call+0x1deb/0x2dc0
[  163.257995][ T8876]  do_syscall_64+0xc9/0x1c0
[  163.258031][ T8876]  ? clear_bhb_loop+0x55/0xb0
[  163.258061][ T8876]  ? clear_bhb_loop+0x55/0xb0
[  163.258089][ T8876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.258184][ T8876] RIP: 0033:0x7f5eb2fbd169
[  163.258242][ T8876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.258262][ T8876] RSP: 002b:00007f5eb1621038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  163.258331][ T8876] RAX: ffffffffffffffda RBX: 00007f5eb31d5fa0 RCX: 00007f5eb2fbd169
[  163.258342][ T8876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  163.258353][ T8876] RBP: 00007f5eb1621090 R08: 0000000000000000 R09: 0000000000000000
[  163.258366][ T8876] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  163.258434][ T8876] R13: 0000000000000000 R14: 00007f5eb31d5fa0 R15: 00007ffefa59ce48
[  163.258451][ T8876]  </TASK>
[  163.261220][ T8866] bond0: (slave bond_slave_1): Releasing backup interface
[  163.547967][ T8866] team0: Port device team_slave_0 removed
[  163.572817][ T8866] team0: Port device team_slave_1 removed
[  163.579665][ T8866] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  163.587144][ T8866] batman_adv: batadv0: Removing interface: batadv_slave_0
[  163.597911][ T8866] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  163.605376][ T8866] batman_adv: batadv0: Removing interface: batadv_slave_1
[  163.620339][ T8866] team0: Port device geneve1 removed
[  163.675983][ T8888] loop4: detected capacity change from 0 to 512
[  163.697066][ T8890] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.715368][ T8896] loop3: detected capacity change from 0 to 256
[  163.723590][ T8888] EXT4-fs (loop4): 1 orphan inode deleted
[  163.729775][ T8888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.742592][ T8888] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.753357][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:1: Failed to release dquot type 1
[  163.766958][ T8890] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.795272][ T8900] netlink: 'syz.0.1961': attribute type 4 has an invalid length.
[  163.810755][ T8890] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.814296][ T8900] netlink: 'syz.0.1961': attribute type 4 has an invalid length.
[  163.847234][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.868757][ T8890] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.948691][ T8909] sd 0:0:1:0: device reset
[  163.983446][ T8890] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.997545][ T8890] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.011110][ T8890] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.044955][ T8890] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.058428][ T8920] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1963'.
[  164.068928][ T8917] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1968'.
[  164.161198][ T8922] team0: Cannot enslave team device to itself
[  164.282494][ T8928] netlink: 1288 bytes leftover after parsing attributes in process `syz.4.1972'.
[  164.423781][ T8931] loop4: detected capacity change from 0 to 512
[  164.496226][ T8931] EXT4-fs (loop4): 1 orphan inode deleted
[  164.502383][ T8931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.516011][ T8931] ext4 filesystem being mounted at /463/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.517712][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:1: Failed to release dquot type 1
[  164.586629][ T8942] 8021q: adding VLAN 0 to HW filter on device bond1
[  164.612715][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.747497][ T8962] loop2: detected capacity change from 0 to 512
[  164.776728][ T8962] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  164.799229][ T8962] EXT4-fs (loop2): 1 truncate cleaned up
[  164.806088][ T8962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.916375][ T8961] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1983'.
[  165.037101][ T8989] FAULT_INJECTION: forcing a failure.
[  165.037101][ T8989] name failslab, interval 1, probability 0, space 0, times 0
[  165.050225][ T8989] CPU: 0 UID: 0 PID: 8989 Comm: syz.4.1994 Not tainted 6.14.0-syzkaller #0
[  165.050292][ T8989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.050306][ T8989] Call Trace:
[  165.050313][ T8989]  <TASK>
[  165.050328][ T8989]  dump_stack_lvl+0xf2/0x150
[  165.050359][ T8989]  dump_stack+0x15/0x1a
[  165.050462][ T8989]  should_fail_ex+0x24a/0x260
[  165.050496][ T8989]  should_failslab+0x8f/0xb0
[  165.050567][ T8989]  kmem_cache_alloc_node_noprof+0x59/0x320
[  165.050591][ T8989]  ? __alloc_skb+0x10b/0x310
[  165.050613][ T8989]  __alloc_skb+0x10b/0x310
[  165.050630][ T8989]  ? audit_log_start+0x34c/0x6b0
[  165.050698][ T8989]  audit_log_start+0x368/0x6b0
[  165.050738][ T8989]  audit_seccomp+0x4b/0x130
[  165.050787][ T8989]  __seccomp_filter+0x6fa/0x1180
[  165.050874][ T8989]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  165.050934][ T8989]  ? vfs_write+0x644/0x920
[  165.050963][ T8989]  ? putname+0xcf/0xf0
[  165.050988][ T8989]  __secure_computing+0x9f/0x1c0
[  165.051015][ T8989]  syscall_trace_enter+0xd1/0x1f0
[  165.051037][ T8989]  ? fpregs_assert_state_consistent+0x83/0xa0
[  165.051121][ T8989]  do_syscall_64+0xaa/0x1c0
[  165.051158][ T8989]  ? clear_bhb_loop+0x55/0xb0
[  165.051242][ T8989]  ? clear_bhb_loop+0x55/0xb0
[  165.051266][ T8989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.051290][ T8989] RIP: 0033:0x7f3729f8d169
[  165.051359][ T8989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.051385][ T8989] RSP: 002b:00007f37285f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  165.051406][ T8989] RAX: ffffffffffffffda RBX: 00007f372a1a5fa0 RCX: 00007f3729f8d169
[  165.051420][ T8989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  165.051432][ T8989] RBP: 00007f37285f7090 R08: 0000000000000000 R09: 0000000000000000
[  165.051442][ T8989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.051456][ T8989] R13: 0000000000000000 R14: 00007f372a1a5fa0 R15: 00007ffd2c97c2b8
[  165.051473][ T8989]  </TASK>
[  165.054437][ T8991] FAULT_INJECTION: forcing a failure.
[  165.054437][ T8991] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.266893][ T8991] CPU: 1 UID: 0 PID: 8991 Comm: syz.1.1993 Not tainted 6.14.0-syzkaller #0
[  165.266918][ T8991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.266932][ T8991] Call Trace:
[  165.266940][ T8991]  <TASK>
[  165.266995][ T8991]  dump_stack_lvl+0xf2/0x150
[  165.267030][ T8991]  dump_stack+0x15/0x1a
[  165.267057][ T8991]  should_fail_ex+0x24a/0x260
[  165.267169][ T8991]  should_fail+0xb/0x10
[  165.267259][ T8991]  should_fail_usercopy+0x1a/0x20
[  165.267295][ T8991]  _copy_to_user+0x20/0xa0
[  165.267318][ T8991]  simple_read_from_buffer+0xa0/0x110
[  165.267352][ T8991]  proc_fail_nth_read+0xf9/0x140
[  165.267468][ T8991]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.267502][ T8991]  vfs_read+0x19b/0x6f0
[  165.267531][ T8991]  ? __rcu_read_unlock+0x4e/0x70
[  165.267558][ T8991]  ? __fget_files+0x17c/0x1c0
[  165.267671][ T8991]  ksys_read+0xe8/0x1b0
[  165.267705][ T8991]  __x64_sys_read+0x42/0x50
[  165.267738][ T8991]  x64_sys_call+0x2874/0x2dc0
[  165.267780][ T8991]  do_syscall_64+0xc9/0x1c0
[  165.267838][ T8991]  ? clear_bhb_loop+0x55/0xb0
[  165.267870][ T8991]  ? clear_bhb_loop+0x55/0xb0
[  165.267903][ T8991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.267967][ T8991] RIP: 0033:0x7f845e77bb7c
[  165.267985][ T8991] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  165.268005][ T8991] RSP: 002b:00007f845cde7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  165.268026][ T8991] RAX: ffffffffffffffda RBX: 00007f845e995fa0 RCX: 00007f845e77bb7c
[  165.268040][ T8991] RDX: 000000000000000f RSI: 00007f845cde70a0 RDI: 0000000000000004
[  165.268054][ T8991] RBP: 00007f845cde7090 R08: 0000000000000000 R09: 0000000000000000
[  165.268067][ T8991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.268158][ T8991] R13: 0000000000000000 R14: 00007f845e995fa0 R15: 00007ffc5f5f4a68
[  165.268179][ T8991]  </TASK>
[  165.369637][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.393080][ T8996] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  165.516285][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  165.540708][ T9005] loop3: detected capacity change from 0 to 512
[  165.551688][ T9005] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  165.615909][ T9011] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1996'.
[  165.654212][ T9005] EXT4-fs (loop3): 1 truncate cleaned up
[  165.660703][ T9005] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.829212][ T9021] FAULT_INJECTION: forcing a failure.
[  165.829212][ T9021] name failslab, interval 1, probability 0, space 0, times 0
[  165.841955][ T9021] CPU: 0 UID: 0 PID: 9021 Comm: syz.2.2005 Not tainted 6.14.0-syzkaller #0
[  165.842000][ T9021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.842017][ T9021] Call Trace:
[  165.842025][ T9021]  <TASK>
[  165.842033][ T9021]  dump_stack_lvl+0xf2/0x150
[  165.842067][ T9021]  dump_stack+0x15/0x1a
[  165.842086][ T9021]  should_fail_ex+0x24a/0x260
[  165.842131][ T9021]  should_failslab+0x8f/0xb0
[  165.842237][ T9021]  __kmalloc_node_noprof+0xad/0x410
[  165.842260][ T9021]  ? __vmalloc_node_range_noprof+0x3dc/0xe70
[  165.842340][ T9021]  __vmalloc_node_range_noprof+0x3dc/0xe70
[  165.842410][ T9021]  ? sel_write_load+0x152/0x360
[  165.842427][ T9021]  vmalloc_noprof+0x5e/0x70
[  165.842458][ T9021]  ? sel_write_load+0x152/0x360
[  165.842518][ T9021]  sel_write_load+0x152/0x360
[  165.842589][ T9021]  ? __pfx_sel_write_load+0x10/0x10
[  165.842608][ T9021]  vfs_write+0x27d/0x920
[  165.842644][ T9021]  ? __fget_files+0x17c/0x1c0
[  165.842684][ T9021]  ksys_write+0xe8/0x1b0
[  165.842714][ T9021]  __x64_sys_write+0x42/0x50
[  165.842741][ T9021]  x64_sys_call+0x287e/0x2dc0
[  165.842786][ T9021]  do_syscall_64+0xc9/0x1c0
[  165.842907][ T9021]  ? clear_bhb_loop+0x55/0xb0
[  165.843012][ T9021]  ? clear_bhb_loop+0x55/0xb0
[  165.843038][ T9021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.843076][ T9021] RIP: 0033:0x7f5eb2fbd169
[  165.843093][ T9021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.843127][ T9021] RSP: 002b:00007f5eb1600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  165.843148][ T9021] RAX: ffffffffffffffda RBX: 00007f5eb31d6080 RCX: 00007f5eb2fbd169
[  165.843161][ T9021] RDX: 0000000000000020 RSI: 0000200000000080 RDI: 0000000000000004
[  165.843175][ T9021] RBP: 00007f5eb1600090 R08: 0000000000000000 R09: 0000000000000000
[  165.843188][ T9021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.843199][ T9021] R13: 0000000000000000 R14: 00007f5eb31d6080 R15: 00007ffefa59ce48
[  165.843227][ T9021]  </TASK>
[  166.044535][ T9021] warn_alloc: 1 callbacks suppressed
[  166.044548][ T9021] syz.2.2005: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0
[  166.065671][ T9021] CPU: 0 UID: 0 PID: 9021 Comm: syz.2.2005 Not tainted 6.14.0-syzkaller #0
[  166.065691][ T9021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  166.065701][ T9021] Call Trace:
[  166.065708][ T9021]  <TASK>
[  166.065715][ T9021]  dump_stack_lvl+0xf2/0x150
[  166.065741][ T9021]  dump_stack+0x15/0x1a
[  166.065764][ T9021]  warn_alloc+0x145/0x1b0
[  166.065854][ T9021]  __vmalloc_node_range_noprof+0x473/0xe70
[  166.065890][ T9021]  ? sel_write_load+0x152/0x360
[  166.065914][ T9021]  vmalloc_noprof+0x5e/0x70
[  166.065943][ T9021]  ? sel_write_load+0x152/0x360
[  166.065961][ T9021]  sel_write_load+0x152/0x360
[  166.065977][ T9021]  ? __pfx_sel_write_load+0x10/0x10
[  166.065998][ T9021]  vfs_write+0x27d/0x920
[  166.066095][ T9021]  ? __fget_files+0x17c/0x1c0
[  166.066130][ T9021]  ksys_write+0xe8/0x1b0
[  166.066159][ T9021]  __x64_sys_write+0x42/0x50
[  166.066268][ T9021]  x64_sys_call+0x287e/0x2dc0
[  166.066296][ T9021]  do_syscall_64+0xc9/0x1c0
[  166.066327][ T9021]  ? clear_bhb_loop+0x55/0xb0
[  166.066356][ T9021]  ? clear_bhb_loop+0x55/0xb0
[  166.066425][ T9021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.066449][ T9021] RIP: 0033:0x7f5eb2fbd169
[  166.066465][ T9021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.066485][ T9021] RSP: 002b:00007f5eb1600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  166.066504][ T9021] RAX: ffffffffffffffda RBX: 00007f5eb31d6080 RCX: 00007f5eb2fbd169
[  166.066546][ T9021] RDX: 0000000000000020 RSI: 0000200000000080 RDI: 0000000000000004
[  166.066557][ T9021] RBP: 00007f5eb1600090 R08: 0000000000000000 R09: 0000000000000000
[  166.066567][ T9021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.066577][ T9021] R13: 0000000000000000 R14: 00007f5eb31d6080 R15: 00007ffefa59ce48
[  166.066594][ T9021]  </TASK>
[  166.066600][ T9021] Mem-Info:
[  166.133332][ T9026] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2006'.
[  166.135276][ T9021] active_anon:25074 inactive_anon:12588 isolated_anon:0
[  166.135276][ T9021]  active_file:18899 inactive_file:2192 isolated_file:0
[  166.135276][ T9021]  unevictable:3 dirty:603 writeback:0
[  166.135276][ T9021]  slab_reclaimable:3086 slab_unreclaimable:16639
[  166.135276][ T9021]  mapped:32628 shmem:31943 pagetables:1362
[  166.135276][ T9021]  sec_pagetables:0 bounce:0
[  166.135276][ T9021]  kernel_misc_reclaimable:0
[  166.135276][ T9021]  free:1851890 free_pcp:4431 free_cma:0
[  166.139500][ T9026] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2006'.
[  166.139512][ T9026] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2006'.
[  166.199757][ T9027] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2006'.
[  166.201612][ T9021] Node 0 active_anon:100412kB inactive_anon:50352kB active_file:75596kB inactive_file:8768kB unevictable:12kB isolated(anon):0kB isolated(file):0kB mapped:131904kB dirty:2412kB writeback:0kB shmem:127772kB writeback_tmp:0kB kernel_stack:3296kB pagetables:5448kB sec_pagetables:0kB all_unreclaimable? no
[  166.366144][ T9021] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  166.393069][ T9021] lowmem_reserve[]: 0 2885 7863 7863
[  166.398437][ T9021] Node 0 DMA32 free:2950720kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954352kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  166.427024][ T9021] lowmem_reserve[]: 0 0 4978 4978
[  166.432108][ T9021] Node 0 Normal free:4439192kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:100412kB inactive_anon:50352kB active_file:75596kB inactive_file:8768kB unevictable:12kB writepending:2412kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:14272kB local_pcp:8080kB free_cma:0kB
[  166.462895][ T9021] lowmem_reserve[]: 0 0 0 0
[  166.467440][ T9021] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  166.480192][ T9021] Node 0 DMA32: 2*4kB (M) 1*8kB (M) 1*16kB (M) 3*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950720kB
[  166.496320][ T9021] Node 0 Normal: 942*4kB (UME) 780*8kB (UME) 278*16kB (UME) 315*32kB (UME) 247*64kB (UME) 108*128kB (UME) 81*256kB (UME) 50*512kB (UME) 41*1024kB (UME) 24*2048kB (UME) 1037*4096kB (UM) = 4439192kB
[  166.515796][ T9021] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  166.525081][ T9021] 53051 total pagecache pages
[  166.529742][ T9021] 12 pages in swap cache
[  166.534011][ T9021] Free swap  = 104928kB
[  166.538167][ T9021] Total swap = 124996kB
[  166.542324][ T9021] 2097051 pages RAM
[  166.546137][ T9021] 0 pages HighMem/MovableOnly
[  166.550798][ T9021] 80071 pages reserved
[  166.555427][ T9024] SELinux:  policydb version -843889552 does not match my version range 15-34
[  166.564451][ T9024] SELinux: failed to load policy
[  166.668942][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.737154][ T9042] loop2: detected capacity change from 0 to 512
[  166.817478][ T9053] __nla_validate_parse: 1 callbacks suppressed
[  166.817496][ T9053] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2008'.
[  166.856452][ T9055] 9pnet_fd: Insufficient options for proto=fd
[  166.917656][ T9058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2013'.
[  166.975352][ T9042] EXT4-fs (loop2): 1 orphan inode deleted
[  166.987944][ T9042] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.185257][   T12] __quota_error: 102 callbacks suppressed
[  167.185276][   T12] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  167.200795][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 1
[  167.215834][ T9042] ext4 filesystem being mounted at /368/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.531740][ T9067] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2021'.
[  167.718003][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.741991][ T9073] FAULT_INJECTION: forcing a failure.
[  167.741991][ T9073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.755127][ T9073] CPU: 0 UID: 0 PID: 9073 Comm: syz.0.2023 Not tainted 6.14.0-syzkaller #0
[  167.755152][ T9073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  167.755166][ T9073] Call Trace:
[  167.755178][ T9073]  <TASK>
[  167.755186][ T9073]  dump_stack_lvl+0xf2/0x150
[  167.755216][ T9073]  dump_stack+0x15/0x1a
[  167.755235][ T9073]  should_fail_ex+0x24a/0x260
[  167.755288][ T9073]  should_fail+0xb/0x10
[  167.755318][ T9073]  should_fail_usercopy+0x1a/0x20
[  167.755351][ T9073]  _copy_from_iter+0xd5/0xd00
[  167.755387][ T9073]  ? kmalloc_reserve+0x16e/0x190
[  167.755483][ T9073]  ? __build_skb_around+0x196/0x1f0
[  167.755539][ T9073]  ? __alloc_skb+0x21f/0x310
[  167.755562][ T9073]  ? __virt_addr_valid+0x1ed/0x250
[  167.755587][ T9073]  ? __check_object_size+0x364/0x520
[  167.755626][ T9073]  netlink_sendmsg+0x460/0x6e0
[  167.755670][ T9073]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.755686][ T9073]  __sock_sendmsg+0x140/0x180
[  167.755715][ T9073]  ____sys_sendmsg+0x326/0x4b0
[  167.755747][ T9073]  __sys_sendmsg+0x19d/0x230
[  167.755800][ T9073]  __x64_sys_sendmsg+0x46/0x50
[  167.755840][ T9073]  x64_sys_call+0x2734/0x2dc0
[  167.755864][ T9073]  do_syscall_64+0xc9/0x1c0
[  167.755898][ T9073]  ? clear_bhb_loop+0x55/0xb0
[  167.755925][ T9073]  ? clear_bhb_loop+0x55/0xb0
[  167.756022][ T9073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.756049][ T9073] RIP: 0033:0x7fbfb509d169
[  167.756064][ T9073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.756083][ T9073] RSP: 002b:00007fbfb3707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.756101][ T9073] RAX: ffffffffffffffda RBX: 00007fbfb52b5fa0 RCX: 00007fbfb509d169
[  167.756114][ T9073] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  167.756207][ T9073] RBP: 00007fbfb3707090 R08: 0000000000000000 R09: 0000000000000000
[  167.756219][ T9073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.756232][ T9073] R13: 0000000000000000 R14: 00007fbfb52b5fa0 R15: 00007ffebe8fe838
[  167.756251][ T9073]  </TASK>
[  168.010082][ T9075] validate_nla: 11 callbacks suppressed
[  168.010105][ T9075] netlink: 'syz.0.2025': attribute type 4 has an invalid length.
[  168.084315][ T9087] netlink: 'syz.0.2025': attribute type 4 has an invalid length.
[  168.128356][ T9092] netlink: 'syz.2.2031': attribute type 1 has an invalid length.
[  168.137990][ T9094] netlink: 'syz.4.2032': attribute type 4 has an invalid length.
[  168.170043][ T9094] netlink: 'syz.4.2032': attribute type 4 has an invalid length.
[  168.192594][ T9098] FAULT_INJECTION: forcing a failure.
[  168.192594][ T9098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.205820][ T9098] CPU: 0 UID: 0 PID: 9098 Comm: +}[@ Not tainted 6.14.0-syzkaller #0
[  168.205844][ T9098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  168.205858][ T9098] Call Trace:
[  168.205864][ T9098]  <TASK>
[  168.205872][ T9098]  dump_stack_lvl+0xf2/0x150
[  168.205901][ T9098]  dump_stack+0x15/0x1a
[  168.205995][ T9098]  should_fail_ex+0x24a/0x260
[  168.206043][ T9098]  should_fail+0xb/0x10
[  168.206143][ T9098]  should_fail_usercopy+0x1a/0x20
[  168.206180][ T9098]  _copy_from_user+0x1c/0xa0
[  168.206202][ T9098]  sg_new_write+0x77a/0x8e0
[  168.206298][ T9098]  sg_ioctl+0xe22/0x1870
[  168.206329][ T9098]  ? __fget_files+0x17c/0x1c0
[  168.206368][ T9098]  ? __pfx_sg_ioctl+0x10/0x10
[  168.206399][ T9098]  __se_sys_ioctl+0xc9/0x140
[  168.206485][ T9098]  __x64_sys_ioctl+0x43/0x50
[  168.206511][ T9098]  x64_sys_call+0x1690/0x2dc0
[  168.206540][ T9098]  do_syscall_64+0xc9/0x1c0
[  168.206635][ T9098]  ? clear_bhb_loop+0x55/0xb0
[  168.206731][ T9098]  ? clear_bhb_loop+0x55/0xb0
[  168.206760][ T9098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.206789][ T9098] RIP: 0033:0x7f845e77d169
[  168.206804][ T9098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.206824][ T9098] RSP: 002b:00007f845cde7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.206843][ T9098] RAX: ffffffffffffffda RBX: 00007f845e995fa0 RCX: 00007f845e77d169
[  168.206868][ T9098] RDX: 0000200000000040 RSI: 0000000000002285 RDI: 0000000000000006
[  168.206880][ T9098] RBP: 00007f845cde7090 R08: 0000000000000000 R09: 0000000000000000
[  168.206890][ T9098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.206900][ T9098] R13: 0000000000000000 R14: 00007f845e995fa0 R15: 00007ffc5f5f4a68
[  168.206917][ T9098]  </TASK>
[  168.393317][   T29] audit: type=1326 audit(1742855010.110:5418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9101 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.416897][   T29] audit: type=1326 audit(1742855010.110:5419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9101 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.440463][   T29] audit: type=1326 audit(1742855010.110:5420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9101 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.464058][   T29] audit: type=1326 audit(1742855010.110:5421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9101 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.506236][ T9109] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2040'.
[  168.527280][ T9113] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.537055][ T9113] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.542173][ T9116] loop2: detected capacity change from 0 to 512
[  168.560889][ T9118] netlink: 'syz.0.2044': attribute type 4 has an invalid length.
[  168.588638][ T9116] EXT4-fs (loop2): 1 orphan inode deleted
[  168.594307][ T9118] netlink: 'syz.0.2044': attribute type 4 has an invalid length.
[  168.596367][ T9116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.616308][ T9116] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.632889][  T263] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  168.642658][  T263] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 1
[  168.663301][ T9113] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.673116][ T9113] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.694066][ T9134] netlink: 'syz.0.2050': attribute type 4 has an invalid length.
[  168.714758][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  168.726139][   T29] audit: type=1326 audit(1742855010.620:5422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9136 comm="syz.3.2052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.749563][   T29] audit: type=1326 audit(1742855010.620:5423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9136 comm="syz.3.2052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.775618][ T9139] netlink: 'syz.0.2050': attribute type 4 has an invalid length.
[  168.798405][ T9113] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.808312][ T9113] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.818326][   T29] audit: type=1326 audit(1742855010.630:5424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9136 comm="syz.3.2052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.821774][ T9141] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[  168.841793][   T29] audit: type=1326 audit(1742855010.680:5425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9136 comm="syz.3.2052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  168.915178][ T9113] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  168.917009][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.924942][ T9113] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.949354][ T9141] loop4: detected capacity change from 0 to 512
[  168.957326][ T9141] EXT4-fs (loop4): failed to initialize system zone (-117)
[  168.964669][ T9141] EXT4-fs (loop4): mount failed
[  168.983208][ T9155] netlink: 1288 bytes leftover after parsing attributes in process `syz.2.2057'.
[  168.998981][ T9113] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  169.007330][ T9113] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.033952][ T9113] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  169.042248][ T9113] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.055509][ T9113] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  169.063797][ T9113] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.076938][ T9113] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  169.085217][ T9113] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.089704][ T9165] netlink: 'syz.4.2060': attribute type 1 has an invalid length.
[  169.131188][ T9165] 8021q: adding VLAN 0 to HW filter on device bond1
[  169.198615][ T9177] loop2: detected capacity change from 0 to 512
[  169.215177][ T9177] EXT4-fs (loop2): 1 orphan inode deleted
[  169.221426][ T9177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.234151][  T263] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 1
[  169.234321][ T9177] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.306791][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.325962][ T9188] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.364971][ T9188] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.414906][ T9188] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.474424][ T9188] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.513836][ T9208] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.658692][ T9208] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.715751][ T9208] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.762527][ T9217] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2077'.
[  170.150428][ T9208] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.506632][ T9225] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2079'.
[  170.549851][ T9227] loop3: detected capacity change from 0 to 512
[  170.559928][ T1298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  170.606755][ T9227] EXT4-fs (loop3): 1 orphan inode deleted
[  170.624070][ T1298] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  170.642393][ T9227] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.678554][ T9208] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.713965][ T9227] ext4 filesystem being mounted at /423/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.733298][ T9208] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.744859][ T9208] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.756006][ T9208] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.842950][ T9234] netlink: 1288 bytes leftover after parsing attributes in process `syz.0.2082'.
[  170.858063][ T9231] 8021q: adding VLAN 0 to HW filter on device bond2
[  170.886351][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.910988][ T9188] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.941940][ T9188] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.971705][ T9188] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.003620][ T9188] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.068298][ T9247] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2086'.
[  171.077419][ T9247] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2086'.
[  171.363891][ T9254] loop2: detected capacity change from 0 to 1024
[  171.381872][ T9254] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.476155][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.518713][ T9284] loop4: detected capacity change from 0 to 512
[  171.705890][ T9284] EXT4-fs (loop4): 1 orphan inode deleted
[  171.712061][ T9284] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.733584][  T263] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 1
[  171.784888][ T9284] ext4 filesystem being mounted at /486/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.876591][ T9314] __nla_validate_parse: 2 callbacks suppressed
[  171.876610][ T9314] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2110'.
[  171.933749][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.118720][ T9333] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  172.125380][ T9333] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  172.133071][ T9333] vhci_hcd vhci_hcd.0: Device attached
[  172.192827][ T9340] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2122'.
[  172.218687][ T9338] vlan0: entered allmulticast mode
[  172.223937][ T9338] bridge_slave_0: entered allmulticast mode
[  172.238486][ T9344] loop2: detected capacity change from 0 to 512
[  172.246563][ T9338] bridge_slave_0: left allmulticast mode
[  172.275048][ T9344] EXT4-fs (loop2): 1 orphan inode deleted
[  172.281139][ T9344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.298401][ T1298] __quota_error: 63 callbacks suppressed
[  172.298416][ T1298] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  172.314052][ T1298] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  172.325560][ T1031] vhci_hcd: vhci_device speed not set
[  172.353698][ T9344] ext4 filesystem being mounted at /391/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.382815][ T1031] usb 3-1: new full-speed USB device number 6 using vhci_hcd
[  172.528367][ T9359] loop4: detected capacity change from 0 to 512
[  172.535930][ T9359] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  172.576066][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.587240][ T9359] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.602967][ T9359] ext4 filesystem being mounted at /492/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  172.633767][   T29] audit: type=1326 audit(1742855014.540:5486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.2.2131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5eb2fbd169 code=0x7ffc0000
[  172.659992][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.660825][   T29] audit: type=1326 audit(1742855014.540:5487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.2.2131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5eb2fbd169 code=0x7ffc0000
[  172.701445][ T9368] loop3: detected capacity change from 0 to 512
[  172.706630][ T9373] FAULT_INJECTION: forcing a failure.
[  172.706630][ T9373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.720958][ T9373] CPU: 1 UID: 0 PID: 9373 Comm: syz.4.2135 Not tainted 6.14.0-syzkaller #0
[  172.721006][ T9373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  172.721050][ T9373] Call Trace:
[  172.721057][ T9373]  <TASK>
[  172.721066][ T9373]  dump_stack_lvl+0xf2/0x150
[  172.721099][ T9373]  dump_stack+0x15/0x1a
[  172.721123][ T9373]  should_fail_ex+0x24a/0x260
[  172.721154][ T9373]  should_fail+0xb/0x10
[  172.721216][ T9373]  should_fail_usercopy+0x1a/0x20
[  172.721255][ T9373]  _copy_from_iter+0xd5/0xd00
[  172.721288][ T9373]  ? kmalloc_reserve+0x16e/0x190
[  172.721462][ T9373]  ? __build_skb_around+0x196/0x1f0
[  172.721507][ T9373]  ? __alloc_skb+0x21f/0x310
[  172.721532][ T9373]  ? __virt_addr_valid+0x1ed/0x250
[  172.721562][ T9373]  ? __check_object_size+0x364/0x520
[  172.721604][ T9373]  netlink_sendmsg+0x460/0x6e0
[  172.721631][ T9373]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.721654][ T9373]  __sock_sendmsg+0x140/0x180
[  172.721739][ T9373]  ____sys_sendmsg+0x326/0x4b0
[  172.721821][ T9373]  __sys_sendmsg+0x19d/0x230
[  172.721889][ T9373]  __x64_sys_sendmsg+0x46/0x50
[  172.721992][ T9373]  x64_sys_call+0x2734/0x2dc0
[  172.722026][ T9373]  do_syscall_64+0xc9/0x1c0
[  172.722063][ T9373]  ? clear_bhb_loop+0x55/0xb0
[  172.722159][ T9373]  ? clear_bhb_loop+0x55/0xb0
[  172.722185][ T9373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.722211][ T9373] RIP: 0033:0x7f3729f8d169
[  172.722228][ T9373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.722249][ T9373] RSP: 002b:00007f37285f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.722270][ T9373] RAX: ffffffffffffffda RBX: 00007f372a1a5fa0 RCX: 00007f3729f8d169
[  172.722383][ T9373] RDX: 0000000020048840 RSI: 00002000000000c0 RDI: 0000000000000003
[  172.722431][ T9373] RBP: 00007f37285f7090 R08: 0000000000000000 R09: 0000000000000000
[  172.722442][ T9373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.722453][ T9373] R13: 0000000000000000 R14: 00007f372a1a5fa0 R15: 00007ffd2c97c2b8
[  172.722472][ T9373]  </TASK>
[  172.930491][   T29] audit: type=1326 audit(1742855014.830:5488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.2.2131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5eb2fbd169 code=0x7ffc0000
[  172.954032][   T29] audit: type=1326 audit(1742855014.830:5489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.2.2131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5eb2fbd169 code=0x7ffc0000
[  172.986897][ T9377] 8021q: adding VLAN 0 to HW filter on device bond1
[  172.988535][ T9334] vhci_hcd: connection reset by peer
[  173.000885][ T9368] EXT4-fs (loop3): 1 orphan inode deleted
[  173.007277][ T9368] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.007481][ T1298] vhci_hcd: stop threads
[  173.024132][ T1298] vhci_hcd: release socket
[  173.026284][   T12] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  173.028544][ T1298] vhci_hcd: disconnect device
[  173.038333][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 1
[  173.044306][ T9368] ext4 filesystem being mounted at /429/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.101976][ T9386] loop2: detected capacity change from 0 to 256
[  173.142652][ T9389] validate_nla: 17 callbacks suppressed
[  173.142669][ T9389] netlink: 'syz.4.2141': attribute type 4 has an invalid length.
[  173.183190][ T9389] netlink: 'syz.4.2141': attribute type 4 has an invalid length.
[  173.204299][ T9393] loop2: detected capacity change from 0 to 1024
[  173.227232][ T9393] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  173.230106][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.237043][ T9393] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  173.255987][ T9393] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  173.270680][ T9393] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.2142: unexpected bad inode w/o EXT4_IGET_BAD
[  173.285544][ T9393] EXT4-fs (loop2): no journal found
[  173.290785][ T9393] EXT4-fs (loop2): can't get journal size
[  173.303889][ T9393] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  173.338852][ T9400] FAULT_INJECTION: forcing a failure.
[  173.338852][ T9400] name failslab, interval 1, probability 0, space 0, times 0
[  173.351535][ T9400] CPU: 0 UID: 0 PID: 9400 Comm: syz.4.2145 Not tainted 6.14.0-syzkaller #0
[  173.351638][ T9400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.351652][ T9400] Call Trace:
[  173.351658][ T9400]  <TASK>
[  173.351665][ T9400]  dump_stack_lvl+0xf2/0x150
[  173.351696][ T9400]  dump_stack+0x15/0x1a
[  173.351720][ T9400]  should_fail_ex+0x24a/0x260
[  173.351771][ T9400]  should_failslab+0x8f/0xb0
[  173.351806][ T9400]  kmem_cache_alloc_node_noprof+0x59/0x320
[  173.351869][ T9400]  ? __alloc_skb+0x10b/0x310
[  173.351895][ T9400]  __alloc_skb+0x10b/0x310
[  173.351919][ T9400]  netlink_alloc_large_skb+0xad/0xe0
[  173.351954][ T9400]  netlink_sendmsg+0x3b4/0x6e0
[  173.351979][ T9400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.352000][ T9400]  __sock_sendmsg+0x140/0x180
[  173.352100][ T9400]  ____sys_sendmsg+0x326/0x4b0
[  173.352133][ T9400]  __sys_sendmmsg+0x227/0x4b0
[  173.352188][ T9400]  __x64_sys_sendmmsg+0x57/0x70
[  173.352218][ T9400]  x64_sys_call+0x29aa/0x2dc0
[  173.352248][ T9400]  do_syscall_64+0xc9/0x1c0
[  173.352284][ T9400]  ? clear_bhb_loop+0x55/0xb0
[  173.352311][ T9400]  ? clear_bhb_loop+0x55/0xb0
[  173.352414][ T9400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.352492][ T9400] RIP: 0033:0x7f3729f8d169
[  173.352509][ T9400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.352529][ T9400] RSP: 002b:00007f37285f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  173.352547][ T9400] RAX: ffffffffffffffda RBX: 00007f372a1a5fa0 RCX: 00007f3729f8d169
[  173.352560][ T9400] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  173.352571][ T9400] RBP: 00007f37285f7090 R08: 0000000000000000 R09: 0000000000000000
[  173.352583][ T9400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.352664][ T9400] R13: 0000000000000000 R14: 00007f372a1a5fa0 R15: 00007ffd2c97c2b8
[  173.352713][ T9400]  </TASK>
[  173.580495][ T9413] netlink: 'syz.4.2149': attribute type 1 has an invalid length.
[  173.594523][ T9413] 8021q: adding VLAN 0 to HW filter on device bond3
[  173.632275][   T29] audit: type=1326 audit(1742855015.530:5490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9417 comm="syz.0.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb509d169 code=0x7ffc0000
[  173.659449][   T29] audit: type=1326 audit(1742855015.530:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9417 comm="syz.0.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb509d169 code=0x7ffc0000
[  173.682964][   T29] audit: type=1326 audit(1742855015.530:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9417 comm="syz.0.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fbfb509d169 code=0x7ffc0000
[  173.706423][   T29] audit: type=1326 audit(1742855015.560:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9417 comm="syz.0.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb509d169 code=0x7ffc0000
[  173.714704][ T9393] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2142'.
[  173.816112][ T9430] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2148'.
[  173.832142][ T9431] netlink: 'syz.1.2154': attribute type 4 has an invalid length.
[  173.840274][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  173.886134][ T9433] netlink: 'syz.0.2153': attribute type 4 has an invalid length.
[  173.935285][ T9428] netlink: 'syz.0.2153': attribute type 4 has an invalid length.
[  174.113706][ T9440] netlink: 'syz.1.2154': attribute type 4 has an invalid length.
[  174.229727][ T9439] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  174.283938][ T9448] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  174.283963][ T9448] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  174.284036][ T9448] vhci_hcd vhci_hcd.0: Device attached
[  174.428837][ T9452] loop4: detected capacity change from 0 to 1024
[  174.449869][ T9452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.462817][ T4655] vhci_hcd: vhci_device speed not set
[  174.515134][ T9460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2164'.
[  174.532788][ T4655] usb 7-1: new full-speed USB device number 4 using vhci_hcd
[  174.560319][ T9466] netlink: 'syz.1.2166': attribute type 4 has an invalid length.
[  174.584016][ T9466] netlink: 'syz.1.2166': attribute type 4 has an invalid length.
[  174.640416][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.699451][ T9477] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  174.801868][ T9482] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2168'.
[  174.918918][ T9486] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2172'.
[  175.111511][ T9449] vhci_hcd: connection reset by peer
[  175.122782][ T8046] vhci_hcd: stop threads
[  175.127119][ T8046] vhci_hcd: release socket
[  175.131630][ T8046] vhci_hcd: disconnect device
[  175.672508][ T9504] netlink: 'syz.3.2178': attribute type 4 has an invalid length.
[  175.716563][ T9507] FAULT_INJECTION: forcing a failure.
[  175.716563][ T9507] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.729789][ T9507] CPU: 0 UID: 0 PID: 9507 Comm: syz.0.2177 Not tainted 6.14.0-syzkaller #0
[  175.729871][ T9507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  175.729887][ T9507] Call Trace:
[  175.729895][ T9507]  <TASK>
[  175.729904][ T9507]  dump_stack_lvl+0xf2/0x150
[  175.729939][ T9507]  dump_stack+0x15/0x1a
[  175.729965][ T9507]  should_fail_ex+0x24a/0x260
[  175.730059][ T9507]  should_fail+0xb/0x10
[  175.730122][ T9507]  should_fail_usercopy+0x1a/0x20
[  175.730160][ T9507]  _copy_from_user+0x1c/0xa0
[  175.730199][ T9507]  move_addr_to_kernel+0x82/0x120
[  175.730292][ T9507]  __sys_bind+0x9e/0x190
[  175.730323][ T9507]  __x64_sys_bind+0x41/0x50
[  175.730346][ T9507]  x64_sys_call+0x20ab/0x2dc0
[  175.730377][ T9507]  do_syscall_64+0xc9/0x1c0
[  175.730457][ T9507]  ? clear_bhb_loop+0x55/0xb0
[  175.730504][ T9507]  ? clear_bhb_loop+0x55/0xb0
[  175.730534][ T9507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.730564][ T9507] RIP: 0033:0x7fbfb509d169
[  175.730581][ T9507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.730610][ T9507] RSP: 002b:00007fbfb36c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  175.730631][ T9507] RAX: ffffffffffffffda RBX: 00007fbfb52b6160 RCX: 00007fbfb509d169
[  175.730645][ T9507] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000004
[  175.730658][ T9507] RBP: 00007fbfb36c5090 R08: 0000000000000000 R09: 0000000000000000
[  175.730672][ T9507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.730714][ T9507] R13: 0000000000000000 R14: 00007fbfb52b6160 R15: 00007ffebe8fe838
[  175.730736][ T9507]  </TASK>
[  175.954339][ T9508] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2176'.
[  176.224913][ T9516] loop3: detected capacity change from 0 to 512
[  176.267511][ T9518] netlink: 1288 bytes leftover after parsing attributes in process `syz.0.2181'.
[  176.287820][ T9516] EXT4-fs: user quota file already specified
[  176.394149][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  176.507623][ T9524] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2183'.
[  176.902287][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.443122][ T1031] usb 3-1: enqueue for inactive port 0
[  177.448624][ T1031] usb 3-1: enqueue for inactive port 0
[  177.466800][ T9550] __nla_validate_parse: 1 callbacks suppressed
[  177.466826][ T9550] netlink: 1288 bytes leftover after parsing attributes in process `syz.3.2192'.
[  177.532920][ T1031] vhci_hcd: vhci_device speed not set
[  177.564397][ T9559] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2196'.
[  177.573475][ T9559] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2196'.
[  177.582421][ T9559] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2196'.
[  177.755450][ T9564] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.825792][ T9564] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.836517][ T9569] tc_dump_action: action bad kind
[  177.881340][ T9564] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.914929][ T9573] 8021q: adding VLAN 0 to HW filter on device bond2
[  177.935338][ T9564] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.010128][ T9564] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  178.022158][ T9564] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  178.033607][ T9564] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  178.045746][ T9564] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  178.182333][ T9580] netlink: 1288 bytes leftover after parsing attributes in process `syz.0.2203'.
[  178.307924][ T9598] validate_nla: 6 callbacks suppressed
[  178.307941][ T9598] netlink: 'syz.0.2212': attribute type 1 has an invalid length.
[  178.326746][ T9598] 8021q: adding VLAN 0 to HW filter on device bond2
[  178.605009][ T9605] FAULT_INJECTION: forcing a failure.
[  178.605009][ T9605] name failslab, interval 1, probability 0, space 0, times 0
[  178.618155][ T9605] CPU: 0 UID: 0 PID: 9605 Comm: syz.3.2213 Not tainted 6.14.0-syzkaller #0
[  178.618180][ T9605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  178.618191][ T9605] Call Trace:
[  178.618196][ T9605]  <TASK>
[  178.618201][ T9605]  dump_stack_lvl+0xf2/0x150
[  178.618279][ T9605]  dump_stack+0x15/0x1a
[  178.618301][ T9605]  should_fail_ex+0x24a/0x260
[  178.618370][ T9605]  should_failslab+0x8f/0xb0
[  178.618403][ T9605]  kmem_cache_alloc_node_noprof+0x59/0x320
[  178.618510][ T9605]  ? perf_event_alloc+0x157/0x12d0
[  178.618613][ T9605]  perf_event_alloc+0x157/0x12d0
[  178.618637][ T9605]  __se_sys_perf_event_open+0x7f2/0x2230
[  178.618662][ T9605]  ? enqueue_hrtimer+0x8d/0x180
[  178.618693][ T9605]  ? read_tsc+0x9/0x20
[  178.618718][ T9605]  ? ktime_get+0x1ef/0x210
[  178.618837][ T9605]  ? lapic_next_event+0x11/0x20
[  178.618869][ T9605]  ? clockevents_program_event+0x196/0x1f0
[  178.618964][ T9605]  __x64_sys_perf_event_open+0x67/0x80
[  178.619011][ T9605]  x64_sys_call+0x1deb/0x2dc0
[  178.619035][ T9605]  do_syscall_64+0xc9/0x1c0
[  178.619076][ T9605]  ? clear_bhb_loop+0x55/0xb0
[  178.619107][ T9605]  ? clear_bhb_loop+0x55/0xb0
[  178.619138][ T9605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.619179][ T9605] RIP: 0033:0x7f8bd5fed169
[  178.619244][ T9605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.619260][ T9605] RSP: 002b:00007f8bd4657038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  178.619278][ T9605] RAX: ffffffffffffffda RBX: 00007f8bd6205fa0 RCX: 00007f8bd5fed169
[  178.619290][ T9605] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[  178.619302][ T9605] RBP: 00007f8bd4657090 R08: 0000000000000008 R09: 0000000000000000
[  178.619314][ T9605] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  178.619326][ T9605] R13: 0000000000000000 R14: 00007f8bd6205fa0 R15: 00007fff85bf5c18
[  178.619342][ T9605]  </TASK>
[  178.819936][ T9607] FAULT_INJECTION: forcing a failure.
[  178.819936][ T9607] name failslab, interval 1, probability 0, space 0, times 0
[  178.832748][ T9607] CPU: 1 UID: 0 PID: 9607 Comm: syz.0.2214 Not tainted 6.14.0-syzkaller #0
[  178.832773][ T9607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  178.832834][ T9607] Call Trace:
[  178.832841][ T9607]  <TASK>
[  178.832848][ T9607]  dump_stack_lvl+0xf2/0x150
[  178.832882][ T9607]  dump_stack+0x15/0x1a
[  178.832905][ T9607]  should_fail_ex+0x24a/0x260
[  178.833010][ T9607]  should_failslab+0x8f/0xb0
[  178.833037][ T9607]  __kmalloc_node_noprof+0xad/0x410
[  178.833059][ T9607]  ? __kvmalloc_node_noprof+0x72/0x170
[  178.833086][ T9607]  __kvmalloc_node_noprof+0x72/0x170
[  178.833214][ T9607]  nf_hook_entries_grow+0x1bd/0x470
[  178.833342][ T9607]  __nf_register_net_hook+0x16b/0x480
[  178.833377][ T9607]  nf_register_net_hook+0x88/0x130
[  178.833407][ T9607]  nf_register_net_hooks+0x41/0x140
[  178.833435][ T9607]  nf_defrag_ipv6_enable+0x6c/0xc0
[  178.833525][ T9607]  tproxy_tg6_check+0x2d/0x110
[  178.833558][ T9607]  xt_check_target+0x266/0x480
[  178.833592][ T9607]  ? strnlen+0x28/0x50
[  178.833614][ T9607]  ? strcmp+0x21/0x50
[  178.833728][ T9607]  ? xt_find_target+0x1c8/0x200
[  178.833762][ T9607]  translate_table+0xd02/0x1080
[  178.833797][ T9607]  do_ip6t_set_ctl+0x7cc/0x8c0
[  178.833823][ T9607]  ? kstrtouint+0x77/0xc0
[  178.833852][ T9607]  nf_setsockopt+0x195/0x1b0
[  178.833908][ T9607]  ipv6_setsockopt+0x10f/0x130
[  178.833926][ T9607]  tcp_setsockopt+0x93/0xb0
[  178.833957][ T9607]  sock_common_setsockopt+0x64/0x80
[  178.833991][ T9607]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  178.834036][ T9607]  __sys_setsockopt+0x187/0x200
[  178.834066][ T9607]  __x64_sys_setsockopt+0x66/0x80
[  178.834095][ T9607]  x64_sys_call+0x282e/0x2dc0
[  178.834125][ T9607]  do_syscall_64+0xc9/0x1c0
[  178.834167][ T9607]  ? clear_bhb_loop+0x55/0xb0
[  178.834198][ T9607]  ? clear_bhb_loop+0x55/0xb0
[  178.834223][ T9607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.834252][ T9607] RIP: 0033:0x7fbfb509d169
[  178.834268][ T9607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.834322][ T9607] RSP: 002b:00007fbfb3707038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  178.834340][ T9607] RAX: ffffffffffffffda RBX: 00007fbfb52b5fa0 RCX: 00007fbfb509d169
[  178.834352][ T9607] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  178.834365][ T9607] RBP: 00007fbfb3707090 R08: 0000000000000660 R09: 0000000000000000
[  178.834377][ T9607] R10: 0000200000000680 R11: 0000000000000246 R12: 0000000000000002
[  178.834390][ T9607] R13: 0000000000000000 R14: 00007fbfb52b5fa0 R15: 00007ffebe8fe838
[  178.834409][ T9607]  </TASK>
[  178.840226][ T9609] netlink: 1288 bytes leftover after parsing attributes in process `syz.3.2215'.
[  179.124699][ T9615] netlink: 'syz.3.2218': attribute type 1 has an invalid length.
[  179.149336][ T9615] 8021q: adding VLAN 0 to HW filter on device bond2
[  179.430841][ T9634] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.445586][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  179.445603][   T29] audit: type=1326 audit(1742855021.350:5509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.448839][ T9636] pim6reg1: entered promiscuous mode
[  179.451689][   T29] audit: type=1326 audit(1742855021.350:5510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.451717][   T29] audit: type=1326 audit(1742855021.350:5511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.475144][ T9636] pim6reg1: entered allmulticast mode
[  179.532937][   T29] audit: type=1326 audit(1742855021.350:5512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.556393][   T29] audit: type=1326 audit(1742855021.350:5513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.579700][   T29] audit: type=1326 audit(1742855021.350:5514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.603668][  T390] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  179.605519][ T4655] usb 7-1: enqueue for inactive port 0
[  179.619685][ T4655] usb 7-1: enqueue for inactive port 0
[  179.625405][   T29] audit: type=1326 audit(1742855021.350:5515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.648862][   T29] audit: type=1326 audit(1742855021.350:5516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.672332][   T29] audit: type=1326 audit(1742855021.350:5517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.695770][   T29] audit: type=1326 audit(1742855021.350:5518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9635 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  179.719733][ T4655] vhci_hcd: vhci_device speed not set
[  179.726298][ T9634] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.773989][ T9634] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.834324][ T9634] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.893441][ T9643] pim6reg1: entered promiscuous mode
[  179.898850][ T9643] pim6reg1: entered allmulticast mode
[  179.908514][ T9643] netlink: 'syz.2.2226': attribute type 39 has an invalid length.
[  179.912601][ T9634] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.925230][ T9643] veth1_macvtap: left promiscuous mode
[  179.941087][ T9634] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.953301][ T9634] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.965298][ T9634] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.259670][ T9648] netlink: 1288 bytes leftover after parsing attributes in process `syz.0.2228'.
[  180.374066][ T9652] netlink: 'syz.0.2230': attribute type 1 has an invalid length.
[  180.479669][ T9659] FAULT_INJECTION: forcing a failure.
[  180.479669][ T9659] name failslab, interval 1, probability 0, space 0, times 0
[  180.492368][ T9659] CPU: 1 UID: 0 PID: 9659 Comm: syz.0.2233 Not tainted 6.14.0-syzkaller #0
[  180.492394][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.492407][ T9659] Call Trace:
[  180.492442][ T9659]  <TASK>
[  180.492448][ T9659]  dump_stack_lvl+0xf2/0x150
[  180.492474][ T9659]  dump_stack+0x15/0x1a
[  180.492496][ T9659]  should_fail_ex+0x24a/0x260
[  180.492526][ T9659]  should_failslab+0x8f/0xb0
[  180.492559][ T9659]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  180.492657][ T9659]  ? sidtab_sid2str_get+0xb8/0x140
[  180.492692][ T9659]  kmemdup_noprof+0x2b/0x70
[  180.492725][ T9659]  sidtab_sid2str_get+0xb8/0x140
[  180.492836][ T9659]  security_sid_to_context_core+0x1eb/0x2f0
[  180.492871][ T9659]  security_sid_to_context+0x27/0x30
[  180.492902][ T9659]  avc_audit_post_callback+0x10d/0x530
[  180.492998][ T9659]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  180.493034][ T9659]  common_lsm_audit+0x90e/0x10c0
[  180.493063][ T9659]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  180.493105][ T9659]  slow_avc_audit+0xf9/0x140
[  180.493136][ T9659]  avc_has_perm+0x129/0x160
[  180.493154][ T9659]  selinux_socket_sendmsg+0x185/0x1c0
[  180.493177][ T9659]  security_socket_sendmsg+0x47/0x80
[  180.493260][ T9659]  __sock_sendmsg+0x2d/0x180
[  180.493287][ T9659]  ____sys_sendmsg+0x326/0x4b0
[  180.493389][ T9659]  __sys_sendmsg+0x19d/0x230
[  180.493441][ T9659]  __x64_sys_sendmsg+0x46/0x50
[  180.493463][ T9659]  x64_sys_call+0x2734/0x2dc0
[  180.493486][ T9659]  do_syscall_64+0xc9/0x1c0
[  180.493525][ T9659]  ? clear_bhb_loop+0x55/0xb0
[  180.493547][ T9659]  ? clear_bhb_loop+0x55/0xb0
[  180.493570][ T9659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.493593][ T9659] RIP: 0033:0x7fbfb509d169
[  180.493672][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.493687][ T9659] RSP: 002b:00007fbfb3707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.493702][ T9659] RAX: ffffffffffffffda RBX: 00007fbfb52b5fa0 RCX: 00007fbfb509d169
[  180.493775][ T9659] RDX: 0000000004000800 RSI: 0000200000000240 RDI: 0000000000000004
[  180.493785][ T9659] RBP: 00007fbfb3707090 R08: 0000000000000000 R09: 0000000000000000
[  180.493796][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.493876][ T9659] R13: 0000000000000000 R14: 00007fbfb52b5fa0 R15: 00007ffebe8fe838
[  180.493893][ T9659]  </TASK>
[  180.794089][ T9663] netlink: 'syz.4.2235': attribute type 3 has an invalid length.
[  180.812423][ T9664] loop4: detected capacity change from 0 to 2048
[  180.819846][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  180.820773][ T9666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2236'.
[  180.841109][ T9666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2236'.
[  180.852027][ T9664] loop4: detected capacity change from 0 to 2048
[  180.859295][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  180.884886][ T9670] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.894929][ T9664] loop4: detected capacity change from 0 to 2048
[  180.902033][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  180.924093][ T9664] loop4: detected capacity change from 0 to 2048
[  180.936743][ T9674] netlink: 1288 bytes leftover after parsing attributes in process `syz.1.2240'.
[  180.950022][ T9670] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.962581][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  180.983915][ T9664] loop4: detected capacity change from 0 to 2048
[  180.991248][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.004670][ T9670] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.027170][ T9664] loop4: detected capacity change from 0 to 2048
[  181.035315][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.104548][ T9670] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.109866][ T9664] loop4: detected capacity change from 0 to 2048
[  181.121696][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.143286][ T9664] loop4: detected capacity change from 0 to 2048
[  181.150485][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.172755][ T9664] loop4: detected capacity change from 0 to 2048
[  181.179970][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.201695][ T9664] loop4: detected capacity change from 0 to 2048
[  181.209499][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.232052][ T9664] loop4: detected capacity change from 0 to 2048
[  181.239129][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.284844][ T9664] loop4: detected capacity change from 0 to 2048
[  181.299971][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.349541][ T9664] loop4: detected capacity change from 0 to 2048
[  181.367209][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.414117][ T9664] loop4: detected capacity change from 0 to 2048
[  181.429845][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.471560][ T9664] loop4: detected capacity change from 0 to 2048
[  181.489228][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.535227][ T9664] loop4: detected capacity change from 0 to 2048
[  181.551085][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.591364][ T9664] loop4: detected capacity change from 0 to 2048
[  181.608305][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.643980][ T9664] loop4: detected capacity change from 0 to 2048
[  181.661543][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.707552][ T9664] loop4: detected capacity change from 0 to 2048
[  181.733746][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.766396][ T9664] loop4: detected capacity change from 0 to 2048
[  181.774384][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.818741][ T9664] loop4: detected capacity change from 0 to 2048
[  181.831188][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.903299][ T9664] loop4: detected capacity change from 0 to 2048
[  181.913062][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  181.948021][ T9664] loop4: detected capacity change from 0 to 2048
[  181.963172][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.003853][ T9664] loop4: detected capacity change from 0 to 2048
[  182.013161][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.045525][ T9664] loop4: detected capacity change from 0 to 2048
[  182.063929][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.087838][ T9690] netlink: 'syz.1.2245': attribute type 4 has an invalid length.
[  182.106442][ T9664] loop4: detected capacity change from 0 to 2048
[  182.113724][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.114135][ T9690] netlink: 'syz.1.2245': attribute type 4 has an invalid length.
[  182.142238][ T9664] loop4: detected capacity change from 0 to 2048
[  182.153039][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  182.168979][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.215305][ T9664] loop4: detected capacity change from 0 to 2048
[  182.222473][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.244932][ T9664] loop4: detected capacity change from 0 to 2048
[  182.252206][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.275374][ T9664] loop4: detected capacity change from 0 to 2048
[  182.282295][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.303924][ T9697] netlink: 'syz.2.2248': attribute type 4 has an invalid length.
[  182.305208][ T9664] loop4: detected capacity change from 0 to 2048
[  182.320114][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.341213][ T9697] netlink: 'syz.2.2248': attribute type 4 has an invalid length.
[  182.353942][ T9664] loop4: detected capacity change from 0 to 2048
[  182.369636][ T9700] FAULT_INJECTION: forcing a failure.
[  182.369636][ T9700] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.382869][ T9700] CPU: 0 UID: 0 PID: 9700 Comm: syz.2.2249 Not tainted 6.14.0-syzkaller #0
[  182.382955][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  182.382966][ T9700] Call Trace:
[  182.382971][ T9700]  <TASK>
[  182.382977][ T9700]  dump_stack_lvl+0xf2/0x150
[  182.383007][ T9700]  dump_stack+0x15/0x1a
[  182.383028][ T9700]  should_fail_ex+0x24a/0x260
[  182.383071][ T9700]  should_fail+0xb/0x10
[  182.383124][ T9700]  should_fail_usercopy+0x1a/0x20
[  182.383162][ T9700]  _copy_from_user+0x1c/0xa0
[  182.383182][ T9700]  memdup_user+0x64/0xc0
[  182.383208][ T9700]  strndup_user+0x68/0xa0
[  182.383236][ T9700]  bpf_uprobe_multi_link_attach+0x1bf/0x850
[  182.383328][ T9700]  ? __rcu_read_unlock+0x4e/0x70
[  182.383353][ T9700]  ? __fget_files+0x17c/0x1c0
[  182.383396][ T9700]  link_create+0x627/0x660
[  182.383429][ T9700]  __sys_bpf+0x430/0x7a0
[  182.383537][ T9700]  __x64_sys_bpf+0x43/0x50
[  182.383568][ T9700]  x64_sys_call+0x2914/0x2dc0
[  182.383696][ T9700]  do_syscall_64+0xc9/0x1c0
[  182.383729][ T9700]  ? clear_bhb_loop+0x55/0xb0
[  182.383755][ T9700]  ? clear_bhb_loop+0x55/0xb0
[  182.383782][ T9700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.383813][ T9700] RIP: 0033:0x7f5eb2fbd169
[  182.383896][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.383917][ T9700] RSP: 002b:00007f5eb1621038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  182.383938][ T9700] RAX: ffffffffffffffda RBX: 00007f5eb31d5fa0 RCX: 00007f5eb2fbd169
[  182.383950][ T9700] RDX: 000000000000003c RSI: 00002000000012c0 RDI: 000000000000001c
[  182.383961][ T9700] RBP: 00007f5eb1621090 R08: 0000000000000000 R09: 0000000000000000
[  182.383972][ T9700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.383983][ T9700] R13: 0000000000000000 R14: 00007f5eb31d5fa0 R15: 00007ffefa59ce48
[  182.384047][ T9700]  </TASK>
[  182.384537][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.446320][ T9702] SET target dimension over the limit!
[  182.608835][ T9664] loop4: detected capacity change from 0 to 2048
[  182.616187][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.638640][ T9664] loop4: detected capacity change from 0 to 2048
[  182.646084][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.670851][ T9664] loop4: detected capacity change from 0 to 2048
[  182.679247][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.697304][ T9709] __nla_validate_parse: 1 callbacks suppressed
[  182.697316][ T9709] netlink: 1288 bytes leftover after parsing attributes in process `syz.2.2252'.
[  182.703634][ T9664] loop4: detected capacity change from 0 to 2048
[  182.737189][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.757424][ T9713] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2254'.
[  182.761637][ T9664] loop4: detected capacity change from 0 to 2048
[  182.774336][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.798897][ T9664] loop4: detected capacity change from 0 to 2048
[  182.806281][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.827937][ T9664] loop4: detected capacity change from 0 to 2048
[  182.835458][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.859182][ T9664] loop4: detected capacity change from 0 to 2048
[  182.867251][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.889627][ T9664] loop4: detected capacity change from 0 to 2048
[  182.897375][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.926857][ T9664] loop4: detected capacity change from 0 to 2048
[  182.938786][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  182.966444][ T9722] loop3: detected capacity change from 0 to 8192
[  182.969801][ T9664] loop4: detected capacity change from 0 to 2048
[  182.981000][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  183.007612][ T9664] loop4: detected capacity change from 0 to 2048
[  183.021134][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  183.043712][ T9664] loop4: detected capacity change from 0 to 2048
[  183.134141][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  183.208572][ T9664] loop4: detected capacity change from 0 to 2048
[  183.625788][ T9664] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 64
[  183.821167][ T9739] netlink: 1288 bytes leftover after parsing attributes in process `syz.4.2264'.
[  183.990019][ T9742] FAULT_INJECTION: forcing a failure.
[  183.990019][ T9742] name failslab, interval 1, probability 0, space 0, times 0
[  184.002706][ T9742] CPU: 0 UID: 0 PID: 9742 Comm: syz.1.2266 Not tainted 6.14.0-syzkaller #0
[  184.002733][ T9742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.002746][ T9742] Call Trace:
[  184.002751][ T9742]  <TASK>
[  184.002758][ T9742]  dump_stack_lvl+0xf2/0x150
[  184.002791][ T9742]  dump_stack+0x15/0x1a
[  184.002861][ T9742]  should_fail_ex+0x24a/0x260
[  184.002957][ T9742]  ? kobject_uevent_env+0x1a4/0x550
[  184.002979][ T9742]  should_failslab+0x8f/0xb0
[  184.003005][ T9742]  __kmalloc_cache_noprof+0x4e/0x320
[  184.003079][ T9742]  kobject_uevent_env+0x1a4/0x550
[  184.003110][ T9742]  kobject_uevent+0x1c/0x30
[  184.003137][ T9742]  __kobject_del+0x8e/0x1a0
[  184.003180][ T9742]  kobject_put+0x126/0x180
[  184.003198][ T9742]  netdev_queue_update_kobjects+0x38d/0x3c0
[  184.003228][ T9742]  netdev_unregister_kobject+0xc1/0x120
[  184.003301][ T9742]  unregister_netdevice_many_notify+0xe77/0x1280
[  184.003333][ T9742]  ? __flush_work+0x4a1/0x580
[  184.003361][ T9742]  ? detach_if_pending+0x94/0x200
[  184.003406][ T9742]  unregister_netdevice_queue+0x1f4/0x220
[  184.003454][ T9742]  unregister_netdev+0x1f/0x50
[  184.003481][ T9742]  slip_close+0xe5/0x100
[  184.003501][ T9742]  ? __pfx_slip_close+0x10/0x10
[  184.003523][ T9742]  tty_ldisc_close+0x77/0xa0
[  184.003551][ T9742]  tty_set_ldisc+0x1e2/0x3b0
[  184.003579][ T9742]  tiocsetd+0x52/0x60
[  184.003663][ T9742]  tty_ioctl+0xa94/0xbe0
[  184.003689][ T9742]  ? __pfx_tty_ioctl+0x10/0x10
[  184.003731][ T9742]  __se_sys_ioctl+0xc9/0x140
[  184.003759][ T9742]  __x64_sys_ioctl+0x43/0x50
[  184.003836][ T9742]  x64_sys_call+0x1690/0x2dc0
[  184.003875][ T9742]  do_syscall_64+0xc9/0x1c0
[  184.003907][ T9742]  ? clear_bhb_loop+0x55/0xb0
[  184.003935][ T9742]  ? clear_bhb_loop+0x55/0xb0
[  184.004034][ T9742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.004058][ T9742] RIP: 0033:0x7f845e77d169
[  184.004072][ T9742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.004110][ T9742] RSP: 002b:00007f845cde7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  184.004127][ T9742] RAX: ffffffffffffffda RBX: 00007f845e995fa0 RCX: 00007f845e77d169
[  184.004139][ T9742] RDX: 0000200000000140 RSI: 0000000000005423 RDI: 0000000000000003
[  184.004150][ T9742] RBP: 00007f845cde7090 R08: 0000000000000000 R09: 0000000000000000
[  184.004161][ T9742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.004172][ T9742] R13: 0000000000000000 R14: 00007f845e995fa0 R15: 00007ffc5f5f4a68
[  184.004190][ T9742]  </TASK>
[  184.272444][ T9754] loop4: detected capacity change from 0 to 1024
[  184.284917][ T9754] EXT4-fs: Ignoring removed nobh option
[  184.290531][ T9754] EXT4-fs: Ignoring removed bh option
[  184.335788][ T9754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.356268][ T9762] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  184.398781][ T9768] netlink: 'syz.2.2277': attribute type 66 has an invalid length.
[  184.409319][ T9772] netlink: 1288 bytes leftover after parsing attributes in process `syz.3.2276'.
[  184.439955][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.441921][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.456583][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.464118][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  184.464203][   T29] audit: type=1400 audit(1742855026.360:5533): avc:  denied  { mount } for  pid=9765 comm="syz.1.2275" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  184.464333][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.470899][ T9766] FAULT_INJECTION: forcing a failure.
[  184.470899][ T9766] name failslab, interval 1, probability 0, space 0, times 0
[  184.492321][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.499678][ T9766] CPU: 1 UID: 0 PID: 9766 Comm: syz.1.2275 Not tainted 6.14.0-syzkaller #0
[  184.499702][ T9766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.499715][ T9766] Call Trace:
[  184.499722][ T9766]  <TASK>
[  184.499730][ T9766]  dump_stack_lvl+0xf2/0x150
[  184.499761][ T9766]  dump_stack+0x15/0x1a
[  184.499848][ T9766]  should_fail_ex+0x24a/0x260
[  184.499877][ T9766]  ? get_mountpoint+0x179/0x2d0
[  184.499907][ T9766]  should_failslab+0x8f/0xb0
[  184.500005][ T9766]  __kmalloc_cache_noprof+0x4e/0x320
[  184.500033][ T9766]  ? should_fail_ex+0xd7/0x260
[  184.500067][ T9766]  get_mountpoint+0x179/0x2d0
[  184.500100][ T9766]  attach_recursive_mnt+0xca/0x1060
[  184.500141][ T9766]  ? _raw_spin_unlock+0x26/0x50
[  184.500170][ T9766]  do_move_mount+0x478/0x550
[  184.500198][ T9766]  do_move_mount_old+0xa0/0xd0
[  184.500309][ T9766]  path_mount+0x536/0xb30
[  184.500344][ T9766]  __se_sys_mount+0x27f/0x2d0
[  184.500377][ T9766]  ? fput+0x1c4/0x200
[  184.500403][ T9766]  __x64_sys_mount+0x67/0x80
[  184.500495][ T9766]  x64_sys_call+0x2c84/0x2dc0
[  184.500526][ T9766]  do_syscall_64+0xc9/0x1c0
[  184.500571][ T9766]  ? clear_bhb_loop+0x55/0xb0
[  184.500609][ T9766]  ? clear_bhb_loop+0x55/0xb0
[  184.500638][ T9766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.500744][ T9766] RIP: 0033:0x7f845e77d169
[  184.500761][ T9766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.500780][ T9766] RSP: 002b:00007f845cde7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  184.500800][ T9766] RAX: ffffffffffffffda RBX: 00007f845e995fa0 RCX: 00007f845e77d169
[  184.500813][ T9766] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000200000000480
[  184.500826][ T9766] RBP: 00007f845cde7090 R08: 0000000000000000 R09: 0000000000000000
[  184.500873][ T9766] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  184.500885][ T9766] R13: 0000000000000000 R14: 00007f845e995fa0 R15: 00007ffc5f5f4a68
[  184.500906][ T9766]  </TASK>
[  184.631273][   T29] audit: type=1400 audit(1742855026.530:5534): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  184.634870][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.748454][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.755953][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.763372][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.770757][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.778179][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.785702][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.793241][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.800802][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.806655][ T9670] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  184.808268][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.823856][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.826468][ T9670] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  184.831223][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.846858][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.854346][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.859144][ T9670] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  184.861724][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.877334][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.884822][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.891132][ T9670] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.892257][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.892279][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.892298][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.892321][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.892340][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.937555][ T4655] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  184.950982][ T4655] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  185.159519][   T29] audit: type=1400 audit(1742855027.060:5535): avc:  denied  { write } for  pid=9808 comm="syz.0.2292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  185.188679][ T9816] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.264300][ T9816] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.334598][ T9816] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.349050][ T9826] netlink: 'syz.2.2299': attribute type 4 has an invalid length.
[  185.363102][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  185.394687][ T9816] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.395358][ T9826] netlink: 'syz.2.2299': attribute type 4 has an invalid length.
[  185.463878][ T9816] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.490383][ T9816] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.509306][ T9816] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.525379][ T9816] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.537127][ T9832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2300'.
[  185.550715][ T9834] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  185.557310][ T9834] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  185.564912][ T9834] vhci_hcd vhci_hcd.0: Device attached
[  185.571991][ T9832] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2300'.
[  185.678428][   T29] audit: type=1326 audit(1742855027.580:5536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9846 comm="syz.1.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.702087][   T29] audit: type=1326 audit(1742855027.580:5537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9846 comm="syz.1.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.725534][   T29] audit: type=1326 audit(1742855027.580:5538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9846 comm="syz.1.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.749326][ T1031] vhci_hcd: vhci_device speed not set
[  185.794162][   T29] audit: type=1326 audit(1742855027.700:5539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9846 comm="syz.1.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.817670][   T29] audit: type=1326 audit(1742855027.700:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9846 comm="syz.1.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.841884][ T1031] usb 7-1: new full-speed USB device number 5 using vhci_hcd
[  185.868257][ T9851] netlink: 'syz.2.2310': attribute type 4 has an invalid length.
[  185.896204][ T9851] netlink: 'syz.2.2310': attribute type 4 has an invalid length.
[  185.925130][ T9863] loop2: detected capacity change from 0 to 512
[  185.947641][ T9863] EXT4-fs (loop2): 1 orphan inode deleted
[  185.952808][   T29] audit: type=1326 audit(1742855027.840:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9864 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.977022][   T29] audit: type=1326 audit(1742855027.840:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9864 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f845e77d169 code=0x7ffc0000
[  185.977547][ T9863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.015639][ T9863] ext4 filesystem being mounted at /448/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.016676][  T263] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 1
[  186.050760][ T9874] pim6reg1: entered promiscuous mode
[  186.056267][ T9874] pim6reg1: entered allmulticast mode
[  186.149778][ T9886] netlink: 1288 bytes leftover after parsing attributes in process `syz.1.2324'.
[  186.177006][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.223281][ T9896] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  186.233169][ T9896] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.289309][ T9909] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2334'.
[  186.298467][ T9909] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2334'.
[  186.307674][ T9909] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2334'.
[  186.334284][ T9913] netlink: 'syz.0.2336': attribute type 4 has an invalid length.
[  186.356855][ T9896] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  186.366813][ T9896] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.377844][ T9835] vhci_hcd: connection reset by peer
[  186.385964][  T263] vhci_hcd: stop threads
[  186.390312][  T263] vhci_hcd: release socket
[  186.394853][  T263] vhci_hcd: disconnect device
[  186.396511][ T9913] netlink: 'syz.0.2336': attribute type 4 has an invalid length.
[  186.430555][ T9925] netlink: 'syz.0.2342': attribute type 4 has an invalid length.
[  186.453294][ T9925] netlink: 'syz.0.2342': attribute type 4 has an invalid length.
[  186.463668][ T9896] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  186.473506][ T9896] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.537510][ T9896] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  186.547372][ T9896] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.610806][ T9896] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  186.619140][ T9896] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.631149][ T9896] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  186.639430][ T9896] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.652844][ T9896] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  186.661079][ T9896] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.676497][ T9896] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  186.685294][ T9896] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.754422][ T9945] netlink: 'syz.0.2352': attribute type 1 has an invalid length.
[  187.275014][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  188.000501][ T9989] loop3: detected capacity change from 0 to 512
[  188.028807][ T9989] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  188.064429][ T9989] EXT4-fs (loop3): orphan cleanup on readonly fs
[  188.071255][ T9989] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.2367: Block bitmap for bg 0 marked uninitialized
[  188.089250][ T9989] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  188.098453][ T9989] EXT4-fs (loop3): 1 orphan inode deleted
[  188.104766][ T9989] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  188.245234][ T9995] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.304063][ T9995] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.354097][ T9995] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.365522][ T9999] __nla_validate_parse: 6 callbacks suppressed
[  188.365537][ T9999] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2371'.
[  188.414249][ T9995] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.468598][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.485580][ T9995] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.496324][T10002] netlink: 1288 bytes leftover after parsing attributes in process `syz.3.2372'.
[  188.499683][ T9995] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.518965][ T9995] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.536250][ T9995] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.564000][T10004] loop3: detected capacity change from 0 to 512
[  189.661232][   T29] kauditd_printk_skb: 149 callbacks suppressed
[  189.661248][   T29] audit: type=1326 audit(1742855031.560:5691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8bd5fed169 code=0x0
[  189.714904][T10031] loop3: detected capacity change from 0 to 512
[  189.721913][T10031] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  189.730387][T10031] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  189.752551][   T29] audit: type=1326 audit(1742855031.650:5692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.754362][T10031] $Hÿ: renamed from bond0 (while UP)
[  189.784413][T10033] netlink: 1288 bytes leftover after parsing attributes in process `syz.4.2383'.
[  189.803617][   T29] audit: type=1326 audit(1742855031.650:5693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.827206][   T29] audit: type=1326 audit(1742855031.650:5694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.850779][   T29] audit: type=1326 audit(1742855031.650:5695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.874378][   T29] audit: type=1326 audit(1742855031.650:5696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.897972][   T29] audit: type=1326 audit(1742855031.650:5697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.921753][   T29] audit: type=1326 audit(1742855031.650:5698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.945326][   T29] audit: type=1326 audit(1742855031.650:5699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  189.953889][T10035] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  189.975212][T10035] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  189.982899][T10035] vhci_hcd vhci_hcd.0: Device attached
[  189.990888][T10031] $Hÿ: entered promiscuous mode
[  189.995984][T10031] bond_slave_0: entered promiscuous mode
[  190.001754][T10031] bond_slave_1: entered promiscuous mode
[  190.020201][   T29] audit: type=1326 audit(1742855031.920:5700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd5fed169 code=0x7ffc0000
[  190.336197][T10042] loop2: detected capacity change from 0 to 512
[  190.343275][T10042] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  190.352455][T10042] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  190.380893][T10044] validate_nla: 4 callbacks suppressed
[  190.380909][T10044] netlink: 'syz.2.2387': attribute type 4 has an invalid length.
[  190.406569][T10044] netlink: 'syz.2.2387': attribute type 4 has an invalid length.
[  190.452577][T10048] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.473288][  T263] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  190.504360][T10048] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.564030][T10048] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.598572][T10051] loop3: detected capacity change from 0 to 128
[  190.624403][T10048] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.744605][T10036] vhci_hcd: connection closed
[  190.744730][ T8048] vhci_hcd: stop threads
[  190.753805][ T8048] vhci_hcd: release socket
[  190.758244][ T8048] vhci_hcd: disconnect device
[  190.835712][T10057] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2392'.
[  190.884049][ T1031] usb 7-1: enqueue for inactive port 0
[  190.889702][ T1031] usb 7-1: enqueue for inactive port 0
[  190.963194][ T1031] vhci_hcd: vhci_device speed not set
[  191.748355][T10067] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2396'.
[  191.766533][T10067] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.816234][T10072] netlink: 'syz.0.2396': attribute type 10 has an invalid length.
[  191.824161][T10072] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2396'.
[  191.837566][T10073] xt_NFQUEUE: number of total queues is 0
[  191.894473][T10067] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.934096][T10071] Falling back ldisc for ttyS3.
[  191.945448][T10067] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.996411][T10067] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.090267][T10067] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  192.117463][T10067] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  192.154703][T10067] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  192.184138][T10067] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  192.383050][T10083] netlink: 'syz.4.2401': attribute type 4 has an invalid length.
[  192.423504][T10083] netlink: 'syz.4.2401': attribute type 4 has an invalid length.
[  192.468676][T10087] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  192.475308][T10087] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  192.483100][T10087] vhci_hcd vhci_hcd.0: Device attached
[  192.499219][T10091] netlink: 'syz.0.2404': attribute type 4 has an invalid length.
[  192.538072][T10091] netlink: 'syz.0.2404': attribute type 4 has an invalid length.
[  192.742863][ T4655] vhci_hcd: vhci_device speed not set
[  192.786470][T10102] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2406'.
[  192.802767][ T4655] usb 3-1: new full-speed USB device number 7 using vhci_hcd
[  193.034332][  T390] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  193.293257][T10088] vhci_hcd: connection reset by peer
[  193.298757][ T1298] vhci_hcd: stop threads
[  193.303057][ T1298] vhci_hcd: release socket
[  193.307561][ T1298] vhci_hcd: disconnect device
[  193.509399][T10048] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.528879][T10048] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.550193][T10048] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.561592][T10048] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.586927][T10110] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2410'.
[  193.604419][T10110] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.654225][T10113] netlink: 'syz.2.2410': attribute type 10 has an invalid length.
[  193.662139][T10113] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2410'.
[  193.685374][T10115] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2409'.
[  193.808695][T10110] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.873176][T10117] netlink: 'syz.3.2412': attribute type 4 has an invalid length.
[  193.905365][T10110] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.999528][T10119] xt_NFQUEUE: number of total queues is 0
[  194.006743][T10117] netlink: 'syz.3.2412': attribute type 4 has an invalid length.
[  194.025656][T10110] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.198216][T10119] Falling back ldisc for ttyS3.
[  194.230278][T10130] ==================================================================
[  194.238395][T10130] BUG: KCSAN: data-race in mas_wmb_replace / mtree_range_walk
[  194.245868][T10130] 
[  194.248188][T10130] write to 0xffff88810494a700 of 8 bytes by task 10126 on cpu 0:
[  194.255912][T10130]  mas_wmb_replace+0x222/0x14d0
[  194.260765][T10130]  mas_wr_store_entry+0x1530/0x23f0
[  194.265971][T10130]  mas_store_prealloc+0x6bf/0x960
[  194.271002][T10130]  vma_complete+0x3a7/0x760
[  194.275524][T10130]  __split_vma+0x5d6/0x6a0
[  194.279939][T10130]  vma_modify+0x105/0x200
[  194.284267][T10130]  vma_modify_flags+0xf1/0x120
[  194.289075][T10130]  mprotect_fixup+0x31a/0x5e0
[  194.293750][T10130]  do_mprotect_pkey+0x6cc/0x9a0
[  194.298601][T10130]  __x64_sys_mprotect+0x48/0x60
[  194.303464][T10130]  x64_sys_call+0x2770/0x2dc0
[  194.308240][T10130]  do_syscall_64+0xc9/0x1c0
[  194.312752][T10130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.318650][T10130] 
[  194.320966][T10130] read to 0xffff88810494a700 of 8 bytes by task 10130 on cpu 1:
[  194.328588][T10130]  mtree_range_walk+0x33d/0x460
[  194.333446][T10130]  mas_walk+0x16e/0x320
[  194.337610][T10130]  lock_vma_under_rcu+0x95/0x270
[  194.342544][T10130]  exc_page_fault+0x150/0x650
[  194.347228][T10130]  asm_exc_page_fault+0x26/0x30
[  194.352081][T10130] 
[  194.354395][T10130] value changed: 0xffff888119082c41 -> 0xffff88810494a700
[  194.361503][T10130] 
[  194.363816][T10130] Reported by Kernel Concurrency Sanitizer on:
[  194.369954][T10130] CPU: 1 UID: 0 PID: 10130 Comm: syz.3.2417 Not tainted 6.14.0-syzkaller #0
[  194.378625][T10130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  194.388683][T10130] ==================================================================
[  195.592987][  T390] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  197.798385][T10110] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.808939][T10110] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.819778][T10110] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.830221][T10110] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.922797][ T4655] usb 3-1: enqueue for inactive port 0
[  197.928367][ T4655] usb 3-1: enqueue for inactive port 0
[  198.012773][ T4655] vhci_hcd: vhci_device speed not set
[  198.083042][ T8048] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  200.082598][   T29] kauditd_printk_skb: 118 callbacks suppressed
[  200.082615][   T29] audit: type=1400 audit(1742855041.980:5819): avc:  denied  { search } for  pid=2982 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  201.353667][ T1298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  203.283190][ T8059] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration